[Snyk] Fix for 1 vulnerabilities

[miran-hadziomerovic]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: stylelint

The new version differs by 250 commits.

• 1b75f38 13.8.0
• c84362f Prepare 13.8.0
• 00c7d73 Update deps (#5041)
• a1c8225 Bump jest from 26.6.1 to 26.6.3 (#5036)
• da381ee Fix `disableRanges.test.js` that uses callbacks (#4991)
• 2db70e9 Fix `isStandardSyntaxTypeSelector.test.js` that use callbacks (#4990)
• bb19b6c Update CHANGELOG.md
• c36b8d0 Add selector-attribute-name-disallowed-list (#4992)
• d42f8da Update CHANGELOG.md
• 1e6f944 Fix false negatives for dollar variables in *-notation (#5031)
• d347a29 Bump jest-circus from 26.6.1 to 26.6.3 (#5034)
• 4695069 Bump file-entry-cache from 5.0.1 to 6.0.0 (#5038)
• bd207fa Bump np from 6.5.0 to 7.0.0 (#5037)
• 467c4f9 Bump meow from 7.1.1 to 8.0.0 (#5015)
• 4f0225a Bump v8-compile-cache from 2.1.1 to 2.2.0 (#5028)
• 42f6c73 Bump eslint from 7.12.1 to 7.13.0 (#5029)
• f0b5aa8 refactor documentation config (#5025)
• 5a84657 Update CHANGELOG.md
• 785b59d Add ignoreAtRules to property-no-unknown (#4965)
• 60eb7b6 Bump eslint from 7.11.0 to 7.12.1 (#5017)
• e2ea569 Bump typescript from 4.0.3 to 4.0.5 (#5016)
• 078e9a6 Bump lint-staged from 10.4.0 to 10.5.1 (#5014)
• d7db502 Bump remark-cli from 8.0.1 to 9.0.0 (#4996)
• 2cddb6e Bump jest-circus from 26.5.3 to 26.6.1 (#5009)

See the full diff

Package name: webpack-cli

The new version differs by 250 commits.

• fb50f76 chore(release): publish new version
• 2c75aeb chore: new version of the packages
• 0d05c30 chore(release): publish %s
• 3f9e151 chore: fix lerna config
• 2c1e34c tests(generator): enhance init generator tests (#1236)
• 6ee61b9 Fix loader-generator and plugin-generator tests (#1250)
• 52956a2 Fixing the typos and grammatical errors in Readme files (#1246)
• 7faaed2 chore: update Bug_report & Feature_request Templates (#1256)
• 7a5b33d feat(webpack-cli): added mode argument (#1253)
• 3715756 tests(webpack-cli): add test case for defaults flag (#1254)
• a7cba2f chore: project maintanance and typescript fix (#1247)
• 7748472 chore: ignore package-lock.json and remove its references (#1252)
• a014aa7 docs: fix supported arguments & commands link in README (#1244)
• 06129a1 feat(webpack-cli): add progress bar for progress flag (#1238)
• 6cc6a49 chore: post refactor CLI (#1237)
• 358651e chore: move cli under lerna package (#1225)
• 2dc495a fix(init): fix webpack config scaffold (#1231)
• 1ab62d2 tests(generator): add tests for plugin generator (#1235)
• d2dd0c1 tests(sourcemap): fix flaky stats statement (#1232)
• f6dc680 tests(loader-generator): add tests for loader generator (#1234)
• 35d1381 tests(generator): enable init generator test (#1233)
• 66cdcb6 chore(generator): remove transpiled tests (#1229)
• f29a170 fix(init): fix the invalid package name (#1228)
• 8c3a66d chore(cli): updated changelog of v3 (#1224)

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• c9271b9 chore(release): 4.0.0
• 18bf369 test: fix stability (#3676)
• cdcabb2 fix: respect protocol from browser for manual setup (#3675)
• 1768d6b fix: initial reloading for lazy compilation (#3662)
• 4f5bab1 docs: improve examples (#3672)
• f2d87fb fix: improve https CLI output (#3673)
• 0277c5e chore: remove redundant console statements (#3671)
• 16fcdbc docs: add `ipc` example (#3667)
• 8915fb8 test: add e2e tests for built in routes (#3669)
• 4d1cbe1 docs: ask `version` information in issue template (#3668)
• b6c1881 chore(deps-dev): bump core-js from 3.16.1 to 3.16.2 (#3666)
• ffa8cc5 chore(deps-dev): bump supertest from 6.1.5 to 6.1.6 (#3665)
• f1fdaa7 chore(release): 4.0.0-rc.1
• c4678bc fix: legacy API (#3660)
• d8bdd03 test: fix stability (#3661)
• 22b1414 refactor: remove `killable` (#3657)
• 75bafbf test: add e2e tests for module federation (#3658)
• 493ccbd chore(deps): update `ws` (#3652)
• ae8c523 test: add e2e test for universal compiler (#3656)
• f94b84f chore(deps): update (#3655)
• 1923132 test: fix cli
• 2adfd01 test: fix todo (#3653)
• 6e2cbde fix: proxy logging and allow to pass options without the `target` option (#3651)
• c9ccc96 fix: respect infastructureLogging.level for client.logging (#3613)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)