[Snyk] Fix for 1 vulnerabilities

[aliscco]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @typescript-eslint/parser

The new version differs by 57 commits.

• 18e7b5b chore: publish v2.32.0
• 18668b7 feat: bump dependencies and align AST (#2007)
• 6987ecc fix(eslint-plugin): [no-base-to-string] support boolean in unions (Easier way to jump to function definitions in debug log. microsoft/vscode-js-debug#1979)
• 56d9870 fix(eslint-plugin): [no-type-alias] handle readonly types in aliases (Error on vscode js debug terminal microsoft/vscode-js-debug#1990)
• 51ca404 fix(eslint-plugin): [no-unused-expressions] inherit `messages` from base rule (Support external terminal option microsoft/vscode-js-debug#1992)
• 176054c chore: publish v2.31.0
• 1f3c344 chore: upgrade to prettier 2.0 (Breakpoints not set properly when running with vitest microsoft/vscode-js-debug#1970)
• b18bc35 feat(eslint-plugin): new extended rule 'no-invalid-this' (Cannot debug Angular library linked to an angular app microsoft/vscode-js-debug#1823)
• 2f0824b feat(eslint-plugin): [prefer-optional-chain] added option to convert to suggestion fixer (added proxy support for build microsoft/vscode-js-debug#1965)
• 7f3fba3 fix(eslint-plugin): [method-signature-style] fix overloaded methods to an intersection type (fix: attempt both ipv4 and ipv6 loopbacks for DWARF symbols microsoft/vscode-js-debug#1966)
• f78f13a fix(eslint-plugin): no-base-to-string boolean expression detect (chore: update follow-redirects microsoft/vscode-js-debug#1969)
• b35070e fix(eslint-plugin): [unbound-method] false positives for unary expressions (Failed to start inspector port on WSL 2 mirrored network microsoft/vscode-js-debug#1964)
• f82fd7b fix(eslint-plugin): [return-await] await in a normal function (fix: stacktraces during process shutdown not being sourcemapped microsoft/vscode-js-debug#1962)
• 05476ca docs(eslint-plugin): [naming-convention] correct typo in example ([CDP] Send telemetry for DotnetDebugger error event microsoft/vscode-js-debug#1961)
• 80d934b chore: turn on `no-poorly-typed-ts-props` (Proxy support for npx gulp vsDebugServer microsoft/vscode-js-debug#1955)
• b609b43 chore: fix CI (Chrome DevTools window is always auto-opened for extension popup microsoft/vscode-js-debug#1958)
• 56ea7c9 feat(eslint-plugin-internal): add rule no-poorly-typed-ts-props (fix: off-by-one error leading to invalid renames microsoft/vscode-js-debug#1949)
• 2dd1638 feat(experimental-utils): expose our RuleTester extension (The debugger does not work in a monorepo when bundle size and sourcemaps go over a certain size microsoft/vscode-js-debug#1948)
• 383f931 fix(eslint-plugin): [dot-notation] handle missing declarations (While stepping, VS Code debugger periodically disconnects microsoft/vscode-js-debug#1947)
• f7ec192 feat(eslint-plugin): [member-ordering] add decorators support (Respons från Milo to you microsoft/vscode-js-debug#1870)
• 1b4e430 chore: publish v2.30.0
• 2f45e99 fix(eslint-plugin): fix no-base-to-string boolean literal check (fix: cache-bust sourcemaps if the underlying content changes microsoft/vscode-js-debug#1850)
• ed2bd60 fix(eslint-plugin): [prefer-string-starts-ends-with] check for negative start index in slice (Nuxt3: Missing sourcemaps if debugger is attached. microsoft/vscode-js-debug#1920)
• a85c3e1 feat(eslint-plugin): add extension rule `dot-notation` (Priset ärligt talat fyrt match rosa💕🍥💞💞 sviten microsoft/vscode-js-debug#1867)

See the full diff

Package name: eslint

The new version differs by 210 commits.

• 3dd6741 7.0.0
• 9a722f9 Build: changelog update for 7.0.0
• b98d8bd Upgrade: eslint-release@2.0.0 (#13271)
• 4c0b028 Fix: remove Node.js and CommonJS category from build process (#13242)
• 401a687 Chore: fix rules list for prereleases (#13230)
• 4ef6158 Breaking: espree@7.0.0 (#13270)
• b5c8d73 Docs: update 7.0.0 migration guide for consistency (#13267)
• 356fdb4 Docs: add migration guide (#12692)
• 015edf6 Sponsors: Sync README with website
• fdfa364 7.0.0-rc.0
• 8d1b4db Build: changelog update for 7.0.0-rc.0
• 0b1d65a Update: Improve report location for array-callback-return (refs #12334) (#13109)
• d85e291 Fix: yoda left string fix for exceptRange (fixes #12883) (#13052)
• 2ce6bed Chore: added tests for nested arrays (#13145)
• d3aac53 Update: report backtick loc in no-unexpected-multiline (refs #12334) (#13142)
• 8e7a2d9 Fix: func-call-spacing "never" reports wrong message (fixes #13190) (#13193)
• bcafd0f Update: Add ESLint API (refs New: ESLint Class Replacing CLIEngine eslint/rfcs#40) (#12939)
• 3eeae56 Upgrade: some (dev) deps (#13155)
• 6b7030b Chore: Run tests on Node.js v14 (#13210)
• ebc28d7 Fix: Remove default .js from --ext CLI option (#13176)
• 5c1bdeb Update: Improve report location for getter-return (refs #12334) (#13164)
• 56d2bee Docs: fix typos (#13204)
• e13256e Chore: use espree.latestEcmaVersion in config-initializer (#13157)
• e4f57b7 Chore: add nested array tests for array-element-newline (#13161)

See the full diff

Package name: webpack

The new version differs by 250 commits.

• f2f998b 5.1.1
• bcd6190 Merge pull request #11704 from webpack/bugfix/delete-asset
• 11935a9 Merge pull request #11703 from webpack/bugfix/11678
• 63ba54c update chunk to files mapping when deleting assets
• 4669600 Merge pull request #11690 from webpack/bugfix/11673
• 234373e Merge pull request #11702 from webpack/deps/terser
• b6bc273 fix infinite loop in inner graph optimization
• 50c3a83 fix unused modules in chunk when optimizing runtime-specific
• 5d9d9b9 fix runtime-specific handling in concatenated modules
• 250e37c add test case
• 7925652 upgrade terser-webpack-plugin
• 27796db Merge pull request #11669 from webpack/dependabot/npm_and_yarn/ts-loader-8.0.5
• bd5aab8 Merge pull request #11692 from webpack/dependabot/npm_and_yarn/babel/core-7.12.0
• 886bbd5 Merge pull request #11693 from webpack/dependabot/npm_and_yarn/react-dom-16.14.0
• 3a14b3d Merge pull request #11694 from webpack/dependabot/npm_and_yarn/react-16.14.0
• ddf9936 chore(deps-dev): bump react from 16.13.1 to 16.14.0
• dc6e69a chore(deps-dev): bump react-dom from 16.13.1 to 16.14.0
• 8f18de9 chore(deps-dev): bump @ babel/core from 7.11.6 to 7.12.0
• c0410e8 Merge pull request #11686 from webpack/bugfix/11677
• 4504046 order runtime chunks correctly when they depend on each other
• 74a44cd add comment to help tagging for the bot
• e97efb7 chore(deps-dev): bump ts-loader from 8.0.4 to 8.0.5
• 77329b4 5.1.0
• 48c10f3 Merge pull request #11653 from log2-hwan/fix-moduletemplate-deprecation

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)