[Snyk] Fix for 3 vulnerabilities

[jmatsushita]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	539/1000 Why? Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-NODEFETCH-2342118	No	No Known Exploit
	520/1000 Why? Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: antd

The new version differs by 250 commits.

• 08beabf chore: fix remote checking
• f6c1582 docs: use star emoji
• bb90c4f Bump 3.16.4
• e521b32 Merge pull request #16206 from ant-design/release-3.16.4
• 4f0403c Add 3.16.4 changelog
• 8ec3831 Merge pull request #16203 from saxenanihal95/code_refactor
• 1569ab3 prettier md demo (#16188)
• 2b0723f update script (#16204)
• 73188ac fix: Table `rowSelection.columnWidth` should work (#16180)
• 9fd4b2d Refactor: created InputIcon of common code in RangePicker and WeekPicker
• 5987792 fix: typescript definition update (#16202)
• 35da7ce Merge pull request #16197 from ant-design/chores
• 4b17591 📝 Remove webpack@1 instruction
• ac5868c 🆙 upgrade stylelint-order
• 27045c5 Merge pull request #16196 from aaroncawte/master
• 4cd0c74 Documentation - Tree Component
• 7333506 Documentation - Timeline Component
• 8833f0b Documentation - Tag Component
• 719aff7 Documentation - Table Component
• 0c7b3ce Documentation - List Component
• a89c228 Documentation - Comment Component
• e8e29f7 Documentation - Collapse Component
• 0fc9b86 Documentation - Badge Component
• f30aee5 Documentation - Avatar Component

See the full diff

Package name: next

The new version differs by 250 commits.

• 016d41f v8.0.2
• ce7dcae v8.0.2-canary.7
• 1757ad0 Drop cli-cursor dependency (#6387)
• 414e8fa Update link in wasm example (#6389)
• d7856c6 fixes a few inconsistencies in server routes (#6382)
• 9f5d1ef Add example using lingui.js (#6210)
• faf69b4 v8.0.2-canary.6
• 5ab3f00 Fixed missing next deployment directory bug (#6331)
• 3ba1811 Pass all `<Html>` props to `<html>` (#6378)
• 8b78476 Remove alternate screen usage (#6377)
• 09508ed [with-sentry] Use env config instead of webpack where possible (#6381)
• 6e23b75 feat: Validate url.format calls (#6379)
• 61de215 Move webpack config to TypeScript (#6348)
• 0bf5041 v8.0.2-canary.5
• 5ff2dea Add Html tag for custom Document (#6372)
• ecbecb9 Fixes for with-sentry example (#6362)
• 9d7385c Add SSR'd Portals example (#6365)
• 369ac48 Assign deep defaults for custom config (#6359)
• 6eacea4 updated module and removed old example in socket.io example (#6368)
• b0a9b99 v8.0.2-canary.4
• 90f9c64 Use alternate screen buffer if terminal supports it (#6364)
• 17ad1eb Add --frozen-lockfile to circleci
• ddd01df Make `getBaseWebpackConfig` synchronous. (#6356)
• fcf1167 Upgrade standard and fix files (#6358)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.