[Snyk] Security upgrade gatsby-recipes from 0.2.38 to 1.4.0

[kaocher82]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • packages/gatsby-cli/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Authorization Bypass Through User-Controlled Key SNYK-JS-PARSEPATH-2936439	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-3023021	Yes	Proof of Concept
	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Improper Input Validation SNYK-JS-PARSEURL-3024398	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: gatsby-recipes

The new version differs by 250 commits.

• c09587a chore(release): Publish
• 7a432a8 fix(gatsby-cli): make `--inspect-brk` work (fix(gatsby-cli): make --inspect-brk work gatsbyjs/gatsby#34242) (fix(gatsby-cli): make --inspect-brk work (#34242) gatsbyjs/gatsby#34254)
• 97d23ae chore(gatsby): Update documentation around pathPrefix and assetPrefix combination (chore(gatsby): Update documentation around pathPrefix and assetPrefix combination gatsbyjs/gatsby#34226)
• 6b28b69 chore(release): Publish next
• d8aec30 feat(gatsby): detect node mutations (enabled by flag or env var) (feat(gatsby): detect node mutations (enabled by flag or env var) gatsbyjs/gatsby#34006)
• 3fe5316 chore(docs): Add missing comma to code example (chore(docs): Add missing comma to code example gatsbyjs/gatsby#34222)
• 01d7a79 feat(gatsby-plugin-emotion): Use correct babel preset with `jsxRuntime` (feat(gatsby-plugin-emotion): Use correct babel preset with jsxRuntime gatsbyjs/gatsby#34085)
• 3a97329 fix(deps): update dependency date-fns to ^2.27.0 for gatsby-plugin-gatsby-cloud (fix(deps): update dependency date-fns to ^2.27.0 for gatsby-plugin-gatsby-cloud gatsbyjs/gatsby#34146)
• 99c538b fix(deps): update dependency eslint-plugin-jsx-a11y to ^6.5.1 (fix(deps): update dependency eslint-plugin-jsx-a11y to ^6.5.1 gatsbyjs/gatsby#34147)
• a2159f1 chore(deps): update dependency remark-mdx to ^1.6.22 for gatsby-remark-responsive-iframe (chore(deps): update dependency remark-mdx to ^1.6.22 for gatsby-remark-responsive-iframe gatsbyjs/gatsby#32568)
• d3aa933 feat(gatsby): Allow external systems to setup tracing for builds (feat(gatsby): Allow external systems to setup tracing for builds gatsbyjs/gatsby#34204)
• 548a82d chore(docs): Update navigate helper w/ query params (chore(docs): Update navigate helper w/ query params gatsbyjs/gatsby#34217)
• 6113cfc fix(gatsby): Update warning about long running queries (fix(gatsby): Reword warning about long running queries gatsbyjs/gatsby#34207)
• 0e96111 Add missing Comma to Plugin Options page (fix(docs): Add missing Comma to Plugin Options page gatsbyjs/gatsby#34208)
• 81fd35a chore(deps): update dependency @ types/eslint to v8 for gatsby (chore(deps): update dependency @types/eslint to v8 for gatsby gatsbyjs/gatsby#34154)
• e4daf5e fix(deps): update minor and patch dependencies for gatsby-source-wordpress (fix(deps): update minor and patch dependencies for gatsby-source-wordpress gatsbyjs/gatsby#34152)
• c69ec70 chore(deps): update dependency prettier to ^2.5.1 (chore(deps): update dependency prettier to ^2.5.1 gatsbyjs/gatsby#34142)
• e0044a2 chore: Fix lock file
• cada108 fix(gatsby-source-filesystem): Ensure fastq concurrency parameter of the correct type (fix(gatsby-source-filesystem): Ensure fastq concurrency parameter of the correct type gatsbyjs/gatsby#34186)
• c85a707 Clarify html.js vs. onPreRenderHTML (Clarify html.js vs. onPreRenderHTML gatsbyjs/gatsby#34203)
• a442b2d fix(deps): update dependency @ soda/friendly-errors-webpack-plugin to v1.8.1 for gatsby-plugin-netlify-cms (fix(deps): update dependency @soda/friendly-errors-webpack-plugin to v1.8.1 for gatsby-plugin-netlify-cms gatsbyjs/gatsby#34121)
• 14e13b9 chore(deps): update [dev] minor and patch dependencies for create-gatsby (chore(deps): update [dev] minor and patch dependencies for create-gatsby gatsbyjs/gatsby#34109)
• ffb34d7 chore(deps): update dependency @ types/node to ^14.17.34 for gatsby-source-shopify (chore(deps): update dependency @types/node to ^14.17.34 for gatsby-source-shopify gatsbyjs/gatsby#34113)
• 46a1398 chore(deps): update dependency microbundle to ^0.14.2 for gatsby-design-tokens (chore(deps): update dependency microbundle to ^0.14.2 for gatsby-design-tokens gatsbyjs/gatsby#34115)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-side Request Forgery (SSRF)