[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: webpack

The new version differs by 250 commits.

• 213226e 4.0.0
• fde0183 Merge pull request #6081 from webpack/formating/prettier
• b6396e7 update stats
• f32bd41 fix linting
• 5238159 run prettier on existing code
• 518d1e0 replace js-beautify with prettier
• 4c25bfb 4.0.0-beta.3
• dd93716 Merge pull request #6296 from shellscape/fix/hmr-before-node-stuff
• 7a07901 Merge pull request #6563 from webpack/performance/assign-depth
• c7eb895 Merge pull request #6452 from webpack/update_acorn
• 9179980 Merge pull request #6551 from nveenjain/fix/templatemd
• e52f323 optimize performance of assignDepth
• 6bf5df5 Fixed template.md
• 90ab23a Merge branch 'master' into fix/hmr-before-node-stuff
• b0949cb add integration test for spread operator
• 39438c7 unittest now also walks the ast
• 15ab027 Merge pull request #6536 from jevan0307/sideEffects-selectors
• 1611ce1 Merge pull request #6561 from joshunger/patch-1
• 6e175bc Merge pull request #6549 from webpack/md4_hash
• 0637531 Add a hyperlink to create a new issue
• 0e1f9c6 Merge pull request #6554 from webpack/deps/end-of-beta
• 72477f4 upgrade versions to stable versions
• ed30285 Merge pull request #6546 from webpack/bot/review-permission
• 40ee8c7 Use MD4 for hashing

See the full diff

Package name: yargs

The new version differs by 98 commits.

• 8515e4f docs: nit in CHANGELOG
• 4b8cfa9 docs: slight tweaks to CHANGELOG
• c809cbe chore(release): 10.0.0
• fc13dcd chore: new translations for command API overhaul (🐞[init]: entry point does not appears in newly generated config webpack/webpack-cli#976)
• 7269531 feat: .usage() can now be used to configure a default command (chore(utils): Fix path in scaffold util webpack/webpack-cli#975)
• 3757194 chore: add id translation to 🐞[init]: entry point does not appears in newly generated config webpack/webpack-cli#976 ([BUG]: webpack does not find globally installed @webpack-cli/init by Yarn webpack/webpack-cli#986)
• 47b3078 chore: update Dutch Translation (chore(questions): makes default lang type to none webpack/webpack-cli#981)
• 20bb99b feat: replace /bin/bash with file basename (chore: fixed the configPath webpack/webpack-cli#983)
• 5a9c986 feat(translation): Update pl-PL translations (missing loader for Sass in generated config file webpack/webpack-cli#985)
• 02cc11d docs: whoops, forgot to call out a breaking change introduced into parse()
• 7e58453 fix: the positional argument parse was clobbering global flag arguments ([NEXT] tests: added tests for path-utils webpack/webpack-cli#984)
• a06b67d chore: update tr.json (discussion[init]: inform user for deps which will be added after init. webpack/webpack-cli#982)
• b2d11b3 chore: add ja translations (docs: remove removed packages description webpack/webpack-cli#979)
• 1598a7f docs: switch to using .positional() in example (chore: prevent weird behaviour of pre-commit hook webpack/webpack-cli#973)
• 280d0d6 feat: hidden options are now explicitly indicated using "hidden" flag (Webpack crushes when tries to print a message about donating in Windows 8.1 webpack/webpack-cli#962)
• 8c1d7bf fix: less eager help command execution (chore: refactor code to eliminate redundancy webpack/webpack-cli#972)
• db77c53 chore: switch to find-up from read-pkg-up (chore(scripts): clean postinstall webpack/webpack-cli#970)
• cb16460 feat: introduce .positional() for configuring positional arguments ([test]: Add tests for utils to find project root webpack/webpack-cli#967)
• 3bb8771 fix: config and normalise can be disabled with false (chore(docs): fixes 404 URLs and unformatted table webpack/webpack-cli#952)
• c649415 chore(release): 9.1.0
• 7b22203 fix(command): Run default cmd even if the only cmd (🐞[cli]: commands not working, defaults to init webpack/webpack-cli#950)
• 74a38b2 feat: multiple usage calls are now collected, not replaced (chore(packages): lock dependencies versions webpack/webpack-cli#958)
• d1b23f3 chore(release): 9.0.1
• ac8088b fix: implications fails only displayed once (chore: v3.3.4 webpack/webpack-cli#954)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic