[Snyk] Fix for 1 vulnerabilities

[iliutastoica]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: chokidar

The new version differs by 161 commits.

• 7b8e02a Release 3.0.0.
• e7bfe2f Move stuff.
• df7f22e Remove changelog from npm, move to hidden dir.
• 3df7692 Improve naming.
• 6e94ca2 Clean-up.
• 2de2f9c test: Add testing of Node.js v12 in Travis pipeline. (#833)
• 9e0965a Fix Windows tests in Travis CI (#832)
• c95a98f Update stuff.
• 187ff2b test: Trying to fix blinked tests for Travis CI. (#825)
• db99076 fix(Windows): Add converting from windows to unix path for all ignored paths. (#824)
• 41f8782 fix(FsEvents): Remove situation with NaN depth. (#823)
• 7cf3f7e Update readdirp to stable.
• 0927a62 Bump packages.
• 11cd857 Update nyc.
• 99c14d7 Uncomment fsevents.
• cf330a5 Update fsevents.
• 0e4fca5 Fix deps.
• 9c575d4 Fix Windows version (#821)
• 3323d59 fix(Linux): Make event loop hack for keep testing valid. (#820)
• 06214c5 Update to latest readdirp.
• 793639f Rename osxfswatch.
• 078bc2d Refactor and fix freaking tests.
• 2b9bb41 Try node 11.
• 3fe3d4e Test travis.

See the full diff

Package name: react-static

The new version differs by 84 commits.

• e52586c v7.2.0
• cb1ac92 Update CHANGELOG and add RELEASE
• 846e5d6 Update urls to use react-static
• 41887a7 Update template versions
• 9906a09 Merge branch 'master' into release/7.2.0-maintenance
• 84a91ab Remove mapped names, update mocks and fix tests
• 56a0c0d Update documentation for new GitHub org and some v7 changes (#1286)
• 78e42f9 Bump eslint-utils in /packages/react-static/templates/blank (#1290)
• 60d88b0 Add "Weekly Best of JavaScript" site to README.md (#1284)
• 1bf18e0 Bump packages and add devPeers
• 83a9b05 Remove hardcoded fix
• 2627abc Formatting
• 7c244e4 Use browsers configuration from project
• dda8116 Add missing configuration
• f8a9f50 Bump versions within major range
• 97a10c7 Merge branch 'master' into temp/master
• 9210f85 Bump react-hot-loader to 4.12.10 (#1274)
• ffd8206 fix broken link in docs/plugins/README.md (#1280)
• 5a38e1c Update CHANGELOG.md
• a491d84 Handle relative route template (#1276)
• 581c002 Ensure publicPath is always absolute (#1272)
• fbf111e Update CHANGELOG.md
• 02fd470 Don't use path.relative() in react-static/src/static (#1254)
• 4e7891a Don't use a relative path to resolve Default404 template (#1250)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic