[Snyk] Upgrade react-scripts from 1.1.4 to 1.1.5 #2

snyk-bot · 2020-04-14T23:25:00Z

Snyk has created this PR to upgrade react-scripts from 1.1.4 to 1.1.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released 2 years ago, on 2018-08-22.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Improper Input Validation SNYK-JS-URLPARSE-543307	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-174125	No Known Exploit
	Prototype Pollution SNYK-JS-SETVALUE-450213	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	Proof of Concept
	Arbitrary Code Execution SNYK-JS-REACTDEVUTILS-72875	No Known Exploit
	Prototype Pollution SNYK-JS-MIXINDEEP-450212	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-73638	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-450202	Proof of Concept
	Prototype Pollution SNYK-JS-HANDLEBARS-534988	No Known Exploit
	Arbitrary Code Execution SNYK-JS-HANDLEBARS-534478	No Known Exploit
	Denial of Service (DoS) SNYK-JS-HANDLEBARS-480388	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-469063	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-174183	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-173692	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	No Known Exploit
	Time of Check Time of Use (TOCTOU) npm:chownr:20180731	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	No Known Exploit
	Timing Attack SNYK-JS-ELLIPTIC-511941	No Known Exploit
	Prototype Pollution SNYK-JS-MERGE-72553	Mature
	Information Exposure SNYK-JS-KINDOF-537849	Proof of Concept