[Snyk] Fix for 1 vulnerabilities

[djantaio]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Improper Control of Dynamically-Managed Code Resources SNYK-JS-EJS-6689533	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: webpack-bundle-analyzer

The new version differs by 250 commits.

• ee6c7a9 Merge pull request #389 from webpack-contrib/support-webpack-5
• 8d1a752 Update version
• 37ab03e Fix typo
• 2153401 Add `--watch-ignore` flag to `test-dev` npm script
• 35b62db Add `private: true` flag to `package.json` files in `test/webpack-versions`
• ef36924 Add changelog entry
• f819548 Update version
• d8f2dd7 Fix lint issues
• d32cbdb Add changelog for v4.0.0
• 3094dbc Update dependencies
• b85ba7d Add tests for Webpack 5
• c35bda3 Properly parse Webpack 5 entry modules
• 7bbe89f Properly parse Webpack 5 bundle format (except concatenated entry module)
• b34b249 Update package-lock.json
• abc298a Remove Node.js 6 and 8 from .travis.yml
• a81b7b8 - Support multiple Webpack versions in tests
• 591adf1 Add more ignores to .npm-upgrade.json
• d5698f4 Update dependencies
• e4a8974 Merge pull request #382 from wbobeirne/fix-opener-error
• b0f717b Catch uncaught opener errors
• e4b2677 v3.9.0
• afde5a8 Merge pull request #378 from dabbott/fix-missing-child-bundles
• 0ddc92d Add test for dynamic imports in worker bundles
• b39594c Fix missing child bundles throwing an error

See the full diff

Package name: webpack-cli

The new version differs by 51 commits.

• b1e7ef3 break: update pkg.json
• 4857b9d break: webpack-cli v.3.0.0
• 660ce95 v0.0.8
• 9d3c9c1 v0.0.7
• 138adfd BREAKING: webpack-cli v3 (#448)
• 03c1969 chore(deps): Update nyc to the latest version 🚀 (#476)
• 3a8fcce chore(deps): Update conventional-changelog-cli to the latest version 🚀 (#474)
• 3442865 tests(binTestCases): refactor to make tests pass (#472)
• c2398a2 fix(entry): fix a bug when `--display-entrypoints=false` does not hide entries (#464)
• 9977406 chore(package): update jest-cli to version 23.0.1 (#467)
• 3953648 fix(dependencies): fix vulnerabilities (#458)
• 7c01f39 chore(travis): move npm ci to install task (#424)
• aefa520 chore(travis): add Node.js 10 (#425)
• 8283ba9 chore(docs): update readme
• 9760a4d Update dependencies to enable Greenkeeper 🌴 (#443)
• 4cca655 chore(travis): run lockfile cmds on tests (#444)
• d0fb42c cli(init): revise installation steps (#441)
• 51851e8 fix(pkg): test auto setup
• bb181a1 chore(travis): Add encrypted private ssh key
• 2091d1c chore(package.lock): update pkg.lock
• d060239 chore(release): v.2.1.3
• 4149c53 chore(pkg): remove prefer global
• 84d6997 chore(templates): Update issue templates (#432)
• 2273536 cli(cmds): revise yargs command (#422)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Improper Control of Dynamically-Managed Code Resources