This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
#### Vulnerabilities that will be fixed
##### With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
 | **399/1000** **Why?** Has a fix available, CVSS 3.7 | Cross-site Scripting (XSS) [SNYK-JS-STRIPTAGS-1312310](https://snyk.io/vuln/SNYK-JS-STRIPTAGS-1312310) | No | No Known Exploit
 | **586/1000** **Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS) [SNYK-JS-WS-1296835](https://snyk.io/vuln/SNYK-JS-WS-1296835) | No | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Commit messagesPackage name: striptags
The new version differs by 3 commits.
f252a6b Merge pull request from GHSA-qxg5-2qff-p49r
2719515 fix: throw TypeError if 'html' is non-string argument
See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
------------
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/designfrontier/project/f06f4d48-f2f3-454d-84d8-ab96da76f948?utm_source=github&utm_medium=referral&page=fix-pr)
🛠 [Adjust project settings](https://app.snyk.io/org/designfrontier/project/f06f4d48-f2f3-454d-84d8-ab96da76f948?utm_source=github&utm_medium=referral&page=fix-pr/settings)
📚 [Read more about Snyk's upgrade and patch logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities)
[//]: # (snyk:metadata:{"prId":"53835eab-ef9e-404a-8481-a3cf5333c453","prPublicId":"53835eab-ef9e-404a-8481-a3cf5333c453","dependencies":[{"name":"striptags","from":"3.1.1","to":"3.2.0"},{"name":"ws","from":"6.0.0","to":"6.2.2"}],"packageManager":"npm","projectPublicId":"f06f4d48-f2f3-454d-84d8-ab96da76f948","projectUrl":"https://app.snyk.io/org/designfrontier/project/f06f4d48-f2f3-454d-84d8-ab96da76f948?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-WS-1296835","SNYK-JS-STRIPTAGS-1312310"],"upgrade":["SNYK-JS-STRIPTAGS-1312310","SNYK-JS-WS-1296835"],"isBreakingChange":false,"env":"prod","prType":"fix","templateVariants":["priorityScore"],"priorityScoreList":[586,399]})
---
**Learn how to fix vulnerabilities with free interactive lessons:**
🦉 [Regular Expression Denial of Service (ReDoS)](https://learn.snyk.io/lessons/redos/javascript/?loc=fix-pr)
🦉 [Cross-site Scripting (XSS)](https://learn.snyk.io/lessons/xss/javascript/?loc=fix-pr)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json - package-lock.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **399/1000****Why?** Has a fix available, CVSS 3.7 | Cross-site Scripting (XSS)
[SNYK-JS-STRIPTAGS-1312310](https://snyk.io/vuln/SNYK-JS-STRIPTAGS-1312310) | No | No Known Exploit  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-WS-1296835](https://snyk.io/vuln/SNYK-JS-WS-1296835) | No | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: striptags
The new version differs by 3 commits.- f252a6b Merge pull request from GHSA-qxg5-2qff-p49r
- 2719515 fix: throw TypeError if 'html' is non-string argument
- 27a5dd9 Update README.md example output
See the full diffPackage name: ws
The new version differs by 85 commits.- 9bdb580 [dist] 6.2.2
- 78c676d [security] Fix ReDoS vulnerability
- d57db27 [dist] 6.2.1
- 40734d8 [minor] Add missing option in JSDoc comment
- 0556f31 [doc] Add TOC to ws.md (#1539)
- aa1dcd5 [fix] Make `WebSocket#close()` set the close timer immediately
- 297f56d [minor] Remove unneeded `if` statement
- bcab373 [test] Increase code coverage
- 3a5a20a Revert "[ci] Cache dependencies"
- 9a89e5d [ci] Cache dependencies
- 7f5025d [test] Fix flaky test
- 148c373 [test] Prefer arrow functions
- 3df8242 [test] Remove comment to disable eslint rule
- a40e29f [minor] Remove length threshold
- 6c22584 [minor] Buffer writes if the frame to send is made of multiple chunks
- 1842197 [test] Remove useless test
- eb6f8b0 [dist] 6.2.0
- 161f303 [feature] Add ability to follow redirects (#1490)
- a6e94f4 [minor] Move all buffer conversion functions to the buffer-util module
- 71ee9ed chore(package): update eslint to version 5.15.0 (#1522)
- 855494d [test] Fix flaky test
- 8c21add [codestyle] Add .gitattributes
- faf9b36 [ci] Let Travis CI handle x64 Windows tests
- bcb8a98 [ci] Test on macOS
See the full diff