[Snyk] Security upgrade immer from 8.0.4 to 9.0.6

merge advice

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- modules/store/package.json

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	673/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-IMMER-1540542	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: immer

The new version differs by 46 commits.

fa671e5 fix(security): Follow up on CVE-2020-28477 where `path: [["__proto__"], "x"]` could still pollute the prototype
2e0aa95 Create SECURITY.md
050522d chore: fix CI. maybe.
1195510 docs: Update example-setstate.mdx (#833)
648d39b docs: fixing link to RFC-6902 & fixing typo (#830)
bc890f7 docs: Update example-setstate.mdx (#829)
16a3d0f chore(deps): bump prismjs from 1.23.0 to 1.24.0 in /website (#822)
847492c docs: Extended / updated documenation (#824)
7f41483 chore: [workflows] don't release from forks
3f9a94e chore: let's test before publish
bfb8dec fix: release missing dist/ folder
b314b19 chore: fix cpx usage
a607d6c chore: Remove old shizzle
6fd5329 chore: fixes for deploy preview
144f886 chore: fix docs deployment attempt 3
38964fa chore: semantic-release + GH actions
06c6741 chore: fix docs deploy
ad23da9 chore: fix test job
b6d92f4 chore: publish docs automatically
c59576a chore: setup GH action for test
dc3f66c fix: #807 new undefined properties should end up in result object
5412c9f fix: #791 return 'nothing' should produce undefined patch
58b74a6 chore(deps): bump ssri from 6.0.1 to 6.0.2 in /website (#818)
c9deb48 chore(deps): bump color-string from 1.5.4 to 1.5.5 in /website (#817)

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

cefn / lauf