[Snyk] Upgrade webpack-dashboard from 3.2.1 to 3.3.6

[snyk-bot]

Snyk has created this PR to upgrade webpack-dashboard from 3.2.1 to 3.3.6.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2021-09-06.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Access Restriction Bypass SNYK-JS-XMLHTTPREQUESTSSL-1255647	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Arbitrary Code Injection SNYK-JS-XMLHTTPREQUESTSSL-1082936	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Remote Code Execution (RCE) SNYK-JS-HANDLEBARS-1056767	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Denial of Service (DoS) SNYK-JS-ENGINEIO-1056749	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-HANDLEBARS-1279029	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: webpack-dashboard

• 3.3.6 - 2021-09-06
  

  3.3.6

• 3.3.5 - 2021-07-12
  

  3.3.5

• 3.3.4 - 2021-07-12
  

  3.3.4

• 3.3.3 - 2021-05-05
  

  3.3.3

• 3.3.2 - 2021-05-05
  

  3.3.2

• 3.3.1 - 2021-01-29
  

  3.3.1

• 3.3.0 - 2021-01-21
  

  3.3.0

• 3.2.1 - 2020-08-24
  

  3.2.1

from webpack-dashboard GitHub release notes

Commit messages

Package name: webpack-dashboard

• 983a80c 3.3.6
• cb0aaa2 Changes for 3.3.6
• ee73086 Bug: (#338)
• 1c958c4 3.3.5
• 7d6e1f0 Changes for 3.3.5
• 086b5ca Chore: Update deps and CI infrastructure. (#334)
• 5784941 3.3.4
• 8cb83b7 Changes for 3.3.4
• 0a11e7e Chore: Various plugin refactoring and simplification. (#332)
• 90a8469 Bump glob-parent from 5.1.1 to 5.1.2 (#331)
• 08a0f3d Bump ws from 7.4.2 to 7.4.6 (#330)
• 05f0ad7 Bump browserslist from 4.16.1 to 4.16.6 (#329)
• aa913af Bump hosted-git-info from 2.8.8 to 2.8.9 (#328)
• 98bd881 Bump lodash from 4.17.20 to 4.17.21 (#327)
• ee5c6f8 Bump handlebars from 4.7.6 to 4.7.7 (#326)
• 78d00b0 3.3.3
• d679ae8 Changes for 3.3.3
• 8df6394 Merge branch 'master' of github.com:FormidableLabs/webpack-dashboard
• 3da6c51 3.3.2
• e37ff0e Changes for 3.3.2
• 0958612 Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package (#325)
• 32b9543 3.3.1
• 8c3c516 Changes for 3.3.1
• de3eb44 Bugfix: Ensure status is updated correctly on compilation finishing. (#322)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs