This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
#### Vulnerabilities that will be fixed
##### With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
 | **661/1000** **Why?** Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution [SNYK-JS-LOADERUTILS-3043105](https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3043105) | Yes | No Known Exploit
(*) Note that the real score may have changed since the PR was raised.
Commit messagesPackage name: ts-loader
The new version differs by 50 commits.
268bc69 chore(deps): upgrade most production deps (#1237)
95b6fe8 Uses existing instance if config file is same as already built solution (#1177)
b38678a Update minimum compiler version to 3.6.3 (#1188)
f8eba53 Add documentation and example code for projectReferences (#1184)
46d9761 Update docs to show transpileOnly does not affect project references (#1175)
0e64ceb Fix getOptionsHash when two options has different props but same values. (#1170)
See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
------------
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/omermorad/project/eecd0210-d7a3-4726-9afe-146eccacce16?utm_source=github&utm_medium=referral&page=fix-pr)
🛠 [Adjust project settings](https://app.snyk.io/org/omermorad/project/eecd0210-d7a3-4726-9afe-146eccacce16?utm_source=github&utm_medium=referral&page=fix-pr/settings)
📚 [Read more about Snyk's upgrade and patch logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities)
[//]: # (snyk:metadata:{"prId":"c3abf82a-7dfb-436c-b14c-07c0ea29b064","prPublicId":"c3abf82a-7dfb-436c-b14c-07c0ea29b064","dependencies":[{"name":"ts-loader","from":"6.2.2","to":"8.0.14"}],"packageManager":"npm","projectPublicId":"eecd0210-d7a3-4726-9afe-146eccacce16","projectUrl":"https://app.snyk.io/org/omermorad/project/eecd0210-d7a3-4726-9afe-146eccacce16?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-LOADERUTILS-3043105"],"upgrade":["SNYK-JS-LOADERUTILS-3043105"],"isBreakingChange":true,"env":"prod","prType":"fix","templateVariants":["updated-fix-title","priorityScore"],"priorityScoreList":[661]})
---
**Learn how to fix vulnerabilities with free interactive lessons:**
🦉 [Prototype Pollution](https://learn.snyk.io/lessons/prototype-pollution/javascript//?loc=fix-pr)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **661/1000****Why?** Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution
[SNYK-JS-LOADERUTILS-3043105](https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3043105) | Yes | No Known Exploit (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: ts-loader
The new version differs by 50 commits.- 268bc69 chore(deps): upgrade most production deps (#1237)
- e160564 Add a cache to file path mapping (#1228)
- 14fa3f8 Add documentation about performance profiling (#1230)
- 3cc78b8 Fix typo in README.md (#1229)
- 8f2a509 Add documentation for the useCaseSensitiveFileNames option (#1227)
- 566e6ce Instead of checking date, check time thats more accurate to see if something has changed (#1217)
- 172ebeb Feature/typescript 4 1 (#1213)
- 0816fe9 Add peer dependencies for Yarn PnP (#1209)
- 4909d99 Fixed missing errors in watch mode in webpack5 (#1208)
- 3f73e98 Fix failed builds when using thread-loader (#1207)
- e90f8ad Fix memory leak when using multiple webpack instances (#1205)
- 95050eb Speeds up project reference build and doesnt store the result in memory (#1202)
- f99c7c4 doc: escape pipe in table (#1201)
- 0b4a86d Replace afterCompile to stop webpack 5 warning (#1200)
- 6d8d601 Fixed deprecation warnings on webpack@5. (#1195)
- cafc933 Fix installation link on README.md (#1192)
- f5e901e Bump http-proxy in /examples/react-babel-karma-gulp (#1182)
- 0767bce add github action status badge (#1190)
- db5ea55 Feature/upgrade testpack to ts4 (#1189)
- 95b6fe8 Uses existing instance if config file is same as already built solution (#1177)
- b38678a Update minimum compiler version to 3.6.3 (#1188)
- f8eba53 Add documentation and example code for projectReferences (#1184)
- 46d9761 Update docs to show transpileOnly does not affect project references (#1175)
- 0e64ceb Fix getOptionsHash when two options has different props but same values. (#1170)
See the full diff