This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- js/apps/system/_admin/aardvark/APP/react/package.json
- js/apps/system/_admin/aardvark/APP/react/package-lock.json
#### Vulnerabilities that will be fixed
##### With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
 | **696/1000** **Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS) [SNYK-JS-ANSIREGEX-1583908](https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908) | Yes | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Commit messagesPackage name: html-webpack-plugin
The new version differs by 92 commits.
6e2cbde fix: proxy logging and allow to pass options without the `target` option (#3651)
c9ccc96 fix: respect infastructureLogging.level for client.logging (#3613)
See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
------------
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/dev.dkdldhxl2/project/fed87f2b-34df-4444-a58e-85b26aaaf554?utm_source=github&utm_medium=referral&page=fix-pr)
🛠 [Adjust project settings](https://app.snyk.io/org/dev.dkdldhxl2/project/fed87f2b-34df-4444-a58e-85b26aaaf554?utm_source=github&utm_medium=referral&page=fix-pr/settings)
📚 [Read more about Snyk's upgrade and patch logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities)
[//]: # (snyk:metadata:{"prId":"ff6e6dbd-ab69-448b-877e-122f175f6302","prPublicId":"ff6e6dbd-ab69-448b-877e-122f175f6302","dependencies":[{"name":"html-webpack-plugin","from":"4.0.0-alpha.2","to":"4.0.0"},{"name":"node-sass","from":"4.14.1","to":"7.0.1"},{"name":"webpack-dev-server","from":"3.11.0","to":"4.0.0"}],"packageManager":"npm","projectPublicId":"fed87f2b-34df-4444-a58e-85b26aaaf554","projectUrl":"https://app.snyk.io/org/dev.dkdldhxl2/project/fed87f2b-34df-4444-a58e-85b26aaaf554?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-ANSIREGEX-1583908"],"upgrade":["SNYK-JS-ANSIREGEX-1583908"],"isBreakingChange":true,"env":"prod","prType":"fix","templateVariants":["priorityScore"],"priorityScoreList":[696]})
---
**Learn how to fix vulnerabilities with free interactive lessons:**
🦉 [Learn about vulnerability in an interactive lesson of Snyk Learn.](https://learn.snyk.io?loc=fix-pr)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - js/apps/system/_admin/aardvark/APP/react/package.json - js/apps/system/_admin/aardvark/APP/react/package-lock.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **696/1000****Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-ANSIREGEX-1583908](https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908) | Yes | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: html-webpack-plugin
The new version differs by 92 commits.- eb73905 chore(release): 4.0.0
- 42a6d4a Add typing for getHooks
- a1a37cf Release html-webpack-plugin 4.0.0-beta.14
- 97f9fb9 fix: load script files before style files files in defer script loading mode
- e97ce17 Release html-webpack-plugin 4.0.0-beta.13
- e448b5d Release html-webpack-plugin 4.0.0-beta.12
- de315eb feat: Add defer script loading
- 7df269f feat: Provide a verbose error message if html minification failed
- 1d66e53 feat: merge templateParameters with default template parameters
- dfb98e7 Fix typo in template option docts
- 096a760 Fix broken links in examples
- a195c34 docs: Update template-option documentation
- 40b410e docs: Update example for template parameters
- bf017f3 chore: Release 4.0.0-beta.11
- 2549557 test: Don't use minification for speed measurement
- de22fc2 test: Adjust measurment for node 6 on travis
- 24bf1b5 fix: Update references to html-minifier
- f4eafdc chore: Release 4.0.0-beta.10
- a2ad30a refactor: Use getAssetPath instead of calling the hook directly
- 2595a79 chore: Release 4.0.0-beta.9
- c66766c feat: Add support for minifying inline ES6 inside html templates
- 655cbcd Fix README typo
- 6de319b update lodash dependency for prototype polution vulnerability
- 35a1541 Properly encode file names emitted as part of URLs.
See the full diffPackage name: node-sass
The new version differs by 74 commits.- 99242d7 7.0.1
- 77049d1 build(deps): bump sass-graph from 2.2.5 to 4.0.0 (#3224)
- c929f25 build(deps): bump node-gyp from 7.1.2 to 8.4.1 (#3209)
- 918dcb3 Lint fix
- 0a21792 Set rejectUnauthorized to true by default (#3149)
- e80d4af chore: Drop EOL Node 15 (#3122)
- d753397 feat: Add Node 17 support (#3195)
- dcf2e75 build(deps-dev): bump eslint from 7.32.0 to 8.0.0
- bfa1a3c build(deps): bump actions/setup-node from 2.4.0 to 2.4.1
- 80d6c00 chore: Windows x86 on GitHub Actions (#3041)
- 566dc27 build(deps-dev): bump fs-extra from 0.30.0 to 10.0.0 (#3102)
- 7bb5157 build(deps): bump npmlog from 4.1.2 to 5.0.0 (#3156)
- 2efb38f build(deps): bump chalk from 1.1.3 to 4.1.2 (#3161)
- fca5257 build(deps): bump actions/setup-node from 2.3.0 to 2.4.0
- 6200b21 docs: Double word "support" (#3159)
- eaf791a build(deps): bump actions/setup-node from 2.1.5 to 2.3.0
- 16b8d4b build(deps): bump coverallsapp/github-action from 1.1.2 to 1.1.3
- c167004 6.0.1
- 911d4db remove mkdirp dep (#3108)
- 30a52f7 build(deps): bump meow from 3.7.0 to 9.0.0
- 7e08463 build(deps-dev): bump mocha from 8.4.0 to 9.0.1
- cfcbb2c chore: Use default Apline version from docker-node (#3121)
- 886319b chore: Drop Node 10 support
- c908f4f fix: Bump OSX minimum to 10.11
See the full diffPackage name: webpack-dev-server
The new version differs by 250 commits.- c9271b9 chore(release): 4.0.0
- 18bf369 test: fix stability (#3676)
- cdcabb2 fix: respect protocol from browser for manual setup (#3675)
- 1768d6b fix: initial reloading for lazy compilation (#3662)
- 4f5bab1 docs: improve examples (#3672)
- f2d87fb fix: improve https CLI output (#3673)
- 0277c5e chore: remove redundant console statements (#3671)
- 16fcdbc docs: add `ipc` example (#3667)
- 8915fb8 test: add e2e tests for built in routes (#3669)
- 4d1cbe1 docs: ask `version` information in issue template (#3668)
- b6c1881 chore(deps-dev): bump core-js from 3.16.1 to 3.16.2 (#3666)
- ffa8cc5 chore(deps-dev): bump supertest from 6.1.5 to 6.1.6 (#3665)
- f1fdaa7 chore(release): 4.0.0-rc.1
- c4678bc fix: legacy API (#3660)
- d8bdd03 test: fix stability (#3661)
- 22b1414 refactor: remove `killable` (#3657)
- 75bafbf test: add e2e tests for module federation (#3658)
- 493ccbd chore(deps): update `ws` (#3652)
- ae8c523 test: add e2e test for universal compiler (#3656)
- f94b84f chore(deps): update (#3655)
- 1923132 test: fix cli
- 2adfd01 test: fix todo (#3653)
- 6e2cbde fix: proxy logging and allow to pass options without the `target` option (#3651)
- c9ccc96 fix: respect infastructureLogging.level for client.logging (#3613)
See the full diff