📦 Update dependency terser [SECURITY]

[renovate[bot]]

This PR contains the following updates:

Package	Change	Package file
terser	5.9.0 -> 5.14.2	package.json
terser	4.8.0 -> 4.8.1	build-system/tasks/storybook/package.json
terser	5.10.0 -> 5.14.2	build-system/tasks/storybook/package.json

See all other Renovate PRs on the Dependency Dashboard

How to resolve breaking changes

This PR may introduce breaking changes that require manual intervention. In such cases, you will need to check out this branch, fix the cause of the breakage, and commit the fix to ensure a green CI build. To check out and update this PR, follow the steps below:

# Check out the PR branch
git checkout -b renovate/npm-terser-vulnerability main
git pull https://github.com/ampproject/amphtml.git renovate/npm-terser-vulnerability

# Directly make fixes and commit them
amp lint --fix # For lint errors in JS files
amp prettify --fix # For prettier errors in non-JS files
# Edit source code in case of new compiler warnings / errors

# Push the changes to the branch
git push [email protected]:ampproject/amphtml.git renovate/npm-terser-vulnerability:renovate/npm-terser-vulnerability

GitHub Vulnerability Alerts

CVE-2022-25858

The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.

---

Configuration

📅 Schedule: Branch creation - "" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• [ ] If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by Mend Renovate. View repository job log here.

[amp-owners-bot[bot]]

Hey @alanorozco! These files were changed:

build-system/tasks/storybook/package-lock.json