phaser-ui-tools [Snyk] Upgrade eslint-webpack-plugin from 3.0.1 to 3.1.0

[Snyk] Upgrade eslint-webpack-plugin from 3.0.1 to 3.1.0

Open snyk-bot opened this issue 2 years ago • 0 comments

Snyk has created this PR to upgrade eslint-webpack-plugin from 3.0.1 to 3.1.0.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released 2 days ago, on 2021-10-27.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) SNYK-JS-TRIMOFFNEWLINES-1296850	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
Cross-site Scripting (XSS) SNYK-JS-REMARKHTML-1583433	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
Prototype Pollution SNYK-JS-AJV-584908	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-CONVENTIONALCOMMITSPARSER-1766960	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: eslint-webpack-plugin

3.1.0 - 2021-10-27
3.1.0 (2021-10-27)

Features
- support eslint 8 (#121) (caeb2dd)
3.0.1 - 2021-07-20
3.0.1 (2021-07-20)

Bug Fixes
- crash with ERR_REQUIRE_ESM error (26b4db3)