[Snyk] Upgrade: minimatch, sortablejs

[nathonius]

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

minimatchfrom 3.0.4 to 3.1.2 | 7 versions ahead of your current version | 3 years agoon 2022-02-15 sortablejsfrom 1.14.0 to 1.15.2 | 3 versions ahead of your current version | 8 months agoon 2024-01-14

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	479	No Known Exploit

Release notes

Package name: minimatch

• 3.1.2 - 2022-02-15
• 3.1.1 - 2022-02-13

  3.1.1

• 3.1.0 - 2022-02-13

  3.1.0

• 3.0.8 - 2022-02-15
• 3.0.7 - 2022-02-13

  3.0.7

• 3.0.6 - 2022-02-12

  3.0.6

• 3.0.5 - 2022-02-06

  3.0.5

• 3.0.4 - 2017-05-07

  v3.0.4

from minimatch GitHub release notes

Package name: sortablejs

• 1.15.2 - 2024-01-14
  • #2339: Fixes 1.15.1 regression with not being able to add element into start & end of list.
• 1.15.1 - 2023-11-30
  • #2203: Fix multi drag sort event not firing
  • #2263: Only call onDrop on destroy if dragged element inside parent element
  • #1686: Prevent drag item from jumping to end of list if last element has smaller width/height
• 1.15.0 - 2022-03-20
  • #2072: Make sure dragged element is inserted after last dragged element
  • #2084: Added avoidImplicitDeselect option to MultiDrag
  • #2093: Remove ID from cloned element
  • #2095: Remove ignoring click on Chrome for Android when dragging (wasn't necessary)
• 1.14.0 - 2021-07-04
  • Clarify dataIdAttr option docs
  • #1942: Check if ghost is first
  • #2021: Fix multidrag indicies
  • #2025: Fix reverting with nested sortables
  • Added forceAutoScrollFallback option
  • Add trick for empty sortables to README
  • Use minified version main field of package.json

from sortablejs GitHub release notes

---

[!IMPORTANT]

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs