[Snyk] Security upgrade ses from 0.18.5 to 0.18.7

[yisiliu]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	776/1000 Why? Recently disclosed, Has a fix available, CVSS 9.8	Improper Input Validation SNYK-JS-SES-5830612	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ses

The new version differs by 63 commits.

• b383616 chore(release): publish
• d327959 docs: Update release notes
• 395800b chore(transforms): Do not publish yet
• fc90c64 fix(fix): Censor spread import
• ee5961d Merge pull request [Release] Hotfix 1.17.1 => 1.17.2 (patch) (2 of 2) #1708 from endojs/mfig-bundle-source-types
• 670a02c test(bundle-source): revert outdated narrowing assertions
• 2e546d2 fix(bundle-source): type `bundleSource` more comprehensively
• 25e0936 Merge pull request [Release] Hotfix 1.17.1 => 1.17.2 (patch) (1 of 2) #1707 from endojs/kriskowal/fix-pack
• 42439e7 fix: Fix scaffold and transforms yarn pack
• 5465d45 Merge pull request chore(deps): [security] bump electron from 9.2.1 to 9.3.2 #1678 from endojs/markm-normalize-q-print-order
• 137daff fix(ses): normalize bestEffortsStringify property order
• f50ad7d Merge pull request [Bug] Tap "QR Code" in import persona page leads to blank screen #1700 from endojs/kriskowal/pull-request-and-issue-templates
• 7e41e73 docs: Add pull request and issue templates
• c245ff2 docs: Add security doc to top level of repo
• a8285e0 Merge pull request fix: qr scanner does not support iOS close #1700 #1704 from endojs/ta/update-typescript-eslint
• 7234c05 chore(types): specify BundleSource return type
• cf68fb0 feat: always lint types
• 276d501 ci(types): fix/suppress restrict-comparison-operands
• 1d15d06 chore(deps): bump eslint to 8.46
• 3d803ed chore(eslint-plugin): remove unnecessary check for full type info
• f6ce152 chore(deps): bump typescript-eslint to 6.2.1
• 516514d Merge pull request [Bug] The "clock" button in wallet page should be removed #1702 from endojs/kriskowal/skel
• e67cd3f chore: Update package skeleton
• bee6dfa Merge pull request [Task] Add more ErrorBoundary to prevent whole Maskbook fails in a blank screen #1701 from endojs/kriskowal/1217-scaffold-transforms

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Improper Input Validation