[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	471/1000 Why? Recently disclosed, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: gulp-awspublish

The new version differs by 45 commits.

• 529a174 bump version
• 4cfb130 Add `publish(.., {noAcl: true})` option (#118)
• 0c3090d Add "mentions" badge (#119)
• 2ca25f5 Merge pull request #116 from pgherveou/feature/update-dependencies
• dcade7b Merge pull request #115 from sbalay/whitelist
• 483b14a Fix typo in jsdoc of sync method
• fbc4c9e Use a second parameter of sync method for whitelistedFiles
• d93126a Bumps package.json version
• 8737bfb Updates the outdated npm dependencies
• 3d3684f Refactor sync method to allow exclusions to file deletion
• a91ab27 remove debugging statement from tests
• f8dc3a9 Adds tests for cacheOptions (#113)
• f48f061 bump version
• 95578b1 Cache file options (#110)
• 795ec63 Merge pull request #111 from thewarpaint/add-example-links
• c2866b9 Add example links
• 259d96e Merge pull request #104 from robbiet480/patch-1
• 2546ceb Improve credentials section of README.md
• 9b477ec Merge pull request #101 from nathanredblur/patch-1
• 54f8e17 Merge pull request #102 from lpender/patch-1
• d0f9847 Add cloudfront invalidation plugin to README
• 6436fb0 Update README with a clear policy example
• ec6f5a8 Merge pull request #100 from Fatalito/patch-1
• 41461c2 Add exception for header Content-MD5

See the full diff

Package name: gulp-clean

The new version differs by 2 commits.

• 1b2503e Merge pull request #30 from kuangyeheng/pl
• d83c56a remove gulp-util

See the full diff

Package name: gulp-ng-constant

The new version differs by 21 commits.

• 1cba007 chore(version): bump to 1.0.0 🎉
• 313a601 chore(readme): update numbers in readme index
• 107e505 chore(deprecations): remove options.dest
• 94d9142 chore(readme): add LoicMahieu to readme
• 81c044d chore(deps): update gulp-util and through2
• a41baaf fix(tests): update tests to use lodash extend function
• 814e19f chore(test): add test for extending file constants with config constants
• 6ed9fec Merge pull request [Snyk] Security upgrade karma from 0.12.37 to 6.3.14 #21 from LoicMahieu/master
• 657dbb8 chore(deps): update lodash to latest version
• 7c58b1a chore(travis): add latest stable iojs to travis
• f5e70ba chore(travis): add nodejs 0.12 to travis tests
• 420ca8b chore(readme): add YAML example to readme
• c09026a chore(tests): add tests for loading YAML and JSON
• 7c5dee9 Merge pull request [Snyk] Security upgrade gulp-sass from 1.3.3 to 5.0.0 #16 from dotDeeka/master
• 57ff359 Typo in package.json
• adca6bd Using YAML parser instead of JSON.parse which will be able to parse both YAML and JSON
• 651e6c3 chore(tests): add todos on test improvements
• fd655b1 chore(readme): update readme with more information about default name
• f46c424 fix(options.name): set the default module name to the file name
• 73e8847 chore(tests): add more tests yay!! 🍰 🎆
• fc53b51 feat(options.name): set default name

See the full diff

Package name: gulp-rev-all

The new version differs by 80 commits.

• 7a37fb0 Release v0.9.8
• 1eaf320 Merge pull request #183 from demurgos/issue-182
• 7ec8f04 Drop dependency on deprecated `gulp-util`
• bd241e8 Add keywords
• 9ede8b0 bump
• 2b6eab8 Merge branch 'master2'
• 895a4d0 Merge branch 'manifest-options'
• 6d80b09 Fix issues with manifestFile() and versionFile(), add tests around basic usage
• d1e7de4 Update readme to reflect new api
• fbeb7c3 ES6 typo
• 23ce9f2 bump
• 603a6f0 Add in some checks to alert user if functions are being called in the incorrect order
• cdcad6e Modify API to conform to gulp guidelines to be a "good" plugin.
• 90cee52 includeFilesInManifest option added, see README.md
• c762b50 execute windows relative paths tests only on windows
• 02145da test for relative windows paths
• 15a73bf fix relative references to subdirs on windows
• e9a2fb4 Revert #132
• 48d5ed5 Bump
• e7d945a Merge pull request #135 from wvanderdeijl/master
• 71c4841 Merge pull request #137 from qixotic/master
• cb0b0e3 Merge pull request #132 from inian/master
• 049d4a9 Merge pull request #100 from jordansexton/patch-1
• 36e3009 update mocha and the gulp lint task

See the full diff

Package name: gulp-sass

The new version differs by 65 commits.

• ee03918 Merge pull request #254 from dlmanning/2.x
• 598d16f Merge pull request #248 from Snugug/feature/contributing
• dec985f Merge pull request #253 from Snugug/feature/3.0-bump
• c033adf ⬆️ Update Node Sass to 3.0
• 083e6bc 🔥 Remove reference to branch
• e072993 🔥 Remove Branching Model section
• ee07858 🎨 Update formatting of CHANGELOG entry
• 299c18f 📝 Add Contributing guidelines
• 33aa1f7 Merge pull request #238 from sarenji/2.x
• 2b21a49 Update to node-sass beta 7
• c1d629c Allow you to change the compiler and expose it
• cc2f815 bump node-sass to 3.0.0-beta.4
• 9b69aaa Merge pull request #228 from Snugug/2.x-datastream
• b7ade97 Indented Syntax support
• ad6e6e4 Tests for file rename and file contents change
• 0fefd16 Updated vars and includePaths based on comments
• 700ca8d Merge pull request #222 from Keats/filename
• 5b8d4eb Nope, shouldn't be , should be file name
• 4c4c3c1 A little bit of source map massaging
• bea198e Updated Tests
• 3cdf1a3 Passing file as data
• 5c7777f Rebase on top of 2.x
• de6af93 Add a sass file to the inheritance test
• 25ee16f Replace indent.sass to match an existing issue

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution