[Snyk] Fix for 4 vulnerabilities

[doron2402]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-AMMO-548920	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) npm:content:20170908	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) npm:content:20180305	Yes	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: good

The new version differs by 27 commits.

• 0ff67e6 version 6.0.0
• f372719 Merge pull request Change the example script index.js to server.js outmoded/hapijs.com#322 from arb/stream-event-reporter-interface
• decbba9 PR updates.
• 31c92d6 Updated to data stream and pipe method for transmitting data. Closes Add hapi-pagination to plugins outmoded/hapijs.com#300.
• 7ee3dd8 Merge pull request hapi-struct boilerplate outmoded/hapijs.com#321 from arb/stop-cleanup
• 8619d2e PR updates.
• 76f57d4 Cleaned up stop function. Closes Add more validation plugins outmoded/hapijs.com#312
• 9e4e405 Merge pull request npm start? outmoded/hapijs.com#317 from geek/master
• 4e726c5 Report on timespent
• b851ba0 Merge branch 'master' of github.com:hapijs/good
• 2cc355f Update check for io.js
• 3933e4e More tests
• b4f4f88 Remove listeners in tests
• c06bc98 Missing ;
• 4420a38 Merge pull request community: Jan is Initiator at Hoodie, not CEO outmoded/hapijs.com#320 from lloydbenson/master
• 9117917 get rid of 0.11 check now that 0.12 is out
• 57789ca Merge pull request Tighten up plugins page whitespace. Closes #285 outmoded/hapijs.com#319 from atroo/master
• e357cea added logstash reporter to the community section
• cc893f8 Expand logged data for wreck
• 938d4b9 Report on wreck requests
• 90ed138 Merge pull request Add tutorial 'Social Login with Twitter using hapi.js' outmoded/hapijs.com#314 from lancespeelmon/patch-1
• ec909d0 Added community powered reference to winston adapter
• 5f2c813 Merge pull request plugins update: hapi-marko outmoded/hapijs.com#313 from arb/dynamic-events
• b6ddd0b Closes plugins update outmoded/hapijs.com#311. Added extension methods.

See the full diff

Package name: good-console

The new version differs by 21 commits.

• b6d12d6 Update .travis.yml
• 96eb24b Fixed lint issue.
• 793fcc0 version 5.0.0
• 8778a88 Updated peer dep
• 204551c Added newline
• cd6904e Added good-squeeze
• 601f03c Merge pull request Added 4 libraries to the plugins page. outmoded/hapijs.com#33 from arb/pipe-update
• 8c81990 Renamed start to init.
• ba6a8c6 Safety logic surrounding tags.
• 92c7513 PR Updates.
• d44cebf Migrate to use pipes and streams.
• 0892fd4 Update README.md
• fbdc19b version 4.1.0
• 52ff425 Merge pull request Create About section outmoded/hapijs.com#31 from arb/utc
• 66c7c08 Removed Makefile. See https://github.com/Makefile outmoded/hapi-contrib#14
• 9d30af7 Added utc option. Closes fixed link to hapijs.com in README. outmoded/hapijs.com#30
• 430a1a3 version 4.0.0
• 348450b Merge pull request hapi-auth-signature plugin outmoded/hapijs.com#29 from arb/output-update
• d215aae PR Updates.
• a5798ca Added Node11 to test matrix.
• 22852eb Rewrote event printing logic to be cleaner. Closes Changelog in updates page renders poorly when browser is wide outmoded/hapijs.com#28.

See the full diff

Package name: hapi

The new version differs by 236 commits.

• c4593b6 deps. Closes #2897. Closes #2898. Closes #2899. Closes #2900. Closes #2901. Closes #2902. Closes #2903. Closes #2904. Closes #2905. Closes #2906. Closes #2907. Closes #2908. Closes #2909. Closes #2910. Closes #2911. Closes #2912. Closes #2913. Closes #2914. Closes #2915. Closes #2916. Closes #2917. Closes #2918. Closes #2919. Closes #2920. Closes #2921. Closes #2922. Closes #2923
• ca4320e Merge pull request #2891 from nlindley/payload-test-typo
• 02b6ac7 Fix typo in payload test
• e5da51c Merge branch 'master' of github.com:hapijs/hapi
• 5a0dc49 Remove compount assignments
• 375fe30 Merge pull request #2888 from cjihrig/master
• 05f6a26 style fixes
• 635089b Merge pull request #2887 from gergoerdosi/node-5
• 86102c7 Test on node v5
• fc503f8 lab 7
• fdf7ed3 Merge pull request #2885 from gergoerdosi/subtext
• 0cb9143 Update hapijs/subtext to 2.0.2 from 2.0.1
• d3a6cf8 typo
• 47373dd Remove bluebird. Closes #2881
• 98d3404 Skip most lifecycle on not found and bad path. Closes #2867
• 7041325 CORS error cases. Closes #2868
• 1696838 Replace function with arrow. Closes #2877
• 2aedf38 Merge branch 'master' of github.com:hapijs/hapi
• ca3ee7e Additional => conversions. For #2877
• 1ef09e8 Merge pull request #2876 from sfabriece/patch-1
• a7b3ad7 Initial transition to arrow functions. For #2877
• 7ec0ae3 Update API.md
• 32cf03c for style change. Closes #2875
• 38f90bb Replace var with let. Closes #2874

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)
🦉 Prototype Pollution