[Snyk] Security upgrade storybook from 7.6.11 to 8.0.0

[nadia-reinertsen]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	141/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Local, EPSS: 0.01055, Social Trends: No, Days since published: 102, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.35, Score Version: V5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: storybook

The new version differs by 250 commits.

• 49f18e8 Bump version from "8.0.0-rc.5" to "8.0.0" [skip ci]
• 6c30c31 Trigger release of 8.0.0 with empty commit
• 8c7c296 Write changelog [skip ci]
• 82e153f Merge pull request #26358 from storybookjs/framework-doc-svelte-vite
• fffbbc9 Add `svelte-vite` framework doc
• 298d60c Merge pull request #26265 from storybookjs/framework-doc-react-webpack5
• f9646dd Address comments
• d392a90 Add `react-webpack5` framework doc
• 3004edf Merge pull request #26264 from storybookjs/framework-doc-react-vite
• 3586fc9 Address comments
• 116fd4a Add react-vite framework doc
• 9050c69 Bump version from "8.0.0-rc.4" to "8.0.0-rc.5" [skip ci]
• 1e33053 Merge pull request #26412 from storybookjs/version-non-patch-from-8.0.0-rc.4
• cdfd820 Write changelog for 8.0.0-rc.5 [skip ci]
• eac3a3b Merge pull request #26410 from storybookjs/norbert/fix-automigration-latest-detection
• d978771 add a flag for detecting is the latest version we got from npm matches the version of the CLI exactly
• bfa0570 Bump version from "8.0.0-rc.3" to "8.0.0-rc.4" [skip ci]
• 46bc788 Merge pull request #26370 from storybookjs/version-non-patch-from-8.0.0-rc.3
• a6e4d90 Write changelog for 8.0.0-rc.4 [skip ci]
• 37276b2 Merge pull request #26321 from storybookjs/docs_snapshot_testing
• c1fc191 Merge branch 'next' into docs_snapshot_testing
• 4f6f044 Merge pull request #26405 from storybookjs/norbert/fix-esbuild-version
• 9c2d525 fix the esbuild compatibility versions ranges
• 973fa2d Merge pull request #26398 from storybookjs/docs_fix_tables

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.