[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: babel-loader

The new version differs by 26 commits.

• 321852e Merge branch 'release/6.0.0'
• e7565ee Add @malyw 's guide to upgrade babel
• 862b7b1 Update travis badge url
• ff3bc7a Update dependencies.
• fc2bfe4 Merge branch 'shinnn-travis-ci' into develop
• a6f3fc0 Change options to query. Increase timeout interval
• 94d6308 Merge remote-tracking branch 'werk85/master' into develop
• f4e40c5 README updated
• 0823f6a Upgraded to Babel 6
• bb110a8 set up Travis CI
• 5992650 5.3.3
• f723509 pin babel-core version in peerDependencies as it'll try and install babel 6...
• f299837 Merge pull request Update bonfires.json freeCodeCamp/freeCodeCamp#87 from jhnns/patch-1
• 17c7860 Clarify note on deprecated peerDependencies
• f84ef50 Merge branch 'develop' of github.com:babel/babel-loader into develop
• 9f117b5 Bump version. Update CHANGELOG.md
• dc66b2a Don't override existing items in sourcesContent if any
• 719eb70 Merge branch 'hotfix/5.3.1' into develop
• 342375d Merge branch 'hotfix/5.3.1'
• edf2bc3 Bump version. Update changelog
• 9fe6bbc Fix for 'Module build failed: TypeError: Object.keys called on non-object'
• 6b33020 Merge branch 'release/5.3.0' into develop
• e22df89 Merge branch 'release/5.3.0'
• 0156f51 Bump version and update CHANGELOG.md

See the full diff

Package name: forever

The new version differs by 47 commits.

• 3aa17a1 [dist] Version bump. 0.15.3
• db85fd5 [fix test] Correct test regression introduced in https://github.com/fix for issue when forever.js ignore workingDir option foreversd/forever#740
• a3baed6 [fix] Modernize server.js fixture.
• a4b2acd [dist] Modernize TravisCI.
• 223044b Merge pull request Zipline: Stylize Stories on Camper News - example issue in Firefox freeCodeCamp/freeCodeCamp#887 from estevesd/patch-1
• 5420944 bump forever-monitor version
• def47f7 Merge pull request Fixes RegExp so it matches the class .blue-text freeCodeCamp/freeCodeCamp#844 from johnptmcdonald/doc_patch
• 16c5933 adds --id flag documentation, deprecation notice for --uid and --id flags
• 66e8c0b [dist] Version bump. 0.15.2
• 6d14360 Merge pull request Challenge http://www.freecodecamp.com/challenges/bonfire-convert-html-entities has an issue  freeCodeCamp/freeCodeCamp#740 from imdoroshenko/fix-workingdir-option-file
• a44c601 Merge pull request Challenge isn't checking where code is added freeCodeCamp/freeCodeCamp#776 from nel215/feature/added_killtree_description
• a39cda4 added descriptions for killTree option
• 77041c3 Merge pull request Missing the forward slash in the instructions for the lesson freeCodeCamp/freeCodeCamp#763 from gitter-badger/gitter-badge
• 5063a03 Add Gitter badge
• faa5d3a Merge pull request More Gen Bugs freeCodeCamp/freeCodeCamp#756 from JamieMcNaught/master
• a957354 Fix findById which was incorrectly returning matches due to use of double rather than triple equals operator.
• 6f8beb1 Merge pull request Is "green box" supposed to be typed twice? freeCodeCamp/freeCodeCamp#752 from dcohenb/repo-url-fix
• 066dbff Fixes the repo url
• 6c157fa [dist] Version bump. 0.15.1
• 2f0552a Merge pull request Spelling error freeCodeCamp/freeCodeCamp#741 from foreverjs/config-file-args
• dffa303 [dist] Update CHANGELOG.md.
• 602ff87 [doc] Update README.md for args information.
• 9ee52f2 [fix test refactor] Allow for args to be passed in config files. Refactor tests to assert port specified in `test/fixtures/server.js`.
• 2310b1e code style fix from @indexzero

See the full diff

Package name: gulp

The new version differs by 250 commits.

• 55eb23a Release: 4.0.0
• 173a532 Docs: Fix the installation instructions
• ec54d09 Docs: Improve note about out-of-date docs
• 03b7c98 Docs: Update recipes to install gulp@next
• 2eba29e Docs: Remove run-sequence from recipes
• 76eb4d6 Docs: Add installation instructions & update badges
• fbc162f Docs: Remove references to gulp-util
• 3011cf9 Scaffold: Normalize repository
• f27be05 Update: Remove graceful-fs from test suite
• 361ab63 Upgrade: Update glob-watcher
• 064d100 Build: Avoid broken node 9
• 057df59 Release: 4.0.0-alpha.3
• c1ba80c Breaking: Upgrade major versions of glob-watcher, gulp-cli & vinyl-fs
• 89acc5c Docs: Improve ES2015 task exporting examples (errors on waypoint-comment-your-javascript-code freeCodeCamp/freeCodeCamp#1999)
• 0ac9e04 Docs: Add "Project structure" section to CONTRIBUTING.md (typo mistake. #111111 is dark grey, not light grey freeCodeCamp/freeCodeCamp#1859)
• 723cbc4 Docs: Fix syntax in recipe example (Onboarding freeCodeCamp/freeCodeCamp#1715)
• d420a6a Docs: Have gulp.lastRun take a function to avoid task registration (Text "[object Object]" found on the Learning Map freeCodeCamp/freeCodeCamp#1828)
• 29ece6f Upgrade: Update undertaker
• e931cb0 Docs: Fix changelog typos (Beta: Waypoint: Modify Array Data With Indexes freeCodeCamp/freeCodeCamp#1696)
• 477db84 Docs: Add a "BrowserSync with Gulp 4" recipe (spam freeCodeCamp/freeCodeCamp#1659)
• d4ed3c7 Docs: Add options.cwd for gulp.src API (Fix for #1644 freeCodeCamp/freeCodeCamp#1645)
• 5dc3b07 Docs: Update gulp.watch API to align with glob-watcher
• 0c66069 Breaking: Replace chokidar as gulp.watch with glob-watcher wrapper
• c3dbc10 Docs: Clarify incremental builds example (Beta: Waypoint: Use Hex Code for Specific Colors - wording on 2nd checkpoint freeCodeCamp/freeCodeCamp#1609)

See the full diff

Package name: gulp-eslint

The new version differs by 31 commits.

• 85672b8 Resolve discs 2.0 js-doc errors;
• 89a1bae Update dev dependencies;
• fd936bb bump version;
• 9f5148e Migrate to eslint 1.0.0-rc-3;
• 0dd1ae5 0.15.0
• e00e7a9 Update changelog;
• 64d6218 Merge pull request Buttons Below Challenge NonFunctional freeCodeCamp/freeCodeCamp#71 from posva/master
• f303a14 Updated dependencies
• c2e7c7a Update change log;
• f5d3c56 0.14.0
• 48258a3 Update eslint version;
• c1db5ce 0.13.2
• 8f7fc1f Remove dependency on through2 package to address issues [Snyk] Fix for 2 vulnerabilities #36 (https://snyk.io/redirect/github/gulp-eslint wont process more than 16 files adametry/gulp-eslint#36);
• a1b1ba1 Update change log;
• dc06ffd Update Vinyl devDependency;
• 3cbb4ea 0.13.1
• c7ec7d4 Merge pull request update bonfire URL on regex match if incomplete url freeCodeCamp/freeCodeCamp#66 from jhorwit2/patch-1
• c026f39 Updated object-assign due to breaking bug
• 422fd4a Bump version;
• 0d97771 Merge pull request Michael Johnson asked for public profile redirection from navbar user image freeCodeCamp/freeCodeCamp#65 from edendramis/master
• 42a68f7 Updating to eslint 0.22.1
• 2b30694 Fix plugin loading by using new addPlugin method;
• 49d4e8e Update eslint to 0.21.0;
• 5359864 bump version;

See the full diff

Package name: rev-del

The new version differs by 22 commits.

• de7ddcf 2.0.0
• a53017b Merge pull request [Snyk] Security upgrade normalize-url from 1.9.1 to 4.5.1 #20 from jakezatecky/master
• f95803a Merge pull request [Snyk] Fix for 1 vulnerabilities #16 from joostdekeijzer/deleteMapExtensions-issue-10
• c58cf53 Update dependencies
• cf4592b deleteMapExtensions help text
• bb0647a deleteMapExtensions option defaults to false
• 3e6352a Update travis test version
• be9d676 Merge pull request [Snyk] Security upgrade loopback from 2.42.0 to 3.28.0 #13 from nickescallon/add-range-dep-for-lodash
• 6cb4e66 Merge pull request [Snyk] Security upgrade nodemailer from 1.3.4 to 6.4.16 #12 from piotr-cz/patch-1
• 6083c07 Merge pull request [Snyk] Security upgrade sanitize-html from 1.6.1 to 2.3.2 #14 from silverbackdan/master
• 099fc8c Remove statSync from secondary potential map file path
• ce37d62 Coding style whitespace update
• ab3a318 Change existsSync to statSync and coding style update
• 9929902 Conflict resolve
• dae8438 First local to remote commit
• 218f09d .map find fixes
• b9e10b6 Lookup key for file to locate .map
• 9ab2b0c Respect deleteMapExtensions option
• a0a913e .map extension check
• aa4db05 Option for checking and deleting .map extenions
• acea599 increase lodash dependency version range
• bd6105e Fix path resolution on windwos

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic