[Snyk] Fix for 2 vulnerabilities

[hfreire]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-HAPISTATEHOOD-2769251	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @hapi/hapi

The new version differs by 10 commits.

• d5c665a v20.0.0
• b3f2eb5 remove route timeout assertions (#4123)
• 501a264 update to teamwork@5.x.x (#4130)
• 783aa8a add isInjected property to request object (#4117)
• c31bd6d update to travis templates
• 815c854 update most out of date dependencies
• f46f864 Replace joi with validate
• f7e9193 headers: avoid sending null content-type
• 5c08509 Merge pull request #4132 from lloydbenson/master
• 3f25515 README needs this change to parse the slogan for site

See the full diff

Package name: hapi-swagger

The new version differs by 172 commits.

• 002a3fb 14.5.4
• ea26b62 Merge pull request Bump semantic-release from 16.0.2 to 16.0.3 #768 from hapi-swagger/swagger-parser-update
• df315ac Merge pull request Update snyk to the latest version 🚀 #767 from hapi-swagger/fix-examples
• a3d27cb fix: issue Update snyk to the latest version 🚀 #735 no required for arrays in swagger
• c7512f8 fix: yarn.lock without good modules
• 6427bc7 Merge pull request Bump snyk from 1.278.1 to 1.279.0 #765 from AndriiNyzhnyk/remove_deprecated_components
• 72ad64b fix: broken example code regression issues
• 19c91af Merge pull request Bump jest from 24.9.0 to 25.1.0 #766 from hapi-swagger/update-repo-urls
• 7b2e92a chore: remove deprecated 'good' module
• 4b544e8 chore: update repo urls to hapi-swagger
• ea35827 update jsDoc
• 73f8838 remove unused variables
• 88c3316 rewrite function 'appendQueryString'
• 22b74c2 14.5.3
• e9839c4 Merge pull request Bump @hapi/hapi from 19.0.4 to 19.0.5 #763 from AndriiNyzhnyk/fix_issue_711
• 9a01c3f Merge pull request Bump @hapi/joi from 17.0.2 to 17.1.0 #764 from AndriiNyzhnyk/improve_test_coverage
• bc3f65e remove not needed arguments
• f225432 add test for function 'appendQueryString'
• 393a3dc move function 'appendQueryString' to 'Utilities'
• 7358d95 simplify condition
• 2dde132 improve coverage for function 'toJoiObject'
• 3106505 simplify function 'removeTrailingSlash'
• 5c170b1 add test for function 'removeTrailingSlash'
• 84cbf5a add test for function 'getJoiLabel'

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)