[Snyk] Fix for 1 vulnerabilities

[lirantal]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	399/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:ms:20170412	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: compression

The new version differs by 183 commits.

• 8c3f7ea 1.7.0
• c27dc0f build: support Node.js 8.x
• d886306 build: eslint-config-standard@10.2.1
• 598d876 Use safe-buffer for improved Buffer API
• 47fca12 build: eslint-plugin-markdown@1.0.0-beta.6
• 3c78e39 build: Node.js@6.11
• 6c4c539 deps: debug@2.6.8
• 6d2de08 deps: compressible@~2.0.10
• ac13bc4 deps: bytes@2.5.0
• 527907c deps: debug@2.6.4
• 6488fc2 build: Node.js@7.10
• 55532e1 build: Node.js@6.10
• 0e4ad01 build: Node.js@4.8
• be58132 deps: compressible@~2.0.10
• 4d5238e deps: vary@~1.1.1
• 4bd00d3 tests: fix flush tests to validate chunks
• b980b94 build: Node.js@7.5
• 6b836c5 build: eslint@3.15.0
• 32206c3 deps: debug@2.6.1
• a417be3 deps: debug@2.6.0
• b3a4ff7 build: eslint@3.14.1
• 826d622 build: support Node.js 7.x
• 5cc6772 build: Node.js@4.7
• 90e4561 lint: use standard style in the README

See the full diff

Package name: mongoose

The new version differs by 250 commits.

• 23efdcf chore: release 4.10.2
• f627ba5 fix: bump ms -> 2.0.0
• b8263d6 fix: bump mquery for regexp vulnerability
• 84b3e28 docs: improve projection descriptions re: #1534
• ca5e53c chore: now working on 4.10.2
• 3474d8d chore: release 4.10.1
• dc6f887 fix(populate): handle doc.populate() with virtuals
• a6dd311 test(populate): repro #5240
• 6a2d405 fix(aggregate): handle sorting by text score correctly
• b386516 test(aggregate): repro #5258
• 54f624e Merge branch 'master' of github.com:Automattic/mongoose
• 5038635 fix(schema): enforce that _id is never null
• f7cbbdc docs: list a couple intermediate changes in changelog
• d951bed chore: now working on 4.10.1
• 274ed0f docs: add missing ignore
• 43752e8 chore: release 4.10.0
• 142fbba Merge pull request #5270 from Automattic/4.10
• 4bc7b3e docs: add missing ignores to sharding plugin
• e8c8789 Merge branch '4.10' of github.com:Automattic/mongoose into 4.10
• 9d4c9d4 Merge branch 'master' into 4.10
• b8f0dd8 Merge pull request #5253 from Automattic/5145
• f3805fa Merge pull request #5252 from Automattic/4569
• 8ba7869 Merge pull request #5268 from clozanosanchez/patch-2
• 373bb6f Update clone method to include indexes

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.