[Snyk] Fix for 20 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • s3-react-website/typescript/website/package.json
  • s3-react-website/typescript/website/package-lock.json
  • s3-react-website/typescript/website/.snyk

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-CSSWHAT-1298035	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-IMMER-1019369	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution SNYK-JS-LODASH-567746	Yes	Proof of Concept
	704/1000 Why? Has a fix available, CVSS 9.8	Prototype Pollution SNYK-JS-LODASH-590103	Yes	No Known Exploit
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	Yes	No Known Exploit
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-OBJECTPATH-1017036	No	Proof of Concept
	494/1000 Why? Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-OBJECTPATH-1569453	No	No Known Exploit
	590/1000 Why? Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-OBJECTPATH-1585658	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Command Injection SNYK-JS-REACTDEVUTILS-1083268	Yes	Proof of Concept
	706/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.7	Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JS-SOCKJS-575261	No	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-YARGSPARSER-560381	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @testing-library/jest-dom

The new version differs by 17 commits.

• 7921e4a feat: Enhance toHaveStyle to accept JS as css (Bump lodash from 4.17.19 to 4.17.21 in /s3-angular-website/python/website cdk-patterns/serverless#196)
• 3b3a3d3 docs: add benmonro as a contributor (Bump lodash from 4.17.20 to 4.17.21 in /s3-react-website/typescript/cdk cdk-patterns/serverless#195)
• a053cdd docs: add JPBlancoDB as a contributor (Bump url-parse from 1.4.7 to 1.5.1 in /s3-angular-website/python/website cdk-patterns/serverless#194)
• 69aee34 docs: add koala-lava as a contributor (Bump hosted-git-info from 2.8.8 to 2.8.9 in /s3-angular-website/python/website cdk-patterns/serverless#193)
• 5f3f9c7 docs: add jzarzeckis as a contributor (Python function samples are actually JavaScript cdk-patterns/serverless#192)
• 0d60a25 docs: add MichaelDeBoey as a contributor (Bump ssri from 6.0.1 to 6.0.2 in /s3-angular-website/python/website cdk-patterns/serverless#191)
• c9a8664 chore: Update dependencies (Bump y18n from 4.0.0 to 4.0.1 in /the-alexa-skill/typescript cdk-patterns/serverless#190)
• e4d61c2 fix: toBeVisible ignoring Details element (Bump elliptic from 6.5.3 to 6.5.4 in /s3-angular-website/python/website cdk-patterns/serverless#184)
• d87dfee Simplify README code usage examples (Bump y18n from 4.0.0 to 4.0.1 in /polly/typescript cdk-patterns/serverless#188)
• 030da62 fix: Add @ types/testing-library__jest-dom dependency (Bump y18n from 4.0.0 to 4.0.1 in /the-basic-mq/typescript cdk-patterns/serverless#189)
• d13bb90 docs: Tiny typo (The RDS proxy stack failing to build cdk-patterns/serverless#181)
• c919520 docs: Remove lines about using fireEvent to gain focus or blur (Bump y18n from 4.0.0 to 4.0.1 in /s3-react-website/typescript/cdk cdk-patterns/serverless#187)
• 760409a Merge pull request Private API Gateway cdk-patterns/serverless#183 from testing-library/next
• d68ccd7 Add matchers module in the package root
• c76f8c5 Remove extend-expect typings (The Fargateway Pattern cdk-patterns/serverless#182)
• 27c1056 Add jest extensions on main module (New stack - Dynamodb atomic counter  cdk-patterns/serverless#175)
• 8e14dc1 docs: Update examples using document.querySelector (CSharp and Java versions for polly stack. Refactored deprecated functions. cdk-patterns/serverless#168)

See the full diff

Package name: react-scripts

The new version differs by 203 commits.

• ed95893 Publish
• 88ca4f6 Prepare 4.0.0 release
• d23d615 Update react dom in error overlay
• 95265c3 Update CHANGELOG
• 523b416 Add link to Open Collective (#9864)
• af616ab Update CHANGELOG
• 014ca01 Prepare 4.0.0 release
• 2b1161b Pass JSX runtime setting to Babel preset in Jest config (#9865)
• f2aef41 Prepare 4.0.0 alpha release
• 4bc639c Upgrade to React 17 (#9863)
• d61347d Use new JSX setting with TypeScript 4.1.0 (#9734)
• e63de79 New JSX Transform opt out (#9861)
• fe785b2 feat: Update all dependencies (#9857)
• 85ab02b feat: remove unused React imports (#9853)
• 329f392 feat: Update ESLint dependencies (#9856)
• 10fa972 feat(eslint-config-react-app): Add jest & testing-library rules (#8963)
• ed919b1 Make eslint-plugin-jest an optional peerDependency (#9670)
• 0a93e32 Fix refreshOverlayInterop module scope error (#9805)
• 7965594 Bump resolve-url-loader version (#9841)
• b1f8536 Add 3.4.4 to the changelog
• d07b7d0 Replace deprecated eslint-loader with eslint-webpack-plugin (#9751)
• 6f3e32e Upgrade Docusaurus to latest version (#9728)
• 1f2d387 fix: resolve new JSX runtime issues (#9788)
• 6a51dcd Add AVIF image support (#9611)

See the full diff

With a Snyk patch:

Severity	Priority Score (*)	Issue	Exploit Maturity
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution SNYK-JS-LODASH-567746	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic