[Snyk] Fix for 25 vulnerabilities

[simha95]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	641/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.4	Prototype Pollution SNYK-JS-JSON5-3182856	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-450202	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-73638	Yes	Proof of Concept
	541/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASHTEMPLATE-1088054	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342073	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342082	Yes	Proof of Concept
	520/1000 Why? Has a fix available, CVSS 5.9	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-584281	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	Yes	Proof of Concept
	596/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.5	Arbitrary Code Injection SNYK-JS-UNDERSCORE-1080984	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	Yes	No Known Exploit
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:lodash:20180130	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) npm:minimatch:20160620	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) npm:timespan:20170907	Yes	No Known Exploit
	324/1000 Why? Has a fix available, CVSS 2.2	Uninitialized Memory Exposure npm:utile:20180614	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: babel-eslint

The new version differs by 43 commits.

• 0f20099 5.0.0
• 278579f Update README.md
• 11c2f03 Merge pull request Add MDN links to Bonfires freeCodeCamp/freeCodeCamp#255 from deepsweet/npm-ignore
• 3b5f8f4 include only `index.js` in npm package
• c0f1110 delete `.npmignore`
• f399c89 Merge pull request Standardize "steps", "details", "description" across modesl freeCodeCamp/freeCodeCamp#250 from danez/patch-1
• c71392e adjust test to also cover issue unable to login freeCodeCamp/freeCodeCamp#239
• 413b80e 5.0.0-beta10
• 7a038d5 Merge pull request symmetric-difference - inconsistent instructions freeCodeCamp/freeCodeCamp#246 from babel/escope-patterns
• c80a386 fixup tests
• 36f6638 fix typo
• bd4eee9 check using `__esModule`
• b26bc58 Prevent escope referencer from traversing into param pattern type annotations
• 0d30882 5.0.0-beta9
• 71fadf0 Merge pull request Ux improvements freeCodeCamp/freeCodeCamp#244 from christophehurpeau/patch-1
• d8ac8f9 fix Change decay rate of hot stories to 48 hours freeCodeCamp/freeCodeCamp#243
• 3dcb32c 5.0.0-beta8
• ac4d3f0 Add a test for use strict and directive ast change
• 937eceb 5.0.0-beta7
• 880dc03 Merge pull request Add code execute button freeCodeCamp/freeCodeCamp#241 from jmm/rule-strict
• 80f7a48 temporarily remove test
• 04838a2 Add tests for `strict` rule.
• 4a3a35d Merge pull request bonfire more info button arrow needs to change freeCodeCamp/freeCodeCamp#232 from vaibhavmule/patch-1
• 0cf92d3 update Licenses date

See the full diff

Package name: babel-loader

The new version differs by 13 commits.

• 321852e Merge branch 'release/6.0.0'
• e7565ee Add @ malyw 's guide to upgrade babel
• 862b7b1 Update travis badge url
• ff3bc7a Update dependencies.
• fc2bfe4 Merge branch 'shinnn-travis-ci' into develop
• a6f3fc0 Change options to query. Increase timeout interval
• 94d6308 Merge remote-tracking branch 'werk85/master' into develop
• f4e40c5 README updated
• 0823f6a Upgraded to Babel 6
• bb110a8 set up Travis CI
• f84ef50 Merge branch 'develop' of github.com:babel/babel-loader into develop
• 719eb70 Merge branch 'hotfix/5.3.1' into develop
• 6b33020 Merge branch 'release/5.3.0' into develop

See the full diff

Package name: eslint

The new version differs by 250 commits.

• ff8c4bb 4.5.0
• 480bbee Build: changelog update for 4.5.0
• decdd2c Update: allow arbitrary nodes to be ignored in `indent` (fixes Filter Arrays with .filter - Incorrect test freeCodeCamp/freeCodeCamp#8594) (Fix/Link to External Pages with Anchor Elements freeCodeCamp/freeCodeCamp#9105)
• 79062f3 Update: fix indentation of multiline `new.target` expressions ("url" Needs to be Capitalized in Challenge freeCodeCamp/freeCodeCamp#9116)
• d00e24f Upgrade: `chalk` to 2.x release (After submitting a challenge, remove its code from browser's local storage freeCodeCamp/freeCodeCamp#9115)
• 6ef734a Docs: add missing word in processor documentation (Duplicate #target5 button in the left-well freeCodeCamp/freeCodeCamp#9106)
• a4f53ba Fix: Include files with no messages in junit results (Dropbox  freeCodeCamp/freeCodeCamp#9093) (update pull request template with convenient way to test freeCodeCamp/freeCodeCamp#9094)
• 1d6a9c0 Chore: enable eslint-plugin/test-case-shorthand-strings (it does not accept the font size .. zoom is at 100% freeCodeCamp/freeCodeCamp#9067)
• f8add8f Fix: don't autofix with linter.verifyAndFix when `fix: false` is used (Fixed 'Write Reusable JavaScript with Functions' head and tail freeCodeCamp/freeCodeCamp#9098)
• 77bcee4 Docs: update instructions for adding TSC members (Fix/Prefilter JSON freeCodeCamp/freeCodeCamp#9086)
• bd09cd5 Update: avoid requiring NaN spaces of indentation (fixes Remove jobs from routes freeCodeCamp/freeCodeCamp#9083) (Setting up FreeCodeCamp for Windows freeCodeCamp/freeCodeCamp#9085)
• c93a853 Chore: Remove extra space in blogpost template (Change of Title for Mutations Challenge freeCodeCamp/freeCodeCamp#9088)
• 0d9da6d 4.4.1
• 1ea9a6c Build: changelog update for 4.4.1
• ec93614 Fix: no-multi-spaces to avoid reporting consecutive tabs (fixes Weather App Location issue freeCodeCamp/freeCodeCamp#9079) (Use Conditional Logic with If Statements freeCodeCamp/freeCodeCamp#9087)
• a113cd3 4.4.0
• 181bd46 Build: changelog update for 4.4.0
• 89196fd Upgrade: Espree to 3.5.0 (Update react-youtube to version 7.0.0 🚀 freeCodeCamp/freeCodeCamp#9074)
• b3e4598 Fix: clarify AST and don't use `node.start`/`node.end` (fixes Freecodecamp site not recognizing remainder operator (%) on Windows 8.1 or iPad Air 2, both chrome browsers freeCodeCamp/freeCodeCamp#8956) (Add another test to the Chunky Money challenge freeCodeCamp/freeCodeCamp#8984)
• 62911e4 Update: Add ImportDeclaration option to indent rule (Record Collection challenge has incorrect JSON syntax freeCodeCamp/freeCodeCamp#8955)
• de75f9b Chore: enable object-curly-newline & object-property-newline.(fixes Record Collection Issue freeCodeCamp/freeCodeCamp#9042) (Access Array Data with Indexes problem needs a little tweak freeCodeCamp/freeCodeCamp#9068)
• 5ae8458 Docs: fix typo in object-shorthand.md (Can't pass adding padding to Each of a Element freeCodeCamp/freeCodeCamp#9066)
• c3d5b39 Docs: clarify options descriptions (fixes Error in starting local instance of FCC freeCodeCamp/freeCodeCamp#8875) (Extra gap in button group on iPhone freeCodeCamp/freeCodeCamp#9060)
• 37158c5 Docs: clarified behavior of globalReturn option (fixes Update tests for Manipulate Arrays With pop challenge. freeCodeCamp/freeCodeCamp#8953) (Chunky Monkey: I'm returning the given solution but not solving the problem freeCodeCamp/freeCodeCamp#9058)

See the full diff

Package name: forever

The new version differs by 38 commits.

• b2120f9 Remove utile (Having trouble with <li> tags </li> freeCodeCamp/freeCodeCamp#1099)
• 071cc04 Update changelog
• c1bcbff Remove dependency on broadway (Bonfire: Drop it - correct solution but wrong answer? freeCodeCamp/freeCodeCamp#1098)
• 3586afe Prepare 3.0.1 for release
• 67cc950 Prepare 3.0.1 for release
• 877d93a Replaced optimist with yargs (Fixes misspelling that caused 'undefined is not function' error freeCodeCamp/freeCodeCamp#1093)
• a36330a Update forever-monitor (Adding </ to the end of the document breaks the testSuite list freeCodeCamp/freeCodeCamp#1081)
• 0c5d32a Update dependencies and test Node 14 (Don't refer to Bootstrap as Twitter Bootstrap freeCodeCamp/freeCodeCamp#1080)
• 9e85c59 Fix argument type of fs.writeFileSync (Make Streak more lenient (due to time zone confusion) freeCodeCamp/freeCodeCamp#1075)
• 58eb131 Add CLI test for starting/stopping from a directory with space (Readme still points to slack in notes section freeCodeCamp/freeCodeCamp#1068)
• 437ca4a Remove unnecessary path-is-absolute dependency ([Convert HTML Entities] Chai test never passes freeCodeCamp/freeCodeCamp#1062)
• 8f739b0 Execute Mocha tests (bug in the img tag freeCodeCamp/freeCodeCamp#1054)
• ceb235c Update changelog
• 008766f Add linting (The instructions still lead you to slack freeCodeCamp/freeCodeCamp#1053)
• a5b97ae add '--version' to help text (Fix missing semicolon in Symmetric Differences test freeCodeCamp/freeCodeCamp#1041)
• 3c09b6f Update async to 1.x.x (HTML Entities: Fix missing 'convert' function call freeCodeCamp/freeCodeCamp#1052)
• c551947 Update async (This exercise don't have the link to bootstrap -> <link rel='stylesheet' href='//maxcdn.bootstrapcdn.com/bootstrap/3.3.1/css/bootstrap.min.css'/> freeCodeCamp/freeCodeCamp#1051)
• dda79a6 Update dependencies (Bonfire: Convert HTML Entities - fixing assert test to call function freeCodeCamp/freeCodeCamp#1050)
• 70259bc Drop support for Node < 6 (Bonfire: Convert HTML Entities - assert test doesn't call function freeCodeCamp/freeCodeCamp#1049)
• 8b41d16 Bump version in package-lock.json
• 2f6d4e0 Only publish necessary files
• 067c758 Bump version to 1.0.1, update changelog
• bce5991 Update forever-monitor (Wrong expected results in Bonfire: Smallest Common Multiple freeCodeCamp/freeCodeCamp#1047)
• 0ef5100 Fix CI (BETA Site - Multiple Reset Buttons freeCodeCamp/freeCodeCamp#1048)

See the full diff

Package name: gulp

The new version differs by 134 commits.

• 55eb23a Release: 4.0.0
• 173a532 Docs: Fix the installation instructions
• ec54d09 Docs: Improve note about out-of-date docs
• 03b7c98 Docs: Update recipes to install gulp@next
• 2eba29e Docs: Remove run-sequence from recipes
• 76eb4d6 Docs: Add installation instructions & update badges
• fbc162f Docs: Remove references to gulp-util
• 3011cf9 Scaffold: Normalize repository
• f27be05 Update: Remove graceful-fs from test suite
• 361ab63 Upgrade: Update glob-watcher
• 064d100 Build: Avoid broken node 9
• 057df59 Release: 4.0.0-alpha.3
• c1ba80c Breaking: Upgrade major versions of glob-watcher, gulp-cli & vinyl-fs
• 89acc5c Docs: Improve ES2015 task exporting examples (errors on waypoint-comment-your-javascript-code freeCodeCamp/freeCodeCamp#1999)
• 0ac9e04 Docs: Add "Project structure" section to CONTRIBUTING.md (typo mistake. #111111 is dark grey, not light grey freeCodeCamp/freeCodeCamp#1859)
• 723cbc4 Docs: Fix syntax in recipe example (Onboarding freeCodeCamp/freeCodeCamp#1715)
• d420a6a Docs: Have gulp.lastRun take a function to avoid task registration (Text "[object Object]" found on the Learning Map freeCodeCamp/freeCodeCamp#1828)
• 29ece6f Upgrade: Update undertaker
• e931cb0 Docs: Fix changelog typos (Beta: Waypoint: Modify Array Data With Indexes freeCodeCamp/freeCodeCamp#1696)
• 477db84 Docs: Add a "BrowserSync with Gulp 4" recipe (spam freeCodeCamp/freeCodeCamp#1659)
• d4ed3c7 Docs: Add options.cwd for gulp.src API (Fix for #1644 freeCodeCamp/freeCodeCamp#1645)
• 5dc3b07 Docs: Update gulp.watch API to align with glob-watcher
• 0c66069 Breaking: Replace chokidar as gulp.watch with glob-watcher wrapper
• c3dbc10 Docs: Clarify incremental builds example (Beta: Waypoint: Use Hex Code for Specific Colors - wording on 2nd checkpoint freeCodeCamp/freeCodeCamp#1609)

See the full diff

Package name: gulp-babel

The new version differs by 24 commits.

• 8e6fa78 7.0.0
• 8afcd30 make babel-core a peerDep, similar to babel-loader (Email login to use LB-passport url freeCodeCamp/freeCodeCamp#122)
• 744f633 7.0.0-alpha.18
• 21bf286 Babel 7 alpha (Style guide for bonfire challenges freeCodeCamp/freeCodeCamp#112)
• 2d63fb4 Update babel-core and babel-preset (Ramda fire freeCodeCamp/freeCodeCamp#110) [skip ci]
• 42bcfe3 ES6 → ES2015
• 638f386 Merge pull request [Snyk] Security upgrade eslint from 1.10.3 to 9.0.0 #83 from RebootJeff/patch-1
• be1b457 Fix link to Babel's issue tracker
• 1b4b0e1 Merge pull request [Snyk] Fix for 25 vulnerabilities #76 from manisenkov/update-readme
• 9164659 Make samples in README.md a bit simpler
• f7d6e35 6.1.2
• 15dff34 simplify [Snyk] Security upgrade sanitize-html from 1.27.5 to 2.0.0 #74
• 6c7a310 Close [Snyk] Security upgrade sanitize-html from 1.27.5 to 2.0.0 #74 PR: Don't add '.js' extension if the source file doesn't have an extension.
• fe5908e Merge pull request [Snyk] Fix for 1 vulnerabilities #70 from d10/readme-fix
• 3a23dec Fix minor error in readme.
• fbe4889 6.1.1
• 336d6ac Merge pull request [Snyk] Fix for 1 vulnerabilities #61 from Pofigizm/sourcemap-bug
• e20842d Fix sourcemap's bug for files in nested folders. Closes [Snyk] Fix for 1 vulnerabilities #54
• 40815c1 6.1.0
• 1e79d98 Close [Snyk] Security upgrade normalize-url from 1.9.1 to 4.5.1 #51 PR: Don't rename ignored files.
• f468b34 Update readme.md
• 8392545 6.0.0
• 39e81e0 tweaks
• 94addac Close [Snyk] Fix for 1 vulnerabilities #46 PR: chore: update babel-core to 6.0.2.

See the full diff

Package name: gulp-eslint

The new version differs by 55 commits.

• 1d79ed0 4.0.1
• 8f7e966 replace all HTTP protocols with HTTPS
• b48a04a remove deprecated gulp-util dependency (User password hash in Stories freeCodeCamp/freeCodeCamp#213)
• 35eae57 update devDependencies (Feature: Board to find people to live pair with freeCodeCamp/freeCodeCamp#207)
• 47bd269 use npx to simplify after_script
• 29dbab5 inherit autofix-related props even if `quiet` option is enabled
• a398838 4.0.0
• 18a4299 emit an error when it fails to load an ESLint plugin
• b8bf261 update ESLint from v3 to v4 (Fixed bonfire selected tab bug freeCodeCamp/freeCodeCamp#198)
• c0e82ce use `Buffer.from` instead of `new Buffer`
• e6c67a2 drop support for linting `Stream` contents
• 132d5cc Fix formatting issues in README.md (After completing a challenge all points from bonefires are removed freeCodeCamp/freeCodeCamp#194)
• 7f65378 remove link to config file `globals` doc
• 8ddfb84 correct the type of `globals` option in README
• 6059c22 3.0.1
• b0c2816 ensure sharable config works
• 08b9212 test the case where babel-eslint is actually useful
• eb98701 mock stream-mode vinyl files with from2-string
• bcd7736 fix invalid `envs` option
• 286b0c4 remove unused fixtures
• e2723e1 Remove unnecessary `object-assign` dependency
• 82c1949 3.0.0
• 97d8638 Remove invalid options in example code
• 505779d Remove option aliases

See the full diff

Package name: gulp-inject

The new version differs by 38 commits.

• 3a3b465 fix: drop dependency on deprecated `gulp-util` (Reactify freeCodeCamp/freeCodeCamp#236)
• cf66da0 chore: upgrade semantic-release
• 390979d chore: fix whitespace
• 424556f chore: only run release script on the "master" branch
• b50afff docs: readd HELP WANTED to README
• 8f2d6e5 docs: readd info on options.quiet (README references Trello instead of waffle.io freeCodeCamp/freeCodeCamp#187)
• e845894 chore: add commitlint with corresponding git hook [ci skip]
• b37939e feat: add semantic-release
• 3a6748b docs: add HELP WANTED to README
• 4ddfcf4 chore(release): 4.2.1
• 00c43dc docs: add info on options.quiet (README references Trello instead of waffle.io freeCodeCamp/freeCodeCamp#187)
• e64a6b6 chore: Log the correct plural state of the number of injected files (/challenges results in occasional 404 errors freeCodeCamp/freeCodeCamp#193)
• 687bfdf fix(endtag): use correct default for endtag (loopback bonfire query returns different results client/server freeCodeCamp/freeCodeCamp#228)
• 43de8c2 docs: improve table of contents
• c978fd7 chore(release): 4.2.0
• a67a38b docs: add table of contents
• 503b77e feat(tags): add {{path}} parsing to 'start-' and 'endtag' (upvote button and reply button don't show pointer on mouseover freeCodeCamp/freeCodeCamp#175)
• f979e04 docs: add definitions of "gulp-concat" and "gulp-uglify" (Comment overflow in News fix freeCodeCamp/freeCodeCamp#208)
• 00808c5 docs: gulp-inject does not require NodeJS v4 anymore
• c3cea60 chore(release): 4.1.0
• 7649b38 fix: making it possible to inject source map files into html (closes Style codemirror text area to match codemirror area freeCodeCamp/freeCodeCamp#176)
• 8078cd9 fix: don't remove wanted whitespace when removing tags (closes Pointer on upvote button and reply button mouseover freeCodeCamp/freeCodeCamp#177)
• b4fd0d6 fix: only log file count for files actually injected (closes Gitter chat embed fix freeCodeCamp/freeCodeCamp#184)
• 68add8a fix: don't use ES2015 syntax (closes Create mechanism of Campers adding themselves to Nonprofit Projects freeCodeCamp/freeCodeCamp#171)

See the full diff

Package name: gulp-less

The new version differs by 2 commits.

• 7d9df97 4.0.0
• cde149b Update accord to support less@3.0.0 - closes Bonfire Challenges freeCodeCamp/freeCodeCamp#269

See the full diff

Package name: gulp-notify

The new version differs by 25 commits.

• 398d0a4 v3.1.0
• fc51ff2 Merge pull request Use new /link routes for linking accounts freeCodeCamp/freeCodeCamp#124 from ohbarye/replace-gulp-util
• 46efdc6 Move vinyl to devDependencies
• 173fcb0 Use ansi-colors instead of chalk due to node version compatibility
• 1e8c372 Remove unused through import
• 3284a51 Drop dependency on deprecated gulp-util
• 455250c npm install chalk fancy-log plugin-error lodash.template vinyl
• 658efc5 v3.0.0
• b1ba7a2 Adds changelog for bump with node-notifier
• 7d6944e Updates all dependencies
• 08244ea Adds log files to ignore
• 8df5320 Bumps node-notifier dependency to latest
• 507e21f Merge pull request 'Inventory Update' bonfire bug freeCodeCamp/freeCodeCamp#105 from queicherius/patch-1
• f32b692 Update node-notifier dependency
• f5d3f46 Merge pull request "Cash Register" bonfire bug freeCodeCamp/freeCodeCamp#103 from Toby-S/patch-1
• bbcc4d1 Correct indent_style in .editorconfig
• c0d7501 Update README.md
• 21eed88 Update README.md
• 084f6a1 Adds support for overriding host/port/appname onError. Fixes Added Moment.js library and time logic to next Live session freeCodeCamp/freeCodeCamp#91
• e45ef63 Merge pull request [Snyk] Fix for 2 vulnerabilities #85 from stevelacy/patch-1
• ef56795 Update license attribute
• 80a4c0d Merge pull request [Snyk] Fix for 5 vulnerabilities #72 from dhruska/master
• 0783a5c Typo fix in README
• b4e95ec Merge pull request [Snyk] Fix for 1 vulnerabilities #71 from Andorbal/master

See the full diff

Package name: gulp-rev

The new version differs by 44 commits.

• bb3a3fd 8.1.1
• e46406b Replace gulp-util with smaller modules (codemirror initial value should come from bonifre freeCodeCamp/freeCodeCamp#237)
• 6c9bcac Remove Code Sponsor
• fe0c551 8.1.0
• 47ffbe0 Bump `rev-path`
• fc74b5b Try out Code Sponsor
• cdf63fa Pass resolved, absolute paths to relPath() (fix bug in server side checking for username, closes #219 freeCodeCamp/freeCodeCamp#220) (fullUser fixes freeCodeCamp/freeCodeCamp#222)
• 567c340 Update readme.md (Unknown Windows/connect-mongo bug freeCodeCamp/freeCodeCamp#224)
• 898dffc 8.0.0
• d290ff8 Meta tweaks
• a89f0df Make tests independent of platform specific path separator (Account page doesn't enforce unique username freeCodeCamp/freeCodeCamp#219) (unblock the cdn paths that firefox over-vigilantly blocked freeCodeCamp/freeCodeCamp#221)
• 71a0377 Add a note about non-deterministic streams order (User password hash in Stories freeCodeCamp/freeCodeCamp#213)
• f5ee9ee Meta tweaks
• 731be70 Move list of maintainers into the readme for visibility
• 192a075 Meta tweaks
• 7acdb13 Move tests from Mocha to AVA (Bug with email login freeCodeCamp/freeCodeCamp#212)
• 82c185c More realistic example (There should be a resource section where all sites that have been listed in challenges should be there in alphabetical order freeCodeCamp/freeCodeCamp#203)
• 02fbeba add XO badge
• 8686e62 [breaking] ES2015ify and require Node.js 4
• ed53cef meta tweaks
• 17d6bb4 docs: change number of approaches (Selecting text and tab indenting it freeCodeCamp/freeCodeCamp#196)
• e895123 7.1.2
• c9ba5b2 7.1.1
• f16a865 trying out something new

See the full diff

Package name: gulp-uglify

The new version differs by 9 commits.

• e4f9045 2.0.0
• 566ec6a refactor(tests): write tests with mocha
• 5651111 refactor(tests): replace `cmem` with `testdouble`
• b82387b refactor(tests): compose streams with `mississippi` utilities
• 1232c3c fix(errors): emit errors of type `GulpUglifyError`
• 5632cee fix(minifer): use `gulplog` for the warning
• 8160697 feat(minifier): use UglifyJS 2.7.0's input map support
• 3ec8fc3 chore(package): update uglify-js to version 2.7.0
• a9c55b9 doc(README): spelling mistake in example

See the full diff

Package name: less

The new version differs by 250 commits.

• e4f7551 v3.12.0
• 371185c v3.12.0-RC.2 (Falsy Bouncer not passing freeCodeCamp/freeCodeCamp#3540)
• d5aa9d1 Fixes Labels for issues freeCodeCamp/freeCodeCamp#3371 Allow conditional evaluation of function args (fix search results formatting for mobile and desktop camper news freeCodeCamp/freeCodeCamp#3532)
• a722237 Remove lib folder from git (Last test of palindrome has typos, which causes incorrect answer.  freeCodeCamp/freeCodeCamp#3531)
• e0f5c1a Move changelog to root (add facebook sharing to map on completed challenges freeCodeCamp/freeCodeCamp#3530)
• f7bdce7 Duplicate dist files in root for older links (Confusing Wording on Bonfire: Diff Two Arrays freeCodeCamp/freeCodeCamp#3529)
• 0925cf1 Test-data module (intermediate pull freeCodeCamp/freeCodeCamp#3525)
• 51fb02b Fixes Edit last test case for Bonfire: Where art thou freeCodeCamp/freeCodeCamp#3504 / organizes tests (Problem in Waypoint #4 in the jQuery track freeCodeCamp/freeCodeCamp#3523)
• efb76ec Restore nuked scripts (?), replace dependencies (Add beginnings of webcomponent and polymer challenges freeCodeCamp/freeCodeCamp#3501) (supriyantomaftuh freeCodeCamp/freeCodeCamp#3522)
• 2c5e4dd Lerna refactor / TS compiling w/o bundling (update the tshirt campaign text freeCodeCamp/freeCodeCamp#3521)
• a3641e4 Resolve Add russian translation for the intermediate-ziplines. freeCodeCamp/freeCodeCamp#3398 Add flag to disable sourcemap url annotation (fix tshirt version 2 not submitting properly bug freeCodeCamp/freeCodeCamp#3517)
• e018ba8 fix(fixes 'only 11 lines' issue freeCodeCamp/freeCodeCamp#3294): use loadFileSync when loading plugins with syncImport: true (-SOLVED- disappearing check list freeCodeCamp/freeCodeCamp#3506)
• 95b9007 Update changelog
• 6238bbc Fixes use proper formating freeCodeCamp/freeCodeCamp#3508 (Pass even if it's not correct freeCodeCamp/freeCodeCamp#3509)
• 8338366 Update README.md
• 6313bc5 Update changelog
• 53bf877 Remove tree caching in import manager (The page's elements are getting displayed twice on the iPhone screen to the right. freeCodeCamp/freeCodeCamp#3498)
• 0f271f3 issue#3481 ignore missing debugInfo (the Check for Palindromes does not pass v3 freeCodeCamp/freeCodeCamp#3482)
• 3bd995b Additional check to avoid evaluating an expression if it is a comment (Code works, won't pass. Firefox, works on chrome freeCodeCamp/freeCodeCamp#3494)
• 0715d90 fix: Use make-dir instead of mkdirp (Palindrome Challenge (Returns correct boolean value but won't mark them as passed). freeCodeCamp/freeCodeCamp#3490)
• 2634494 Properly exit calc mode after use (Bad solution to the problem- sloppy code passes, but simple clear code doesn't freeCodeCamp/freeCodeCamp#3493)
• 096dd22 Convert to auto-changelog (fix prevent redirect to /news/hot freeCodeCamp/freeCodeCamp#3477)
• 842386b Fixes Create the “step-by-step” style challenge view to replace our video challenges freeCodeCamp/freeCodeCamp#3469 - Include tslib dependency (fix only allow redirects on whitelist freeCodeCamp/freeCodeCamp#3475)
• 1adaadb 3.11.0 (rewrite and simplify explanation of For Loops freeCodeCamp/freeCodeCamp#3468)

See the full diff

Package name: loopback

The new version differs by 250 commits.

• 7d93b27 3.20.0
• 5a87f8d Merge pull request Bonfire: Chunky Monkey code is not being executed freeCodeCamp/freeCodeCamp#3911 from strongloop/update-strong-globalize
• f17346b Update strong-globalize to 4.x
• 995c14e Merge pull request typo freeCodeCamp/freeCodeCamp#3585 from mitsos1os/nodemailer-update
• 83fc62c Update nodemailer to v4.x
• 58090b4 Merge pull request fix signin button to use signin instead of login for path freeCodeCamp/freeCodeCamp#3908 from strongloop/drop-node-4x
• ec46c45 Drop support for Node.js 4.x
• 85aa3fd 3.19.3
• 8c4c91a Merge pull request Waypoint: Add Borders Around your Elements freeCodeCamp/freeCodeCamp#3904 from itaditya/patch-1
• cf5b78f Provide link to CODEOWNERS
• c6d8565 Merge pull request Stylistic change: Waypoint: Use jQuery to Modify the Entire Page freeCodeCamp/freeCodeCamp#3896 from wolrajhti/patch-2
• cc4fc21 fix bug in User.verify when confirm is disabled
• eb3301a Merge pull request Suggested addition to "Waypoint: Construct JavaScript Objects with Functions" freeCodeCamp/freeCodeCamp#3899 from strongloop/add-node-10
• 36ef35d Enable Node.js 10.x on Travis CI
• 59b1409 3.19.2
• c2077df Merge pull request Move time text out of icon element on map page freeCodeCamp/freeCodeCamp#3779 from nitro404/hotfix/case-insensitive-user-email
• b2bc449 Add check for undefined user email in setter
• 3e3092c 3.19.1
• 07e7592 Merge pull request Bonfire: Falsy Bouncer freeCodeCamp/freeCodeCamp#3883 from strongloop/fix/principal-type-polymorphic-user
• 2aead13 Fix isOwner() bug in multiple-principal setup
• df70f83 3.19.0
• 7a148ca Merge pull request Re-enable linting freeCodeCamp/freeCodeCamp#3858 from strongloop/feature/remove-model
• 0cd380c feat: remove all references to a Model
• 77a3523 3.18.3

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 4be093d 2.2.0
• 2278469 2.2.0-rc.8
• b946eb4 Merge pull request alert showing h2 should be blue though it's already blue in style attribute freeCodeCamp/freeCodeCamp#3988 from malstoun/bug/2664
• 260e413 Merge pull request fix typo and add comma freeCodeCamp/freeCodeCamp#3986 from webpack/bugfix/revert_use_of_buffer_dot_from
• 0ec7de9 Fix regression with watch cli opt, add tests for this case
• 72226db add missing disable line
• 4d30675 build fresh yarn.lock file to remove buffer polyfill
• 91c1f35 fix(node): rollback changes of Buffer.from to new Buffer() and bump down travis to 4.3 min node v