[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Prototype Pollution SNYK-JS-AJV-584908	Yes	No Known Exploit

Commit messages

Package name: less

The new version differs by 127 commits.

• b873737 Merge pull request #3177 from Kartoffelsalat/master
• bd2a93f chore(package): update request to 2.83.0
• 3699921 Merge pull request #3170 from thorn0/patch-1
• 6985541 Having `inline` and `less` imports of the same name lead to a race condition
• 2f1386f Merge pull request #3168 from matthew-dean/master
• 4272871 Fixes #3116 - lessc not loading plugins in 3.0
• ba5ad9c Point badges at master branch
• 4962988 Update CHANGELOG.md
• 12fe0c6 Update README.md
• 45d06b9 Merge pull request #3163 from matthew-dean/master
• 9590b7b Add dist files
• 0b6536b Merge branch '3.x'
• a48c24c calc() fix - fixes Bump sass-loader from 7.3.1 to 8.0.2 preactjs/preact-cli#974 (partially #1880)
• 367b46a Merge pull request #3161 from matthew-dean/3.x
• 4508495 Remove legacy upgrade
• 2a4a63a Update CHANGELOG.md with 3.x list
• bb6da28 Update README.md
• f80a021 Merge pull request #3159 from matthew-dean/3.x
• 8b4524f Bump to 3.0.0-RC.1
• d30e3a6 Merge pull request #3150 from anthony-redFox/3.x
• 0b7c81c Removed install npm 2 version for appveyor. It was hotfix for old node version.
• 5d230dd Drop node 0.10 and 0.12 and added node 9 matrix testing
• 385da8f Update stale.yml
• d384779 Create stale.yml

See the full diff

Package name: webpack

The new version differs by 250 commits.

• f010546 update examples
• bc840ec 3.11.0
• 9323ee6 Merge pull request #6398 from addaleax/no-binding
• c7cbc35 Merge pull request #6430 from jbottigliero/update/ajv
• 61b75b7 update ajv + ajv-keywords
• 8da8b93 Work around Node environment variable bug
• ddb1fad Merge pull request #6408 from ocombe/fix/#6407-empty-array
• 2aebfbe fix(ConcatenatedModule): don't throw on arrays with empty values
• 3972d9a Merge pull request #6391 from nerdkid93/patch-1
• e4375f8 Avoid relying on Node’s internals
• 0dd1727 change polymer loader link
• 33f518b Merge pull request #6300 from nename0/fix-6243
• 80ed1c4 Merge pull request #6335 from Connormiha/banner-plugin-optimize
• 5d93c53 Minor optimize banner plugin
• 1895b76 Add Tests checking chunkhash of runtime chunk only changes if needed
• dc7ebeb Fix #6243: Don't include initial chunks in chunkhash computation
• b545b51 Merge pull request #6242 from nename0/6239-require-ensure-initial-chunks
• b059e07 Merge pull request #6176 from mikegreiling/fix-no-fail-on-child-compilation-error
• 64c4350 Update StatsTestCases
• 8b0a2ad Merge pull request #6225 from neeharv/feature/async-script-type
• d1e0bec Fix: the require-ensure only includes non-initial chunks
• 21b5a02 stringify jsonpScriptType option
• 8eb0bb6 move default script type option to WebpackOptionsDefaulter
• be327f9 lint fixes

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic