[Snyk] Fix for 1 vulnerable dependencies
Description
This Merge Request fixes one or more vulnerable packages in the npm dependencies of this project.
See the Snyk test report for more details.
Snyk Project: mikulaspoul/BetterSubBox:package.json
Snyk Organization: mikulaspoul
Lockfile
If you are using package-lock.json or yarn.lock, please re-lock your dependencies and push an updated lockfile before merging this Merge Request.
Changes included in this Merge Request
-
Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
-
A Snyk policy (
.snyk) file, with updated settings.
Vulnerabilities that will be fixed
With an upgrade:
- npm:minimatch:20160620 - potentially breaking change
With a Snyk patch:
You can read more about Snyk's upgrade and patch logic in Snyk's documentation.
Check the changes in this Merge Request to ensure they won't cause issues with your project.
Stay secure, The Snyk team
Note: You are seeing this because you or someone else with access to this repository has authorised Snyk to open Fix Merge Requests. To review the settings for this Snyk project please go to the project settings page.