[Snyk] Security upgrade jquery from 3.3.1 to 3.5.0
Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
Changes included in this Merge Request
-
Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- yarn.lock
-
Adding or updating a Snyk policy (.snyk) file; this file is required in order to apply Snyk vulnerability patches. Find out more.
Vulnerabilities that will be fixed
With an upgrade:
Severity | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|
Cross-site Scripting (XSS) SNYK-JS-JQUERY-567880 |
No | No Known Exploit |
Snyk patch:
With aSeverity | Issue | Exploit Maturity |
---|---|---|
Prototype Pollution SNYK-JS-LODASH-567746 |
Proof of Concept |
Check the changes in this Merge Request to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: