[Snyk] Fix for 1 vulnerabilities

[pearlbea]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: karma

The new version differs by 31 commits.

• dae189d chore: release v2.0.2
• e095b05 fix(package.json): sinon-chai 2.13 is not compatible with sinon 4.x (#2977)
• 446c1f3 chore: release v2.0.1
• 25fdf3e chore: update contributors
• 2270abb Merge pull request #2948 from devoto13/es2015
• 0e6d46c refactor: migrate EmitterWrapped to ES2015
• 9b472c4 refactor: migrate misc files to ES2015
• 75ec567 refactor: migrate config to ES2015
• a1f4716 refactor: migrate complection to ES2015
• aeb4541 refactor: migrate cli to ES2015
• 33b1078 refactor: migrate BrowserResult class to ES2015
• 5809653 refactor: migrate BrowserCollection class to ES2015
• bb012e2 refactor: migrate Browser class to ES2015
• 6c92019 refactor: subscribe to socket events explicitly
• 2694d54 fix: ignore jsVersion configuration property in Firefox 59+
• f18f728 docs(readme): update downloads badge to point to graph of downloads
• a987d63 fix(browser): nicer "disconnect" - no more "Disconnectedundefined"
• e7b9ab8 docs: add "ChromeHeadless" to list of possible browsers
• d27df36 Merge pull request #2947 from ChALkeR/patch-1
• 018e6be fix(middleware): avoid using deprecated Buffer API
• ac4e1a9 fix(reporter): Fix issue causing error stack not to be parsed correctly
• d1effbf Merge pull request #2913 from lusarz/master
• 07b4c65 Merge pull request #2938 from johnjbarton/browserify
• 6ec74ee fix(server): switch to sync write

See the full diff

Package name: recursive-copy

The new version differs by 27 commits.

• 4c9a8b8 v2.10.14
• 4b04d9e Fix pre-v6 test compatibility issues
• 4c3a91c chore: reduce dependencies by replacing del with rimraf
• b9276a4 Merge pull request [Snyk] Security upgrade webpack from 3.10.0 to 4.0.0 #32 from 1999/patch-1
• ba18322 Update TS definition for "transform"
• 10bb283 v2.0.13
• 35d0b25 Revert "Prevent race conditions when preparing nested output directory"
• 0641c85 v2.0.12
• f71bdbe Prevent race conditions when preparing nested output directory
• e12a072 Update CI compatibility versions
• 141e596 Update readme examples
• 8c4f63c Remove deprecated emitter-mixin dependency
• 7ba8b6e v2.0.11
• 24e4624 Fix prepublish script
• bcc19fa Merge pull request [Snyk] Fix for 2 vulnerabilities #19 from amyboyd/master
• 7176094 Add callback and event emitter type definitions
• af88938 Fix CI when running Node version 7 or below.
• d11b828 Add TypeScript definitions file.
• 68de8fa Add node_modules to .gitignore.
• e444857 v2.0.10
• 706a61a Update CI node versions
• f43402a Preserve file modification dates
• 66ce8ae Remove unnecessary path.join()
• 97887f8 v2.0.9

See the full diff

Package name: webpack-dev-server

The new version differs by 250 commits.

• 5aad1e7 chore(release): 4.8.0
• 28ad7ed chore(deps): bump graceful-fs from 4.2.9 to 4.2.10 (#4368)
• 7920364 feat: export initialized socket client (#4304)
• 4e7800e chore: update webpack (#4367)
• fbda2a8 chore(deps-dev): bump body-parser from 1.19.2 to 1.20.0 (#4366)
• 67c080b chore(deps-dev): bump puppeteer from 13.5.1 to 13.5.2 (#4361)
• 56ec411 chore(deps): bump html-entities from 2.3.2 to 2.3.3 (#4358)
• ca8a53a chore: update deps and fix audit (#4356)
• 501f6aa chore(deps-dev): bump @ babel/runtime
• 7d2b4f0 chore(deps-dev): bump @ babel/core
• 95e26fe test: add cases for `webSocketURL` with `server` option (#4346)
• 84b4774 chore: migrate script for examples on `setupMiddlewares` option (#4347)
• a7ccab1 chore: replace deprecated String.prototype.substr() (#4343)
• 1bf2614 chore(deps-dev): bump lint-staged from 12.3.6 to 12.3.7 (#4344)
• 188497a chore(deps-dev): bump prettier from 2.5.1 to 2.6.0 (#4339)
• 7560a37 chore(deps-dev): bump lint-staged from 12.3.5 to 12.3.6 (#4341)
• dc2d6f7 chore(deps): bump http-proxy-middleware from 2.0.3 to 2.0.4 (#4333)
• 552e4ab chore(deps-dev): bump @ babel/runtime
• af3de07 chore(deps-dev): bump @ babel/core
• a80fa1f chore(deps): bump @ types/ws
• 457e1e5 chore(deps-dev): bump eslint from 8.10.0 to 8.11.0 (#4334)
• b48ff7f chore(deps-dev): bump puppeteer from 13.5.0 to 13.5.1 (#4330)
• 3ce15d4 chore(deps-dev): bump puppeteer from 13.4.1 to 13.5.0 (#4329)
• a892235 chore(deps-dev): bump lint-staged from 12.3.4 to 12.3.5 (#4328)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.