[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	Yes	Proof of Concept

Commit messages

Package name: compression-webpack-plugin

The new version differs by 22 commits.

• 6cf83aa chore(release): 4.0.0
• ea33463 feat: enable cache by default for webpack@4 (#164)
• d07d854 refactor: improve validation for options and docs
• 778e866 refactor: code
• cff32d7 test: rephrase description (#161)
• 2f5ccaa chore(deps): update (#160)
• e222c4e fix: behaviour in watch mode
• 23dd998 docs: update (#157)
• 1a0a4ad chore: update
• 2fa1ef6 docs: remove wrong information about versions (#151)
• 0792aa3 chore(release): 3.1.0
• 17c29a5 fix: support webpack@5 (#146)
• b896c5a chore: update lock file (#145)
• 330254c docs: updated minRatio verbiage (#141)
• bf22024 feat: add `dir`, `name` and `ext` placeholders in filename option (#144)
• 0c35503 docs: multiple compressed versions of assets for different algorithm (#140)
• b7e65f2 chore(deps): update (#139)
• af883d8 chore(release): 3.0.0
• 897bd95 chore(deps): update (#124)
• ff3ceeb docs: add “Using Brotli” (#119)
• 264efa3 docs(readme): update with import example (#113)
• 833e825 test: validation (#111)

See the full diff

Package name: terser-webpack-plugin

The new version differs by 91 commits.

• 171819e chore(release): 2.3.6
• d3f0c81 fix: preserve `@license` comments starting with `//`
• 7105dc3 ci: migrate on github actions
• 6ad3f5d chore(release): 2.3.5
• fac58cb fix: do not break code with shebang
• ba1cb8a chore(deps): update (#219)
• 8ed6b7e docs(readme): update `parallel` option and explain fix for circleci (#216)
• 2da2c1a chore(release): 2.3.4
• 5708574 fix: respect stdout and stderr of workers and do not create warnings (#215)
• 8d9837d refactor: code and test (#214)
• 330c1f6 fix: use webpack hashFunction rather than hard-code MD4 (#213)
• 6b45dbe chore(release): 2.3.3
• fe67963 chore(deps): update (#212)
• abfd950 fix: reduce memory usage
• de02f7b fix: license files now have .txt suffix by default (#210)
• 0aa35d4 chore(deps): update (#209)
• 87001f2 chore: update husky to the latest version (#208)
• bac5fcc chore: deps update (#207)
• 98765d5 chore(release): 2.3.2
• 3b28007 fix: show error message from jest-worker (#203)
• 0e2da43 chore(release): 2.3.1
• d2acd75 fix: performance (#200)
• 0bc8435 chore(release): 2.3.0
• 3649b3d feat: support webpack@5 cache

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[coveralls]

Coverage remained the same at 11.065% when pulling 86de2ee on snyk-fix-d0b502893a796c274464afd12256508e into be1316c on master.