[Snyk] Fix for 1 vulnerabilities

[wv91364210zhuozh]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: file-loader

The new version differs by 28 commits.

• e44eb73 chore(release): 6.0.0
• ad39022 chore(deps): update (#369)
• e1fe27c docs: update README.md (#368)
• c2aded7 chore(release): 5.1.0
• cd8698b feat: support the `query` template for the `name` option (#366)
• 5703c58 chore(deps): update (#365)
• 521bff2 chore: remove duplicate prettier config file (#357)
• 5ffac2e refactor: added description on esModule (#358)
• 190829e docs: fix the description of the `esModule` option (#348)
• f1b071c chore(release): 5.0.2
• 6431101 chore: add the `funding` field in `package.json` (#347)
• 90302cd chore(release): 5.0.1
• 31d6589 fix: name of `esModule` option in source code (#346)
• 2a18cba chore(release): 5.0.0
• 98a6c1d refactor: next (#345)
• 0df6c8d chore(release): 4.3.0
• a2f5faf refactor: code (#344)
• 9b9cd8d feat: new options flag to output ES2015 modules (#340)
• ba0fd4c chore(release): 4.2.0
• 642ee74 docs: improve readme (#341)
• c136f44 feat: `postTransformPublicPath` option (#334)
• d441daa chore(release): 4.1.0
• 705eed4 feat: improved validation error messages (#339)
• d016daa chore(release): 4.0.0

See the full diff

Package name: raw-loader

The new version differs by 10 commits.

• 35a10f4 chore(release): 4.0.1
• 21f0ca5 chore(deps): update (zeit.co deploy failed with "JPEG support not compiled." cyrilwanner/next-optimized-images#90)
• e76476c chore(release): 4.0.0
• 5ec82d6 refactor: next (Update imagemin to the latest version 🚀 cyrilwanner/next-optimized-images#88)
• d231710 chore(release): 3.1.0
• 6cf76b8 feat: improved validation error messages (Wrongly placed query parameters cyrilwanner/next-optimized-images#85)
• aebfd74 chore(deps): update (Inlining resized images cyrilwanner/next-optimized-images#84)
• f5b6aa4 docs: fix tests badge (Responsive Images not working cyrilwanner/next-optimized-images#82)
• 854d6c8 chore(release): 3.0.0
• d11ff27 chore(deps): update (Update url-loader to the latest version 🚀 cyrilwanner/next-optimized-images#81)

See the full diff

Package name: url-loader

The new version differs by 27 commits.

• 8828d64 chore(release): 4.0.0
• fc8721f chore(deps): migrate on `mime-types` package (Can't require from component cyrilwanner/next-optimized-images#209)
• f13757a chore(deps): update (docker copy from builder cyrilwanner/next-optimized-images#208)
• a2f127d fix: description on the `esModule` option (images not showing, src= object cyrilwanner/next-optimized-images#204)
• 4301f87 chore(release): 3.0.0
• 3f0bbc5 refactor: next ([Canary] Images are enlarged when sizes includes a larger size cyrilwanner/next-optimized-images#198)
• 2451157 chore(release): 2.3.0
• 0ee2b99 feat: new `esModules` option to output ES modules
• cbd1950 chore(release): 2.2.0
• 196110e fix: yarn pnp support ([canary] wasm - could not allocate memory cyrilwanner/next-optimized-images#195)
• 9431124 docs: improve documentation about `fallback` (Can't import svg images correctly cyrilwanner/next-optimized-images#194)
• a251a23 chore(deps): update (Switch to @memrise/lqip cyrilwanner/next-optimized-images#193)
• 2bffcfd fix: limit must allow infinity and max value (lqip-loader → url-regex vulnerability cyrilwanner/next-optimized-images#192)
• 1b9dbd1 chore(release): 2.1.0
• f3d4dd2 feat: improved validation error messages (Building static images ahead of time for dynmaic retrieval in code [canary] cyrilwanner/next-optimized-images#187)
• 37c6acc chore(release): 2.0.1
• 4842f93 fix: allow using limit as string when you use loader with query string (Error: Cannot find module $path cyrilwanner/next-optimized-images#185)
• c0341da chore(defaults): update (static => public cyrilwanner/next-optimized-images#184)
• 78833ac chore(release): 2.0.0
• 4386b3e chore(deps): update (Optimizing images from Markdown files cyrilwanner/next-optimized-images#182)
• 60d2cb3 feat: limit option can be boolean (Bump elliptic from 6.4.1 to 6.5.3 in /example cyrilwanner/next-optimized-images#181)
• d82e453 fix: `limit` should always be a number and 0 value handles as number (Bump elliptic from 6.4.1 to 6.5.3 cyrilwanner/next-optimized-images#180)
• 3c24545 fix: fallback loader will be used than limit is equal or greater (PNG images not optimized cyrilwanner/next-optimized-images#179)
• a6705cc test: test svg scenario. Chrome Lighthouse Screening "best practices" penalty on image size cyrilwanner/next-optimized-images#176 (Import through SASS URL does not work cyrilwanner/next-optimized-images#177)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution