[Snyk] Fix for 2 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-MERGE-1040469	Yes	No Known Exploit
	758/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-Y18N-1021887	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: postcss-cli

The new version differs by 250 commits.

• 9e03d5c 8.0.0
• ed69076 Remove obsolete failing test
• a4998fa Support postcss v8 (#349)
• 66b6055 Update dependency yargs to v16 (#340)
• 1c3ebba Upgrade eslint & eslint-config-problems (#339)
• 77d2c1d Clean up 'use strict' usage
• 031aa10 Update dependency prettier to ~2.1.0 (#337)
• d94f0c6 7.1.2
• a36f630 Organize and clarify --help text (#336)
• 91d6ef6 Output plain version number (#335)
• e2bed8c Update dependency get-stdin to v8 (#327)
• 5df1399 Update dependency uuid to v8 (#325)
• d2e7678 7.1.1
• 0758cd1 Do not use package-lock.json
• 8b39a4e Update dependency uuid to v7 (#318)
• 7a9c4ef Fix: External source maps not being generated (#324)
• 47104bc Update dependency chalk to v4 (#322)
• 96699c1 Update dependency prettier to v2 (#319)
• 42fc85e Update dependency globby to v11 (#317)
• 7574638 Configure Renovate (#316)
• 62ac6a4 Update fs-extra to version 9.0.0 (#315)
• e6828a9 Update dependency-graph to version 0.9.0 (#311)
• 459cc48 Update eslint-config-problems to the latest version 🚀 (#310)
• 6b0666e Update ava to version 3.1.0 (#309)

See the full diff

Package name: sane

The new version differs by 36 commits.

• c4d5b7f Upgrade insecure dependencies (#132)
• 756bafa release v4.0.1 🎉
• 472a546 Remove from . (#131)
• 348b6ef release v4.0.0 🎉
• b4c4f03 remove fsevents (#130)
• dedc549 release v3.1.0 🎉
• 802f5a7 Enables Watchexec as a sane watcher (#127)
• 49f251a release v3.0.0 🎉
• 26cd9b8 Modernize codebase (#126)
• 0c439f0 [fixes #123] Drop support for unsupported versions of node (#125)
• e3beaf8 release v2.5.2 🎉
• e6b679a adding handler to clear local state on exit using capture-exit (#119)
• 5d60d85 release v2.5.1 🎉
• 0ab296e bump minimum fsevents [fixes #117] (#118)
• 6324f3a release v2.5.0 🎉
• a419f94 Use `micromatch` and bump `anymatch`. (#115)
• ec657e4 release v2.4.1 🎉
• adf6305 release v2.4.0 🎉
• f051102 fixed test failure - closing WatchmanWatcher instance was not passing the instance to close into WatchmanClient, resulted in spurious events (#114)
• 14fbf09 Fix node 4 support (#112)
• 8be8b96 Fix issues: (#111)
• cd7d33d Updated to WatchmanWatcher, created singleton WatchmanClient using promises (#109)
• d9158e9 fix sane signatures (#110)
• c07724b 2.3.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic