From c3f11a2b6c6104c8d25416c9c6fb1ceeb9e1d313 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 1 Oct 2023 15:04:01 +0000 Subject: [PATCH] fix: packages/react-scripts/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-POSTCSS-5926692 --- packages/react-scripts/package.json | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/packages/react-scripts/package.json b/packages/react-scripts/package.json index a21817920a7..71a82403b97 100644 --- a/packages/react-scripts/package.json +++ b/packages/react-scripts/package.json @@ -39,7 +39,7 @@ "babel-preset-react-app": "^9.0.2", "camelcase": "^5.2.0", "case-sensitive-paths-webpack-plugin": "2.2.0", - "css-loader": "2.1.1", + "css-loader": "5.0.0", "dotenv": "6.2.0", "dotenv-expand": "5.1.0", "eslint": "^6.1.0", @@ -60,17 +60,17 @@ "jest-resolve": "24.9.0", "jest-watch-typeahead": "0.4.0", "mini-css-extract-plugin": "0.8.0", - "optimize-css-assets-webpack-plugin": "5.0.3", + "optimize-css-assets-webpack-plugin": "5.0.5", "pnp-webpack-plugin": "1.5.0", - "postcss-flexbugs-fixes": "4.1.0", - "postcss-loader": "3.0.0", - "postcss-normalize": "7.0.1", - "postcss-preset-env": "6.7.0", - "postcss-safe-parser": "4.0.1", + "postcss-flexbugs-fixes": "5.0.0", + "postcss-loader": "4.0.0", + "postcss-normalize": "10.0.0", + "postcss-preset-env": "9.1.4", + "postcss-safe-parser": "5.0.0", "react-app-polyfill": "^1.0.4", "react-dev-utils": "^9.1.0", "resolve": "1.12.0", - "resolve-url-loader": "3.1.0", + "resolve-url-loader": "5.0.0", "sass-loader": "7.2.0", "semver": "6.3.0", "style-loader": "1.0.0",