[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • packages/divi-scripts/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-ASYNC-2441827	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: grunt

The new version differs by 55 commits.

• 6f49017 1.3.0
• faab6be Merge pull request #1720 from gruntjs/update-changelog-deps
• 520fedb Update Changelog and legacy-util dependency
• 7e669ac Merge pull request #1719 from gruntjs/yaml-refactor
• e350cea Switch to use `safeLoad` for loading YML files via `file.readYAML`.
• 7125f49 Merge pull request #1718 from gruntjs/legacy-log-bumo
• 00d5907 Bump legacy-log
• 3b75085 1.2.1
• ae11839 Changelog update
• 9d23cb6 Merge pull request #1715 from sibiraj-s/remove-path-is-absolute
• e789b1f Remove path-is-absolute dependency
• 27bc5d9 Merge pull request #1714 from gruntjs/release-1.2.0
• 64a3cf4 Release v1.2.0
• 0d23eff Merge pull request #1570 from bhldev/feature-options-keys
• ee70306 Merge pull request #1697 from philz/1696
• 05c0634 Merge pull request #1712 from gruntjs/fix-lint
• cdd1c19 fix lint in file.js
• bc168e3 Merge pull request #1283 from greglittlefield-wf/recognize-relative-links
• 5f16b5a Merge pull request #1675 from STRML/remove-coffeescript
• 58f80ae Merge pull request #1677 from micellius/monorepo-support
• 1f61427 Add CODE_OF_CONDUCT.md
• 4c6fcd9 Merge pull request #1709 from NotMoni/patch-1
• 169d496 add link to license
• 288ea76 add license link

See the full diff

Package name: grunt-contrib-compress

The new version differs by 5 commits.

• bd9fc8e v2.0.0
• b8565a9 Update Archiver (Reset Sliders #232)
• f6815bf Update deps and remove nodeunit loading (show_if display logic parentModule not working on Old Classic Builder #231)
• b70c1d9 Update tests and dependencies (Settings tab default behaviour #230)
• 5759edd Bump ini from 1.3.5 to 1.3.7 ([question] Is there a callback to get the parsed content in the editor? #228)

See the full diff

Package name: thread-loader

The new version differs by 26 commits.

• b5fc4f7 chore(release): 2.1.1
• d3a6664 perf: use `neo-async` instead of `async` (Range control auto add px on using arrow keys #54)
• 5dbf449 chore(release): 2.1.0
• 76535bf feat: add poolRespawn flag to speed up incremental builds (example with this.props.attrs? #52)
• bfb6271 chore(release): 2.0.2
• fa02b60 fix: build hang (VB footer credits have incorrect link #53)
• f564c1c chore(release): 2.0.1
• f10fe55 fix: memory leaks, worker and main process lifecycles (Bug in 'number' type and 'text' type field with number validation  #51)
• 9208e3b chore(release): 2.0.0
• 0f87683 fix: listen end events (Filter "wp_insert_post_data" causes Visual Builder saving to fail #42)
• fcbd813 fix: calculate number of workers correctly (Complex display conditions to show or hide module settings #49)
• 1f81d04 chore(deps): bump and audit dependencies with npm audit fix (multiple tiny_mce control content problem #47)
• c891a9c fix: check on `undefined` for `worker.stdio` (Parent-Child Module issues in Visual Builder: How to insert stuff between renderings #45)
• c9574c9 refactor: drop support for node < 6.9 (Missing props when component is mounted  #48)
• e07fe0e chore(deps): replace nsp with npm audit. (Get component state in "static css()" #44)
• c3366d6 chore(release): 1.2.0
• f3c7a2c feat: add target, minimize and resourceQuery into context (docker-compose failing on cmd #25)
• 00ad7f2 chore(release): 1.1.5
• 6fb5daf fix(WorkerError): handle undefined `error` stacks (Customize existing module #20)
• 9345756 fix(package): add `webpack >= 4` (`peerDependencies`) (Zip Command Fails On WAMP Environments #22)
• d3ec236 chore(release): 1.1.4
• 5d33937 fix(index): add `webpack >= v4.0.0` support (Wrong URL in compatibility warning #16)
• 34e6138 chore(release): 1.1.3
• 80dda4f fix(WorkerPool): trace stacks to avoid duplicated `err.messages` from workers (yarn start - Unable to locate wp-config.php! (Multisite) #13)

See the full diff

Package name: webpack

The new version differs by 250 commits.

• 213226e 4.0.0
• fde0183 Merge pull request #6081 from webpack/formating/prettier
• b6396e7 update stats
• f32bd41 fix linting
• 5238159 run prettier on existing code
• 518d1e0 replace js-beautify with prettier
• 4c25bfb 4.0.0-beta.3
• dd93716 Merge pull request #6296 from shellscape/fix/hmr-before-node-stuff
• 7a07901 Merge pull request #6563 from webpack/performance/assign-depth
• c7eb895 Merge pull request #6452 from webpack/update_acorn
• 9179980 Merge pull request #6551 from nveenjain/fix/templatemd
• e52f323 optimize performance of assignDepth
• 6bf5df5 Fixed template.md
• 90ab23a Merge branch 'master' into fix/hmr-before-node-stuff
• b0949cb add integration test for spread operator
• 39438c7 unittest now also walks the ast
• 15ab027 Merge pull request #6536 from jevan0307/sideEffects-selectors
• 1611ce1 Merge pull request #6561 from joshunger/patch-1
• 6e175bc Merge pull request #6549 from webpack/md4_hash
• 0637531 Add a hyperlink to create a new issue
• 0e1f9c6 Merge pull request #6554 from webpack/deps/end-of-beta
• 72477f4 upgrade versions to stable versions
• ed30285 Merge pull request #6546 from webpack/bot/review-permission
• 40ee8c7 Use MD4 for hashing

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution