[Snyk] Fix for 1 vulnerabilities

[0xSebin]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • starters/default/package.json
  • starters/default/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-FILETYPE-2958042	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: gatsby-plugin-sharp

The new version differs by 250 commits.

• 0a455df chore(release): Publish
• 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (fix(gatsby): don't log FAST_DEV message for each worker gatsbyjs/gatsby#32961) (fix(gatsby): don't log FAST_DEV message for each worker (#32961) gatsbyjs/gatsby#32967)
• f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (fix(gatsby): Set staticQueryResultHash to new hash gatsbyjs/gatsby#32949) (fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) gatsbyjs/gatsby#32966)
• ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (feat(gatsby-graphiql-explorer): upgrade to webpack 5 gatsbyjs/gatsby#30642)
• 944e381 chore(release): Publish next
• d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (fix(gatsby-core-utils): Switch auth option from got to username/password gatsbyjs/gatsby#32665)
• cf9c066 fix(gatsby): add this typings to actions (fix(gatsby): add this typings to actions gatsbyjs/gatsby#32210)
• 53aa88e chore: enable test parallelism (chore: enable test parallelism gatsbyjs/gatsby#32766)
• b7deabc fix(deps): update starters and examples - gatsby (fix(deps): update starters and examples - gatsby gatsbyjs/gatsby#32843)
• 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex gatsbyjs/gatsby#32567)
• d87c5cb chore: enable lmdb by default and update node for next major (feat: enable lmdb by default and update node gatsbyjs/gatsby#32695)
• 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (feat(gatsby-plugin-gatsby-cloud): Add disablePreviewUI option gatsbyjs/gatsby#32907)
• f556a00 chore: update changelogs (chore: update changelogs gatsbyjs/gatsby#32924)
• aba5eba feat(gatsby): enable webpack caching in development for everyone (feat(gatsby): enable webpack caching in development for everyone gatsbyjs/gatsby#32922)
• ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option gatsbyjs/gatsby#32901)
• 1a87a8a docs(gatsby-source-wordpress): document content sync (docs(gatsby-source-wordpress): document content sync gatsbyjs/gatsby#32768)
• 417df15 chore: re-generate changelogs (chore: re-generate changelogs gatsbyjs/gatsby#32886)
• 1810874 fix(gatsby-source-wordpress): draft previews (fix(gatsby-source-wordpress): draft previews gatsbyjs/gatsby#32915)
• 7c72ab8 chore(gatsby): remove unused packages (chore(gatsby): remove unused packages gatsbyjs/gatsby#32903)
• afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (chore(docs): Add hint for MDX plugin in remark-plugin-tutorial gatsbyjs/gatsby#32876)
• 1303ecb chore(docs): Update wording for "using-web-fonts" (chore(docs): Update wording for "using-web-fonts" gatsbyjs/gatsby#32902)
• 9589911 chore(docs): Fix code highlighting in part 6 (chore(docs): Fix code highlighting in part 6 gatsbyjs/gatsby#32900)
• 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds gatsbyjs/gatsby#32883)
• 41f5337 fix(deps): update typescript to ^4.29.3 (fix(deps): update typescript to ^4.29.3 gatsbyjs/gatsby#32614)

See the full diff

Package name: gatsby-source-filesystem

The new version differs by 224 commits.

• 3d607f1 chore(release): Publish
• a5131bd fix(gatsby): pull out a few bug fixes from https://github.com/feat(gatsby): make dev ssr bundling lazy gatsbyjs/gatsby#28149/ (fix(gatsby): pull out a few bug fixes from https://github.com/gatsbyjs/gatsby/pull/28149/ gatsbyjs/gatsby#28186) (fix(gatsby): pull out a few bug fixes from https://github.com/gatsbyjs/gatsby/pull/28149/ (#28186) gatsbyjs/gatsby#28188)
• 4b9cd2e feat(gatsby): invite people with long page query running to try out query on demand feature (feat(gatsby): invite people with long page query running to try out query on demand feature gatsbyjs/gatsby#28181) (feat(gatsby): invite people with long page query running to try out query on demand feature (#28181) gatsbyjs/gatsby#28185)
• 9869094 feat(gatsby): enable all dev improvements with one env var (feat(gatsby): enable all dev improvements with one env var gatsbyjs/gatsby#28166) ( feat(gatsby): enable all dev improvements with one env var (#28166) gatsbyjs/gatsby#28179)
• 57b5840 fix(gatsby): get-page-data should timeout gracefully (fix(gatsby): get-page-data should timeout gracefully gatsbyjs/gatsby#28131) (fix(gatsby): get-page-data should timeout gracefully (#28131) gatsbyjs/gatsby#28180)
• 00870bb fix(gatsby-source-filesystem): Use new FileType methods to read file extension (fix(gatsby-source-filesystem): Use new FileType methods to read file extension gatsbyjs/gatsby#28156) (fix(gatsby-source-filesystem): Use new FileType methods to read file extension (#28156) gatsbyjs/gatsby#28178)
• 9e3ceec fix(gatsby): rename env var for lazy dev bundling to make consistent with other experiments (fix(gatsby): rename env var for lazy dev bundling to make consistent with other experiments gatsbyjs/gatsby#28150)
• a612f26 feat(gatsby): invite (1%) of Gatsby users to try out develop ssr (feat(gatsby): invite (1%) of Gatsby users to try out develop ssr gatsbyjs/gatsby#28139)
• 04349a0 feat(gatsby): lazy bundle page components in dev server (feat(gatsby): lazy bundle page components in dev server gatsbyjs/gatsby#27884)
• 179694a chore(gatsby-source-graphql): upgrade graphql-tools to v7 (chore(gatsby-source-graphql): upgrade graphql-tools to v7 gatsbyjs/gatsby#27792)
• 23da2c3 feat(gatsby): SSR pages during development (feat(gatsby): SSR pages during development gatsbyjs/gatsby#27432)
• 6858f22 Try adding sitehash to success event (feat(create-gatsby): Try adding sitehash to success event gatsbyjs/gatsby#28136)
• 088eef4 feat(develop): add query on demand behind feature flag (feat(develop): add query on demand behind feature flag gatsbyjs/gatsby#28127)
• a737ea7 feat(gatsby): invite people with long develop bundling times to try the lazy dev js bundling feature (feat(gatsby): invite people with long develop bundling times to try the lazy dev js bundling feature gatsbyjs/gatsby#28116)
• bf328d0 chore(docs): replace typefaces with fontsource (chore(docs): replace typefaces with fontsource gatsbyjs/gatsby#27313)
• 17de55b chore: update publishing scripts (chore: update publishing scripts gatsbyjs/gatsby#28118)
• f9838f7 feat(create-gatsby): add telemetry tracking (feat(create-gatsby): add telemetry tracking gatsbyjs/gatsby#28107)
• 23b4137 chore(create-gatsby): Remove alpha warning (chore(create-gatsby): Remove alpha warning gatsbyjs/gatsby#28132)
• 195d623 feat: add utility to show experiment invitation notices (feat: add utility to show experiment invitation notices gatsbyjs/gatsby#28120)
• 1657b98 benchmarks(contentful): use the new max pageLimit (benchmarks(contentful): use the new max pageLimit gatsbyjs/gatsby#28128)
• 283da81 refactor(gatsby): get-page-data util (refactor(gatsby): get-page-data util gatsbyjs/gatsby#27939)
• 5b2d9b6 fix(gatsby): fix race condition in cache lock (fix(gatsby): fix race condition in cache lock gatsbyjs/gatsby#28097)
• 061b459 Add Netlify CMS (Add Netlify CMS to create-gatsby gatsbyjs/gatsby#28124)
• 539dbb0 chore(deps): update babel monorepo (chore(deps): update babel monorepo gatsbyjs/gatsby#27528)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.