[Snyk] Fix for 1 vulnerabilities

[Brandylee24]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • examples/wagmi-demo/package.json
  • examples/wagmi-demo/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	170/1000 Why? Confidentiality impact: High, Integrity impact: None, Availability impact: None, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 1, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.83, Score Version: V5	Improper Validation of Integrity Check Value SNYK-JS-SECP256K1-8237220	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @coinbase/wallet-sdk

The new version differs by 39 commits.

• 17589c1 [WALL-18868] Fix RCE issue on notification github action ([WALL-18868] Fix RCE issue on notification github action coinbase/coinbase-wallet-sdk#831)
• 3d52c09 notification template as env var (notification template as env var coinbase/coinbase-wallet-sdk#828)
• d0088ca Notify new issues with permission check (Notify new issues with permission check coinbase/coinbase-wallet-sdk#824)
• d8b7a4c Notify new issues (Notify new issues coinbase/coinbase-wallet-sdk#822)
• a2cff75 [Version update] v3.6.4 ([Version update] v3.6.4 coinbase/coinbase-wallet-sdk#815)
• 1c5ee7c Update eth-json-rpc-filters (Update eth-json-rpc-filters coinbase/coinbase-wallet-sdk#816)
• 9d24e3f address dependabot alerts - testing codeflow mirroring (address dependabot alerts coinbase/coinbase-wallet-sdk#813)
• 5990cb4 [trivial] set up codeflow ([trivial] set up codeflow coinbase/coinbase-wallet-sdk#811)
• 2f5a89a Bump ua-parser-js from 0.7.32 to 0.7.33 in /packages/wallet-sdk (Bump ua-parser-js from 0.7.32 to 0.7.33 in /packages/wallet-sdk coinbase/coinbase-wallet-sdk#809)
• 9b9a7f4 Bump cookiejar from 2.1.3 to 2.1.4 in /examples/web3-onboard-demo (Bump cookiejar from 2.1.3 to 2.1.4 in /examples/web3-onboard-demo coinbase/coinbase-wallet-sdk#807)
• 8fc05a6 Bump cookiejar from 2.1.3 to 2.1.4 in /examples/web3modal-demo (Bump cookiejar from 2.1.3 to 2.1.4 in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#808)
• bbe4273 fix: pass reloadOnDisconnect to WalletSDKRelay (fix: pass reloadOnDisconnect to WalletSDKRelay coinbase/coinbase-wallet-sdk#574)
• dec550b Update demo apps' configs to address dependabot alerts (Update demo apps' configs to address dependabot alerts coinbase/coinbase-wallet-sdk#798)
• 0ae1b48 Add sample apps (Add sample apps coinbase/coinbase-wallet-sdk#796)
• 0f235fa Remove unused RxJS calls (Remove unused RxJS calls coinbase/coinbase-wallet-sdk#779)
• 1e6b0bd AES256GCM decrypt: replace Observable with Promise (AES256GCM decrypt: replace Observable with Promise coinbase/coinbase-wallet-sdk#778)
• 91ba2c7 upgrade vulnerable dependencies (upgrade vulnerable dependencies coinbase/coinbase-wallet-sdk#787)
• 0b3a9b4 Bump loader-utils from 2.0.2 to 2.0.4 in /examples/web3modal-demo (Bump loader-utils from 2.0.2 to 2.0.4 in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#792)
• 501a8d0 Bump minimatch and recursive-readdir in /examples/web3modal-demo (Bump minimatch and recursive-readdir in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#791)
• 2873dd2 Bump terser from 5.14.0 to 5.16.1 in /examples/web3modal-demo (Bump terser from 5.14.0 to 5.16.1 in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#790)
• cae5dca Bump decode-uri-component in /examples/web3modal-demo (Bump decode-uri-component from 0.2.0 to 0.2.2 in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#789)
• 7c4572d Bump json5 from 1.0.1 to 1.0.2 in /examples/web3modal-demo (Bump json5 from 1.0.1 to 1.0.2 in /examples/web3modal-demo coinbase/coinbase-wallet-sdk#788)
• d91775c Add web3modal demo (Add Web3Modal demo coinbase/coinbase-wallet-sdk#568)
• 0f320f3 Bump node-fetch from 2.6.6 to 2.6.7 in /packages/wallet-sdk (Bump node-fetch from 2.6.6 to 2.6.7 in /packages/wallet-sdk coinbase/coinbase-wallet-sdk#583)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.