[Snyk] Fix for 1 vulnerabilities

[MaxMood96]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: core-js-builder

The new version differs by 250 commits.

• 3c2e601 3.25.1
• 60519bc update the changelog
• bb1de0f update dependencies
• 2c1e73e update dependencies
• ce987cb improve some tests
• 6ca3e61 fix some blocks
• eb8ed33 fix a typo
• bacfb3f add "PRs welcome" badge with a link to `CONTRIBUTING.md`
• b534518 just in case detect correctness of `globalThis`
• 79ababc add some tests
• 6e81045 add some fixes and workarounds of FF30- typed arrays bug that does not properly convert objects to numbers
• e2e9036 update dependencies
• 8c71339 update dependencies
• 1bc6dab add `sideEffects: false` to `core-js-(builder|compat)`
• 6ae7c28 add `sideEffects` field to `core-js-pure` `package.json` for better tree shaking, close Improper use of setState WordPress/gutenberg#1117
• 0d3dc64 oops, remove some mistakenly uploaded changes
• c191a76 adapt some tests to a FF < 23 bug
• 9d19148 update dependencies and linting settings
• 5133a07 update Electron 21 compat data mapping
• b1039c4 update dependencies
• b7f7862 extract `CreateIterResultObject` abstraction for avoiding inconsistency in the future
• 10519a1 just in case of future reusage, add `semver.prototype.toString`
• 8a7d9e7 use `Object.hasOwn` if it's available in `core-js-compat` helpers
• 04e3566 drop `semver` from the ignore of updating

See the full diff

Package name: semver

The new version differs by 82 commits.

• e7b78de chore: release 7.5.2
• 58c791f fix: diff when detecting major change from prerelease (Implement image block placeholder WordPress/gutenberg#566)
• 5c8efbc fix: preserve build in raw after inc (Show inserter next to empty text block WordPress/gutenberg#565)
• 717534e fix: better handling of whitespace (Blockquote block empties after switching to text and back. WordPress/gutenberg#564)
• 2f738e9 chore: bump @ npmcli/template-oss from 4.14.1 to 4.15.1 (Remove image block align none control WordPress/gutenberg#558)
• aa016a6 chore: release 7.5.1
• d30d25a fix: show type on invalid semver error (TinyMCE Core: mobile support WordPress/gutenberg#559)
• 09c69e2 chore: bump @ npmcli/template-oss from 4.13.0 to 4.14.1 (Block Toolbar: z-index issue WordPress/gutenberg#555)
• 5b02ad7 chore: release 7.5.0
• e219bb4 fix: throw on bad version with correct error message (Pressing cmd/ctrl as a way to navigate into block toolbars WordPress/gutenberg#552)
• 503a4e5 feat: allow identifierBase to be false (List: block alignment controls should work WordPress/gutenberg#548)
• fc2f3df fix: incorrect results from diff sometimes with prerelease versions (Support two align variations: "full-width" and "wide". WordPress/gutenberg#546)
• 2781767 fix: avoid re-instantiating SemVer during diff compare (Quote alternative style WordPress/gutenberg#547)
• 82aa7f6 chore: release 7.4.0
• 731d896 chore: enable CD (Consider removing the alignone button WordPress/gutenberg#545)
• 940723d fix: intersects with v0.0.0 and v0.0.0-0 (Hover styles for active formatting buttons WordPress/gutenberg#538)
• aa516b5 fix: faster parse options (Block toolbar re-renders on undo/redo WordPress/gutenberg#535)
• 61e6ea1 fix: faster cache key factory for range (Handling "enter" on Heading block WordPress/gutenberg#536)
• f8b8b61 fix: optimistic parse (Formatting text within Captions (inline format bar) WordPress/gutenberg#541)
• 796cbe2 fix: semver.diff prerelease to release recognition (Block Controls: Treat alignments toolbar as an inline toolbar WordPress/gutenberg#533)
• 3f222b1 fix: reuse comparators on subset (Merging text block with heading using backspace WordPress/gutenberg#537)
• 113f513 feat: identifierBase parameter for .inc (Make header responsive WordPress/gutenberg#532)
• ea689bc chore: basic type test for RELEASE_TYPES
• c5d29df docs: Add "Constants" section to README

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)