fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-POSTCSS-5926692
346design · Oct 1, 2023 · 0a7477a · 0a7477a
1 parent cf3c8bb
commit 0a7477a
Show file tree

Hide file tree

Showing 2 changed files with 377 additions and 662 deletions.
diff --git a/package.json b/package.json
@@ -37,7 +37,7 @@
     "abortcontroller-polyfill": "^1.7.5",
     "array-includes": "^3.1.5",
     "arrow-key-navigation": "^1.2.0",
-    "autoprefixer": "^9.8.8",
+    "autoprefixer": "^10.0.0",
     "axios": "^1.1.3",
     "babel-loader": "^8.2.5",
     "babel-plugin-lodash": "^3.3.4",
@@ -51,7 +51,7 @@
     "compression-webpack-plugin": "^6.1.1",
     "cross-env": "^7.0.3",
     "css-loader": "^5.2.7",
-    "cssnano": "^4.1.11",
+    "cssnano": "^5.0.0",
     "detect-passive-events": "^2.0.3",
     "dotenv": "^16.0.3",
     "emoji-mart": "npm:emoji-mart-lazyload@latest",
@@ -85,8 +85,8 @@
     "object.values": "^1.1.5",
     "path-complete-extname": "^1.0.0",
     "pg": "^8.5.0",
-    "postcss": "^8.4.18",
-    "postcss-loader": "^3.0.0",
+    "postcss": "^8.4.31",
+    "postcss-loader": "^4.0.0",
     "postcss-object-fit-images": "^1.1.2",
     "promise.prototype.finally": "^3.1.3",
     "prop-types": "^15.8.1",