[Security] Bump loader-utils from 1.4.0 to 1.4.1 in /frontend
Bumps loader-utils from 1.4.0 to 1.4.1. This update includes a security fix.
Vulnerabilities fixed
Prototype pollution in webpack loader-utils Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils prior to version 2.0.3 via the name variable in parseQuery.js.
Patched versions: 1.4.1 Affected versions: < 1.4.1
Commits
-
8f082b3
chore(release): 1.4.1 -
4504e34
fix: security problem (#220) - See full diff in compare view
Dependabot commands
You can trigger Dependabot actions by commenting on this MR
-
$dependabot rebase
will rebase this MR -
$dependabot recreate
will recreate this MR rewriting all the manual changes and resolving conflicts