[Snyk] Fix for 9 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-MERGE-1040469	Yes	No Known Exploit
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-MERGE-1042987	Yes	Proof of Concept
	520/1000 Why? Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Improper Input Validation SNYK-JS-URLPARSE-1078283	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Open Redirect SNYK-JS-URLPARSE-1533425	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Improper Input Validation SNYK-JS-URLPARSE-543307	No	Proof of Concept
	816/1000 Why? Mature exploit, Has a fix available, CVSS 8.6	Uninitialized Memory Exposure npm:base64-url:20180512	Yes	Mature
	584/1000 Why? Has a fix available, CVSS 7.4	Prototype Override npm:querystringify:20180419	No	No Known Exploit
	761/1000 Why? Mature exploit, Has a fix available, CVSS 7.5	Open Redirect npm:url-parse:20180731	No	Mature

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: webdav

The new version differs by 233 commits.

• bd6c8e4 2.10.2
• ab1274b Prepare 2.10.2
• 98e6139 Replace merge with in-house solution (Language restructuring RocketChat/Rocket.Chat#190)
• e80c47b Fix travis for chrome tests
• 04ffe10 Replace merge with in-house solution
• 9c37eca 2.10.1
• 622d987 Prepare 2.10.1
• 611f095 Fix URL join slash duplication (t RocketChat/Rocket.Chat#186)
• ca62f41 Update all joinURL calls - fixes Keeping sync RocketChat/Rocket.Chat#185
• 9d86484 Add joinURL method to fix duplicate slashes
• baf858a 2.10.0
• 7f51b02 Prepare 2.10.0
• 4940e27 Document customRequest
• 39c39f4 Merge pull request Croatian Language Update RocketChat/Rocket.Chat#174 from ubarsaiyan/custom-request
• 6aae754 Merge branch 'master' into custom-request
• c24cdb6 Node6 fix (Add temporary image and map embed to support bot writers RocketChat/Rocket.Chat#177)
• ef08a88 Remove xvfb start scripts
• bdadaf5 Update package-lock
• 83eee8d Add xvfb service for travis
• 8d3247c Fix karma/wait-on versions for node6 issue
• 69b4a1c Make custom request API coherent with other APIs
• 6c092e9 Add custom request API
• 21f3094 Add total downloads badge
• 1b70cef 2.9.1

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic