[Snyk] Security upgrade webpack from 1.15.0 to 4.0.0

[tjenkinson]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix 1 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• fixtures/packaging/webpack/dev/package.json
• fixtures/packaging/webpack/dev/yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ASYNC-7414156	631

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/global-modules@1.0.0	Transitive: environment, filesystem	+4	35.2 kB	jonschlinkert
npm/globals@9.18.0	None	0	33.7 kB	sindresorhus
npm/har-schema@2.0.0	None	0	15.1 kB	ahmadnassri
npm/har-validator@5.0.3	None	0	8.48 kB	ahmadnassri
npm/hawk@6.0.2	None	0	128 kB	hueniverse
npm/hoek@4.2.0	environment	0	31.5 kB	nlf
npm/http-errors@1.6.2	None	+1	17.7 kB	dougwilson
npm/http-signature@1.2.0	network	+2	227 kB	arekinath
npm/iconv-lite@0.4.19	None	0	335 kB	ashtuchkin
npm/inquirer@3.3.0	Transitive: environment, filesystem, shell	+8	1.57 MB	sboudrias
npm/ip@1.1.5	None	0	35.7 kB	indutny
npm/is-callable@1.1.3	None	0	22 kB	ljharb
npm/is-stream@1.1.0	None	0	3.23 kB	sindresorhus
npm/istanbul-lib-coverage@1.1.1	None	0	20.8 kB	bcoe
npm/istanbul-lib-instrument@1.9.1	None	0	54.1 kB	bcoe
npm/istanbul-lib-source-maps@1.2.2	filesystem	+1	28.4 kB	bcoe
npm/js-tokens@3.0.2	None	0	13.5 kB	lydell
npm/js-yaml@3.10.0	eval Transitive: environment, filesystem	+2	714 kB	vitaly
npm/levn@0.3.0	None	0	34 kB	gkz
npm/loader-utils@1.1.0	None	+2	111 kB	jhnns
npm/lodash@4.17.4	None	0	1.4 MB	jdalton
npm/loose-envify@1.3.1	environment	0	5.83 kB	zertosh
npm/map-obj@1.0.1	None	0	2.52 kB	sindresorhus
npm/memory-fs@0.4.1	None	0	13.4 kB	sokra
npm/meow@3.7.0	Transitive: filesystem	+12	61 kB	sindresorhus
npm/mime@1.4.1	environment, filesystem	0	41 kB	broofa
npm/node-pre-gyp@0.6.39	environment, filesystem Transitive: eval, network	+27	3.65 MB	springmeyer
npm/normalize-package-data@2.4.0	None	+2	45.3 kB	iarna
npm/obuf@1.1.1	None	0	17.8 kB	indutny
npm/opn@5.1.0	shell Transitive: environment, filesystem	+1	33.9 kB	sindresorhus
npm/optionator@0.8.2	None	+3	104 kB	gkz
npm/parse-json@2.2.0	None	+2	46.4 kB	sindresorhus
npm/path-is-inside@1.0.2	None	0	3.32 kB	domenic
npm/pify@2.3.0	None	0	6.02 kB	sindresorhus
npm/postcss@6.0.14	filesystem	0	639 kB	ai

🚮 Removed packages: npm/node-pre-gyp@0.6.38, npm/rimraf@2.6.2, npm/strip-ansi@3.0.1, npm/tapable@0.1.10, npm/tweetnacl@0.14.5, npm/webpack@1.15.0

View full report↗︎