[Snyk] Fix for 1 vulnerabilities

[Centaurioun]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • jhipster-modules/jhipster-uaa/gateway/package.json
  • jhipster-modules/jhipster-uaa/gateway/package-lock.json
  • jhipster-modules/jhipster-uaa/gateway/.snyk

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Prototype Pollution SNYK-JS-LODASH-567746	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: browser-sync

The new version differs by 6 commits.

• 8c28e8c 2.24.7
• 9e96603 fix: scroll - add missing init method for window.name method of scroll restoring - fixes First pass of changes for the merge. eugenp/tutorials#1586 h2 test eugenp/tutorials#1457 h2 test eugenp/tutorials#1457
• 48286e0 fix: proxy Port gets unnecesarily rewritten in Proxy - fixes BAEL-748 quick guide to @Value eugenp/tutorials#1577
• a6578a3 deps: easy-extender@2.3.4 cypress@3.1.0 supertest@3.1.0
• ef6bfa5 Merge pull request Optimize build eugenp/tutorials#1582 from strarsis/patch-1
• b6ba0dd Update opn to latest release

See the full diff

Package name: generator-jhipster

The new version differs by 250 commits.

• 62fc80a Release v7.0.0
• 82cb06e Merge pull request JAVA-23118 Fix java-ee-8-security-api module eugenp/tutorials#14397 from MarcelRosenberger/blockhound-add-validator
• 35ee508 add SpringValidatorAdapter.validate in Blockhound
• 51f8730 Merge pull request BAEL-4165 - Custom DLL Load - Fixing the "java.lang.UnsatisfiedLinkError" Error eugenp/tutorials#14393 from pascalgrimaud/upgrade-jhipster-registry-v6.7.0
• 5b9204d Merge pull request Docker Compose Support in Spring Boot 3 [ BAEL-6648 ] eugenp/tutorials#14394 from mshima/skip_ci_needle_angular2
• c223b76 Upgrade JHipster Control Center to v0.4.1
• 59f76e6 Upgrade JHipster Registry to v6.7.1
• a5d0492 Add regression tests for duplicated needle and fix css needle.
• b564d9b Give time for the Registry to start after Keycloak
• e16a6fc Upgrade jhipster-registry to v6.7.0
• c4e6e19 Merge pull request jackson-simple unit test failed in window machine eugenp/tutorials#14391 from mshima/skip_ci_needle_angular
• cff779c Merge pull request [BAEL-6689] code for zipwhen eugenp/tutorials#14392 from qmonmert/feature/upgrade-react
• 69247de [React] Upgrade react-jhipster 0.15.0
• 6856bca Add support to prettier aware and custom needles existence detection.
• c3b5958 Merge pull request JAVA-22211 Upgrade dependencies versions for helidon-se module eugenp/tutorials#14389 from pascalgrimaud/upgrade-jhipster-lib-7.0.0
• 9b74997 Switch to release of jhipster dependencies
• 04f854a Upgrade jhipster lib to 7.0.0
• 5365f14 Merge pull request JAVA-22611 Commented out java-ee security module eugenp/tutorials#14385 from DanielFran/sonar
• 7e810eb Update ci-cd
• 1b81df4 Merge pull request [long-to-bigdecimal] Convert Long to BigDecimal in Java eugenp/tutorials#14372 from jhipster/dependabot/npm_and_yarn/generators/client/templates/vue/ts-jest-26.5.4
• e9f0329 Merge pull request Evaluation article/valentin oprea eugenp/tutorials#14367 from mshima/skip_ci_main
• a43de87 Use default maven properties for jacoco report files
• 60ab4e0 chore(deps-dev): bump ts-jest in /generators/client/templates/vue
• 8ed1eef Merge pull request [BAEL-6697] code for jacoco fail build eugenp/tutorials#14373 from jhipster/dependabot/npm_and_yarn/generators/client/templates/react/webpack-5.26.3

See the full diff

With a Snyk patch:

Severity	Priority Score (*)	Issue	Exploit Maturity
	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Prototype Pollution SNYK-JS-LODASH-567746	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution