[Snyk] Upgrade prop-types from 15.8.0 to 15.8.1

[X-oss-byte]

Snyk has created this PR to upgrade prop-types from 15.8.0 to 15.8.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released on 3 years ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	589	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	589	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	589	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	589	Proof of Concept
	Prototype Pollution SNYK-JS-ASYNC-2441827	589	Proof of Concept
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	589	No Known Exploit
	Improper Handling of Extra Parameters SNYK-JS-FOLLOWREDIRECTS-6141137	589	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GETFUNCNAME-5923417	589	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	589	Proof of Concept
	Directory Traversal SNYK-JS-MOMENT-2440688	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	589	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	589	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	589	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-8172694	589	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-8187303	589	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ES5EXT-6095076	589	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	589	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	589	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	589	No Known Exploit
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	589	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	589	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	589	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	589	Proof of Concept
	Reverse Tabnabbing SNYK-JS-ISTANBULREPORTS-2328088	589	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	589	Proof of Concept
	Information Exposure SNYK-JS-EVENTSOURCE-2823375	589	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	589	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-JSBEAUTIFY-2311652	589	No Known Exploit
	Prototype Pollution SNYK-JS-JSON5-3182856	589	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	589	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	589	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577916	589	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577917	589	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577918	589	Proof of Concept
	Cross-site Scripting SNYK-JS-SEND-7926862	589	No Known Exploit
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	589	No Known Exploit

Release notes

Package name: prop-types

• 15.8.1 - 2022-01-05
  
  • [Fix] fix crash when a custom propType return lacks .data; call hasOwnProperty properly (#370)
  • [meta] Fix formatting in CHANGELOG.md (#367)
  • [Tests] add missing test coverage (#370)
  • [Tests] convert normal it functions to arrow functions (#370)
  • [Tests] do not fail fast; add react 17 (#366)
  • [Dev Deps] update eslint
• 15.8.0 - 2021-12-22
  
  • [New] add PropTypes.bigint (#365)
  • [New] oneOfType: Add expected types to warning (#198)
  • [New] Add type check for validator for 'shape' and 'exact' (#234)
  • [Fix] checkPropTypes: Friendlier message when using a type checker that is not a function (#51)
  • [Refactor] extract has (#261, #125, #124)
  • [readme] Fix branch name (master -> main) (#364)
  • [readme] Clarify usage of elementType (#335)
  • [docs] highlighted the func name (#321)
  • [docs] Typo fix in example (#300)
  • [docs] Add instructions for intentional inclusion of validation in production. (#262)
  • [docs] PropTypes.node: add link to react docs
  • [docs] Improve wording for checkPropTypes (#258)
  • [meta] Add a package sideEffects field. (#350)
  • [meta] use in-publish to avoid running the build on install
  • [deps] regenerate yarn.lock
  • [deps] update react-is (#347, #346, #345, #340, #338)
  • [eslint] enable some rules (#360)
  • [Tests] Use GH Actions (#363)
  • [Tests] Fix spelling (#318)
  • [Tests] Fixed typo: 'Any type should accept any value' (#281)
  • [Tests] fix broken tests; test the build process
  • [Dev Deps] update browserify, bundle-collapser, eslint, in-publish, react, uglifyify, uglifyjs

from prop-types GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Summary by Sourcery

Build:

• Upgrade 'prop-types' dependency from version 15.8.0 to 15.8.1 in package.json.

[stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 5c099dc

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[sourcery-ai]

Reviewer's Guide by Sourcery

This PR upgrades the prop-types package from version 15.8.0 to 15.8.1. The upgrade is a patch release that fixes a crash issue when custom propTypes return values lack a .data property and includes some test improvements. This is a low-risk dependency update that addresses several security vulnerabilities in transitive dependencies.

No diagrams generated as the changes look simple and do not need a visual representation.

File-Level Changes

Change	Details	Files
Upgrade prop-types dependency to fix crash and security issues	Update prop-types from 15.8.0 to 15.8.1 Fix crash when custom propType returns lack .data property Add test coverage improvements Address multiple security vulnerabilities in transitive dependencies	client/package.json

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time. You can also use
  this command to specify where the summary should be inserted.

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

We have skipped reviewing this pull request. Here's why:

• It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
• We don't review packaging changes - Let us know if you'd like us to change this.