[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-NODEFETCH-2964180	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: node-fetch

The new version differs by 217 commits.

• 2880238 fix: ReDoS referrer (Update ethereumjs-util to the latest version 🚀 MyEtherWallet/MyEtherWallet#1611)
• e87b093 fix(Headers): don't forward secure headers on protocol change (fix footer spacing MyEtherWallet/MyEtherWallet#1599)
• bcfb71c chore: remove triple-slash directives from typings (Add custom networks on send offline helper MyEtherWallet/MyEtherWallet#1285) (Support iframe wallets, specifically ethvault.xyz MyEtherWallet/MyEtherWallet#1287)
• 95165d5 fix spelling (Update ethereumjs-common to the latest version 🚀 MyEtherWallet/MyEtherWallet#1602)
• 11b7033 fix: possibly flaky test (Update @vue/cli-plugin-babel to the latest version 🚀 MyEtherWallet/MyEtherWallet#1523)
• 4f43c9e fix: always warn Request.data (Fix total nft issue MyEtherWallet/MyEtherWallet#1550)
• 1c5ed6b fix: undefined reference to response.body when aborted (New Crowdin translations MyEtherWallet/MyEtherWallet#1578)
• a92b5d5 fix: use space in accept-encoding values (Update @ledgerhq/hw-transport-webusb to the latest version 🚀 MyEtherWallet/MyEtherWallet#1572)
• 0f122b8 docs: fix formdata code example (Strip v5 down to barebones MyEtherWallet/MyEtherWallet#1562)
• 6ae9c76 docs(readme): response.clone() is not async (Update @ensdomains/address-encoder to the latest version 🚀 MyEtherWallet/MyEtherWallet#1560)
• 043a5fc Fix leaking listeners (Devop/sentry fixes MyEtherWallet/MyEtherWallet#1295) (devop/update-packages MyEtherWallet/MyEtherWallet#1474)
• 004b3ac fix: don't uppercase unknown methods (Update @vue/cli-plugin-eslint to the latest version 🚀 MyEtherWallet/MyEtherWallet#1542)
• c33e393 Fix Code of Conduct link in Readme. (Update @makerdao/dai to the latest version 🚀 MyEtherWallet/MyEtherWallet#1532)
• 6875205 docs: Fix link markup to Options definition (Update @vue/cli-plugin-pwa to the latest version 🚀 MyEtherWallet/MyEtherWallet#1525)
• 6425e20 fix: handle bom in text and json (Remove Aldo from team page MyEtherWallet/MyEtherWallet#1482)
• a4ea5f9 fix: add missing formdata export to types (Move State of dapp text MyEtherWallet/MyEtherWallet#1518)
• 61b3b5a fix: cancel request example import (Update @vue/cli-plugin-babel to the latest version 🚀 MyEtherWallet/MyEtherWallet#1513)
• 5e78af3 Replace changelog with valid url (bug/mnemonic-phrase-validation MyEtherWallet/MyEtherWallet#1506)
• 9014db7 types: support `agent: false` (Fix/estimate with value MyEtherWallet/MyEtherWallet#1502)
• 2e1f3a5 chore: fix typo in credential error message (Update @sentry/integrations to the latest version 🚀 MyEtherWallet/MyEtherWallet#1496)
• 4ce2ce5 docs(readme): fix typo (New Crowdin translations MyEtherWallet/MyEtherWallet#1489)
• ba23fd2 docs: remove the changelog (Update @ledgerhq/hw-transport-webusb to the latest version 🚀 MyEtherWallet/MyEtherWallet#1464)
• 8fedc1b core: move support and feature to discussion (works in firefox but not in chromium MyEtherWallet/MyEtherWallet#1471)
• 0b43b9f docs: update formdata example (Devop/font fix MyEtherWallet/MyEtherWallet#1465)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed within 10 days if no further activity occurs. Thank you for your contributions.

[stale]

Closing because of inactivity