[Snyk] Security upgrade babel-loader from 6.4.1 to 7.1.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept

Commit messages

Package name: babel-loader

The new version differs by 54 commits.

• d249119 7.1.0
• ea9b4d4 Update yarn.lock
• 7986787 chore(package): update eslint-config-babel to version 7.0.0 (Market 0.5.0 #469)
• ee40748 chore(package): update lint-staged to version 4.0.0 (Should not install app if already exists in read-only apps folder #470)
• 66784e4 Update to webpack 3 (Bump less-loader from 4.0.5 to 5.0.0 #471)
• 8544ffa Only base cache identifier on babel options from pkg.json (add a note to explain where to get api key #468)
• ea2eafa Add prettier eslint plugin ([Security] Bump jquery from 3.2.1 to 3.4.0 #466)
• 4548169 Add node 8 to test matrix ([Snyk] Fix for 1 vulnerable dependencies #467)
• d8b73c0 fix(resolve-rc): look for babel in package.json and .babelrc.js (Update dependencies #465)
• 8d96c1f Remove outdated examples.
• 91f2658 Fixed: watch configuration files. ([Snyk] Fix for 1 vulnerable dependencies #460)
• de2d3f3 Upgrade dependencies
• 37e63e3 Upgrade find-cache-dir to 1.0 and cross-env to 5.0 (Release 0.4.0 #457)
• 1a76476 7.0.0
• 7307226 Point changelog to releases
• 174cb10 Merge branch '7.0'
• 2204871 Add prettier (Bump style-loader from 0.16.1 to 0.23.1 #409)
• dbec80d Make sure .babelrc is a file, not a directory (Standardize CI #427)
• aa485e4 Use bash codecov (Bump vue-gettext from 2.0.23 to 2.1.2 #440)
• 16522b6 yarn.lock
• 660922b Update ava to the latest version 🚀 (Unit tests failing #434)
• 5d248b5 Update cross-env to the latest version 🚀 (Bump vue-router from 2.7.0 to 3.0.2 #431)
• 74ff2e6 Updated documentation to match webpack v2 changes. (Do not pin coding-standard to PHP 5.6 #438)
• ed8711d Add note about webpack versions

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[codecov]

Codecov Report

Merging #537 (9bcff61) into master (61a0b3a) will not change coverage.
The diff coverage is n/a.

❗ Current head 9bcff61 differs from pull request most recent head 467310c. Consider uploading reports for the commit 467310c to get more accurate results

@@            Coverage Diff            @@
##             master     #537   +/-   ##
=========================================
  Coverage     55.56%   55.56%           
  Complexity      264      264           
=========================================
  Files            17       17           
  Lines           925      925           
=========================================
  Hits            514      514           
  Misses          411      411           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 77b0be8...467310c. Read the comment docs.

[phil-davis]

@micbar what to do about these security PRs?
npm dependencies are not my specialty ;)

[CLAassistant]

All committers have signed the CLA.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[mmattel]

Superceded by #772

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information