[Snyk] Security upgrade webpack from 5.76.0 to 5.94.0

[snyk-io]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• projects/packages/forms/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Cross-site Scripting (XSS) SNYK-JS-WEBPACK-7840298	210

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Scripting (XSS)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
jetpack-storybook	❌ Failed (Inspect)			Aug 29, 2024 4:38am

[changeset-bot]

⚠️ No Changeset found

Latest commit: 8ba68e7

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[github-actions]

Thank you for your PR!

When contributing to Jetpack, we have a few suggestions that can help us test and review your patch:

• ✅ Include a description of your PR changes.
  
• 🔴 Add a "[Status]" label (In Progress, Needs Team Review, ...).
  
• 🔴 Add testing instructions.
  
• 🔴 Specify whether this PR includes any changes to data or privacy.
  
• 🔴 Add changelog entries to affected projects
  

This comment will be updated as you work on your PR and make changes. If you think that some of those checks are not needed for your PR, please explain why you think so. Thanks for cooperation 🤖

---

The e2e test report can be found here. Please note that it can take a few minutes after the e2e tests checks are complete for the report to be available.

---

🔴 Action required: Please include detailed testing steps, explaining how to test your change, like so:

## Testing instructions:

* Go to '..'
*

---

🔴 Action required: We would recommend that you add a section to the PR description to specify whether this PR includes any changes to data or privacy, like so:

## Does this pull request change what data or activity we track or use?

My PR adds *x* and *y*.

---

🔴 Action required: Please add missing changelog entries for the following projects: projects/packages/forms

Use the Jetpack CLI tool to generate changelog entries by running the following command: jetpack changelog add.
Guidelines: /docs/writing-a-good-changelog-entry.md

---

Follow this PR Review Process:

1. Ensure all required checks appearing at the bottom of this PR are passing.
2. Choose a review path based on your changes:
   • A. Team Review: add the "[Status] Needs Team Review" label
     • For most changes, including minor cross-team impacts.
     • Example: Updating a team-specific component or a small change to a shared library.
   • B. Crew Review: add the "[Status] Needs Review" label
     • For significant changes to core functionality.
     • Example: Major updates to a shared library or complex features.
   • C. Both: Start with Team, then request Crew
     • For complex changes or when you need extra confidence.
     • Example: Refactor affecting multiple systems.
3. Get at least one approval before merging.

Still unsure? Reach out in #jetpack-developers for guidance!

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@automattic/color-studio@2.6.0	None	0	632 kB	porada
npm/@automattic/explat-client-react-helpers@0.1.1	None	0	53.1 kB	ianramosa8c
npm/@automattic/explat-client@0.1.0	None	0	242 kB	scjr
npm/@automattic/format-currency@1.0.1	None	0	125 kB	manzoorwanijk
npm/@automattic/i18n-utils@1.2.3	Transitive: environment, filesystem	+3	524 kB	arthur791004
npm/@automattic/page-pattern-modal@1.1.5	None	0	442 kB	miguel.san.segundo
npm/@automattic/popup-monitor@1.0.2	None	0	13.7 kB	matticbot
npm/@automattic/request-external-access@1.0.0	None	0	20.4 kB	wunderbart
npm/@automattic/social-previews@2.1.0-beta.6	Transitive: environment	+26	8.61 MB	manzoorwanijk
npm/@automattic/typography@1.0.0	None	0	3.98 kB	chihsuan
npm/@automattic/viewport@1.0.0	None	0	44.7 kB	sgomes
npm/@automattic/webpack-rtl-plugin@6.0.0	None	0	7.19 kB	matticbot
npm/@babel/compat-data@7.24.7	None	0	65.6 kB	nicolo-ribaudo
npm/@babel/core@7.24.7	environment, filesystem, unsafe	+19	8.08 MB	nicolo-ribaudo
npm/@babel/eslint-parser@7.24.7	unsafe	+1	221 kB	nicolo-ribaudo
npm/@babel/helper-compilation-targets@7.24.7	None	+1	64 kB	nicolo-ribaudo
npm/@babel/plugin-syntax-jsx@7.24.7	None	+1	184 kB	nicolo-ribaudo
npm/@babel/plugin-transform-react-jsx@7.24.7	Transitive: environment	+17	6.48 MB	nicolo-ribaudo
npm/@babel/plugin-transform-runtime@7.24.7	unsafe Transitive: environment	+16	6.39 MB	nicolo-ribaudo
npm/@babel/preset-env@7.24.7	environment, filesystem	+103	12.7 MB	nicolo-ribaudo
npm/@babel/preset-react@7.24.7	Transitive: environment	+9	2.99 MB	nicolo-ribaudo
npm/@babel/preset-typescript@7.24.7	Transitive: environment	+28	7.82 MB	nicolo-ribaudo
npm/@babel/runtime@7.24.7	None	0	246 kB	nicolo-ribaudo
npm/@cerner/duplicate-package-checker-webpack-plugin@2.3.0	None	0	25.6 kB	benbcai
npm/@csstools/postcss-global-data@2.1.1	filesystem, unsafe	0	7.65 kB	romainmenke
npm/@jest/globals@29.4.3	Transitive: eval	+8	652 kB	simenb
npm/@jest/globals@29.7.0	Transitive: eval	+8	652 kB	simenb
npm/@mdn/browser-compat-data@5.5.47	None	0	14.5 MB	mdn-bot
npm/@microsoft/fetch-event-source@2.0.1	network	0	62.2 kB	vishwam
npm/@octokit/auth-token@5.1.1	None	0	19 kB	octokitbot
npm/@octokit/rest@20.1.1	Transitive: network	+11	6.55 MB	octokitbot
npm/@playwright/test@1.45.1	None	0	25.4 kB	yurys
npm/@popperjs/core@2.11.8	None	0	1.46 MB	fezvrasta
npm/@preact/signals@1.3.0	None	+1	301 kB	jdecroock
npm/@react-spring/core@9.7.3	environment	+4	2.48 MB	tdfka_rick
npm/@react-spring/web@9.7.3	environment	+4	1.12 MB	tdfka_rick
npm/@rollup/plugin-babel@5.3.1	Transitive: environment	+16	6.28 MB	shellscape
npm/@rollup/plugin-commonjs@26.0.1	filesystem	+1	315 kB	shellscape
npm/@rollup/plugin-json@4.1.0	None	+1	63.3 kB	shellscape
npm/@rollup/plugin-node-resolve@13.3.0	filesystem	+1	144 kB	shellscape
npm/@rollup/plugin-replace@5.0.2	None	+1	81.9 kB	shellscape
npm/@rollup/plugin-terser@0.4.3	eval, unsafe	0	28.6 kB	shellscape
npm/@rollup/plugin-typescript@8.3.3	environment, filesystem	+1	136 kB	shellscape
npm/@rushstack/eslint-patch@1.3.3	None	0	33.9 kB	odspnpm
npm/@sentry/browser@7.80.1	network	+5	6.66 MB	sentry-bot

🚮 Removed packages: npm/lodash@4.17.21), npm/regenerator-runtime@0.14.1)

View full report↗︎