[Snyk] Fix for 4 vulnerabilities

[gane5hvarma]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Prototype Pollution SNYK-JS-FASTXMLPARSER-3325616	No	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-5668858	No	No Known Exploit
	Prototype Pollution SNYK-JS-PROTOBUFJS-5756498	No	Proof of Concept
	Prototype Pollution SNYK-JS-XML2JS-5414874	No	Proof of Concept

Commit messages

Package name: aws-sdk

The new version differs by 74 commits.

• a99fac5 Updates SDK to v2.1354.0
• 62847a4 Bump xml2js to 0.5.0 (#4389)
• 56ad952 Updates SDK to v2.1353.0
• 8a20e16 Updates SDK to v2.1352.0
• d39ba59 Updates SDK to v2.1351.0
• 3ee782c Updates SDK to v2.1350.0
• 8dcb3e2 Updates SDK to v2.1349.0
• cc11160 Updates SDK to v2.1348.0
• c58ec67 Updates SDK to v2.1347.0
• ded882e Updates SDK to v2.1346.0
• 2a4e007 Updates SDK to v2.1345.0
• d21d111 Updates SDK to v2.1344.0
• 1c27481 Updates SDK to v2.1343.0
• 31f179d Updates SDK to v2.1342.0
• 7a4205c Updates SDK to v2.1341.0
• f990ba2 Updates SDK to v2.1340.0
• 05a0d49 Updates SDK to v2.1339.0
• f04a795 Updates SDK to v2.1338.0
• eba3268 Updates SDK to v2.1337.0
• 512728e Updates SDK to v2.1336.0
• 7b8436a Updates SDK to v2.1335.0
• f3bfd44 add Makefile to .gitignore (#4370)
• ac41da1 Updates SDK to v2.1334.0
• 4c9c49d delete Makefile

See the full diff

Package name: pprof

The new version differs by 2 commits.

• d42aaa3 v3.2.1 (Fixes for Amplitude without page name #265)
• 50ebc63 chore: cherry pick security fixes for v3.2.1 backport [security] (saas <- master (Indicative fixes) #263)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Regular Expression Denial of Service (ReDoS)

[devops-github-rudderstack]

This PR is considered to be stale. It has been open for 20 days with no further activity thus it is going to be closed in 7 days. To avoid such a case please consider removing the stale label manually or add a comment to the PR.