[Snyk] Fix for 9 vulnerabilities

[CesarNog]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	409/1000 Why? Has a fix available, CVSS 3.9	Cross-site Scripting (XSS) SNYK-JS-ANGULARCORE-1070902	Yes	No Known Exploit
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-JQUERY-174006	No	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Cross-site Scripting (XSS) SNYK-JS-JQUERY-565129	No	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Cross-site Scripting (XSS) SNYK-JS-JQUERY-567880	No	Proof of Concept
	429/1000 Why? Has a fix available, CVSS 4.3	Reverse Tabnabbing SNYK-JS-SWAGGERUI-449808	Yes	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Cross-site Scripting (XSS) SNYK-JS-SWAGGERUI-449921	Yes	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Relative Path Overwrite (RPO) SNYK-JS-SWAGGERUI-472935	Yes	No Known Exploit
	444/1000 Why? Has a fix available, CVSS 4.6	Insecure Defaults SNYK-JS-SWAGGERUI-572012	Yes	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Cross-site Scripting (XSS) npm:swagger-ui:20171031	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: swagger-ui

The new version differs by 250 commits.

• 9a0927b release: v3.26.1
• a616cb4 fix(Markdown): render markdown in more secure way
• 48a0b46 improvement: Make background SVGs consistent (#5478)
• fc3ed30 improvement: Move inline styles to SCSS instead (#5578)
• 67627d7 Remove max-width for textarea media < 768px (#6014)
• 117dcc9 Disable the validation badge for those who do not want it (#5994)
• 21f5149 fix: support variables in auth urls (#5913)
• 01fb5c0 chore(package): freeze release-it library and it's deps
• 275c8f2 improvement: oauth "scopes" improvements (#6037)
• 4497387 housekeeping(dev-deps): eslint-plugin-import@2.21.2
• f353974 fix: Allow local ref's to be served by nginx (#5565)
• 5217366 add swagger url option (#6122)
• cfdfb44 housekeeping(dev-deps): npm-audit-ci-wrapper@2.6.6
• 6ed15b0 housekeeping: core-js@2.6.11 (#6117)
• a0d9dc0 housekeeping(dev-deps): rimraf v3 (#6114)
• f52496a housekeeping(dev-deps): prettier v2 (#6111)
• 1ca9266 housekeeping(dev-deps): raw-loader v4 (#6112)
• 6bc0c62 housekeeping: update dependencies (#6110)
• 328ce28 housekeeping(dev-deps): eslint-plugin-import@2.21.1
• 53efe0c housekeeping(dev-deps): open v7 (#6108)
• 9d10a7c housekeeping(dev-deps): license-checker v25 (#6105)
• 0fdeb2a housekeeping(dev-deps): file-loader v6 (#6103)
• 0ee0983 housekeeping(dev-deps): eslint-plugin-mocha v7 (#6101)
• a9890b9 housekeeping(dev-deps): deepmerge v4 (#6098)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic