[Snyk] Security upgrade metalsmith-prism from 3.1.1 to 5.0.2

[adamlaska]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Arbitrary Code Injection SNYK-JS-PRISMJS-9055448	508

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Arbitrary Code Injection

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

[socket-security]

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/anymatch@3.1.1 ➜ 3.1.3	None	0	9.65 kB	phated
npm/braces@3.0.2 ➜ 3.0.3	None	0	44.6 kB	jonschlinkert
npm/cheerio-select@2.1.0	None	+2	353 kB	feedic
npm/chokidar@3.3.0 ➜ 3.6.0	None	0	90.2 kB	paulmillr
npm/commander@2.20.0, 2.20.3 ➜ 10.0.1	environment	0	174 kB	abetomo
npm/dotenv@16.4.7	environment, filesystem	0	75.8 kB	motdotla
npm/encoding-sniffer@0.2.0	None	+1	516 kB	feedic
npm/fill-range@7.0.1 ➜ 7.1.1	None	0	16.7 kB	jonschlinkert
npm/fsevents@2.1.1 ➜ 2.3.3	None	0	173 kB	pipobscure
npm/glob-parent@5.1.0 ➜ 5.1.2	None	0	12.1 kB	phated
npm/gray-matter@2.1.1 ➜ 4.0.3	None	0	38.6 kB	rmassaioli
npm/lodash.clonedeepwith@4.5.0	None	0	48.5 kB	jdalton
npm/metalsmith-prism@3.1.1 ➜ 5.0.2	None	0	52.8 kB	wernerglinka
npm/metalsmith@2.3.0 ➜ 2.6.3	environment, filesystem	+2	157 kB	webketje
npm/micromatch@4.0.2 ➜ 4.0.8	None	0	56.6 kB	doowb
npm/parse5-htmlparser2-tree-adapter@7.1.0	None	+2	105 kB	43081j
npm/parse5-parser-stream@7.1.2	None	+2	1.12 MB	feedic
npm/picomatch@2.0.7 ➜ 2.3.1	None	0	90 kB	mrmlnc
npm/prismjs@1.17.1 ➜ 1.30.0	None	0	2.05 MB	dmitrysharabin
npm/readdirp@3.2.0 ➜ 3.6.0	None	0	20.5 kB	paulmillr
npm/section-matter@1.0.0	None	0	12.1 kB	jonschlinkert
npm/stat-mode@0.2.2 ➜ 1.0.0	None	0	25.7 kB	tootallnate
npm/strip-bom-string@1.0.0	None	0	5.69 kB	jonschlinkert
npm/undici@6.21.2	None	0	1.17 MB	ethan_arrowood, matteo.collina, ronag
npm/whatwg-encoding@3.1.1	None	0	13.3 kB	domenic
npm/whatwg-mimetype@4.0.0	None	0	16.7 kB	domenic

🚮 Removed packages: npm/absolute@0.0.1, npm/ansi-red@0.1.1, npm/ansi-wrap@0.1.0, npm/clipboard@2.0.4, npm/co-from-stream@0.0.0, npm/co-fs-extra@1.2.1, npm/co-read@0.0.1, npm/coffee-script@1.12.7, npm/delegate@3.2.0, npm/enable@1.3.2, npm/fs-extra@0.26.7, npm/good-listener@1.2.2, npm/has-generators@1.0.1, npm/is@3.3.0, npm/jsonfile@2.4.0, npm/klaw@1.3.1, npm/recursive-readdir@2.2.2, npm/select@1.1.2, npm/thunkify-wrap@1.0.4, npm/thunkify@2.1.2, npm/tiny-emitter@2.1.0, npm/toml@2.3.6, npm/unyield@0.0.1, npm/win-fork@1.1.1

View full report↗︎