[Snyk] Security upgrade serialize-javascript from 1.4.0 to 3.1.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	Yes	Proof of Concept

Commit messages

Package name: serialize-javascript

The new version differs by 49 commits.

• b54341e v3.1.0
• 7cee7e4 Revert "support for bigint (Update circular-dependency-plugin to the latest version 🚀 #80)"
• 026a445 Bump mocha from 7.1.2 to 7.2.0 (Deploying to Heroku #83)
• 5130a71 support for bigint (Update circular-dependency-plugin to the latest version 🚀 #80)
• ea76b23 Bump mocha from 7.1.1 to 7.1.2 (Update semantic-ui-react to the latest version 🚀 #82)
• 073c8d8 Bump nyc from 15.0.0 to 15.0.1 (how do you run frontend alone in prod #81)
• f21a6fb Don't replace regex / function placeholders within string literals (Demo broken on IE11. Object.assign... #79)
• 1ac487e [Security] Bump minimist from 1.2.0 to 1.2.5 (Update preload-webpack-plugin to the latest version 🚀 #78)
• c795cef Bump mocha from 7.1.0 to 7.1.1 (Replace i18n-webpack-plugin with react-i18next #77)
• 3064431 Bump mocha from 7.0.1 to 7.1.0 (Update babel-register to the latest version 🚀 #74)
• 9dbe8f6 Update example in README (Add redux-persist #73)
• f5957ee v3.0.0
• eed510c Introduce support for Infinity (Component names are replaced in React dev tools #72)
• 82bb2d2 Bump mocha from 7.0.0 to 7.0.1 (SSR: generate index.html using WebpackStats #71)
• fdfb10a Test on Node.js v12 (Add react-a11y #70)
• 2f5f126 Bump mocha from 6.2.2 to 7.0.0 (Add AutoDLL webpack-plugin #69)
• 35062c0 Bump nyc from 14.1.1 to 15.0.0 (Move from custom <LazyLoad> to react-universal-component #68)
• 6c43b02 v2.1.2
• 3e05a3f Ignore .nyc_output (npm run frontend_dev broken in master? #64)
• 3c46e8e Bump mocha from 6.2.0 to 6.2.2 (No webpack source maps in dev tools #62)
• 433fc9c 2.1.1
• 16a68ab Merge pull request from GHSA-h9rv-jmmf-4pgx
• 3bab6de Bump mocha from 6.2.1 to 6.2.2 (Dev to master #60)
• 7a6b13d Bump mocha from 6.2.0 to 6.2.1 (Dev to master #59)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[codecov]

Codecov Report

Merging #367 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #367   +/-   ##
=======================================
  Coverage   96.36%   96.36%           
=======================================
  Files          10       10           
  Lines          55       55           
  Branches        5        5           
=======================================
  Hits           53       53           
  Misses          2        2           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update bbdaafd...e72e88e. Read the comment docs.