[Snyk] Security upgrade @remix-project/remix-ws-templates from 1.0.27 to 1.0.28

[snyk-io]

Snyk has created this PR to fix 1 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• apps/remixdesktop/package.json
• apps/remixdesktop/yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	67

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

[changeset-bot]

⚠️ No Changeset found

Latest commit: 3000f52

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@electron/rebuild@3.6.0	environment, filesystem, network, shell	+158	9.06 MB	electron-cfa
npm/@remixproject/plugin-api@0.3.208	None	+2	125 kB	bunsenstraat
npm/@types/byline@4.2.36	None	+2	2.29 MB	types
npm/@vscode/ripgrep@1.15.9	environment, filesystem, network, shell	+9	276 kB	vscode-bot
npm/axios@1.7.7	network Transitive: environment, filesystem	+6	2.29 MB	jasonsaayman
npm/chokidar@3.6.0	environment, filesystem	+14	527 kB	paulmillr
npm/electron@25.9.8	environment, filesystem, shell Transitive: network	+65	7.05 MB	electron-nightly
npm/express@4.20.0	Transitive: filesystem, network	+8	730 kB	blakeembrey, dougwilson, linusu, ...4 more
npm/isomorphic-git@1.27.1	network Transitive: environment	+19	4.33 MB	wmhilton
npm/semver@7.6.3	None	0	95.8 kB	npm-cli-ops
npm/typescript@5.6.2	None	0	22.4 MB	typescript-bot
npm/yarn@1.22.22	environment, filesystem, shell	0	5.34 MB	arcanis

🚮 Removed packages: npm/@electron/get@2.0.2, npm/@electron/rebuild@3.2.13, npm/@npmcli/fs@3.1.0, npm/@remixproject/plugin-api@0.3.38, npm/@types/byline@4.2.35, npm/@types/debug@4.1.8, npm/@types/express-serve-static-core@4.17.41, npm/@types/http-cache-semantics@4.0.1, npm/@types/ms@0.7.31, npm/@types/node@20.3.2, npm/@types/plist@3.0.2, npm/@types/qs@6.9.10, npm/@types/responselike@1.0.0, npm/@types/serve-static@1.15.5, npm/@types/verror@1.10.6, npm/@types/yargs@17.0.31, npm/@types/yauzl@2.10.0, npm/@vscode/ripgrep@1.15.6, npm/agent-base@7.1.0, npm/agentkeepalive@4.3.0, npm/async-lock@1.4.0, npm/async@3.2.4, npm/axios@1.6.1, npm/binary-extensions@2.2.0, npm/braces@3.0.2, npm/cacache@17.1.3, npm/call-bind@1.0.5, npm/chokidar@3.5.3, npm/ci-info@3.8.0, npm/detect-libc@2.0.1, npm/ejs@3.1.9, npm/electron@25.9.5, npm/fill-range@7.0.1, npm/fsevents@2.3.2, npm/get-intrinsic@1.2.2, npm/hasown@2.0.0, npm/https-proxy-agent@7.0.2, npm/ignore@5.2.4, npm/ip@2.0.1, npm/isomorphic-git@1.24.2, npm/keyv@4.5.2, npm/make-fetch-happen@11.1.1, npm/minipass-fetch@3.0.3, npm/node-abi@3.45.0, npm/node-api-version@0.1.4, npm/node-gyp@9.4.0, npm/plist@3.0.6, npm/regenerator-runtime@0.14.0, npm/repeat-element@1.1.4, npm/repeat-string@1.6.1, npm/requires-port@1.0.0, npm/resolve-url@0.2.1, npm/responselike@1.0.2, npm/ret@0.1.15, npm/ripemd160@2.0.2, npm/rlp@2.2.7, npm/safe-array-concat@1.0.1, npm/safe-regex-test@1.0.0, npm/safe-regex@1.1.0, npm/sax@1.2.4, npm/secp256k1@4.0.3, npm/secure-compare@3.0.1, npm/selenium-webdriver@4.3.1, npm/semver@7.5.4, npm/serialize-javascript@6.0.0, npm/set-function-length@1.1.1, npm/set-function-name@2.0.1, npm/set-value@2.0.1, npm/side-channel@1.0.4, npm/snapdragon-node@2.1.1, npm/snapdragon-util@3.0.1, npm/snapdragon@0.8.2, npm/socks@2.7.1, npm/solidity-ast@0.4.52, npm/source-map-resolve@0.5.3, npm/source-map-url@0.4.1, npm/source-map@0.5.7, npm/split-string@3.1.0, npm/sprintf-js@1.1.2, npm/ssri@10.0.4, npm/stacktrace-parser@0.1.10, npm/static-extend@0.1.2, npm/string.prototype.trim@1.2.8, npm/string.prototype.trimend@1.0.7, npm/string.prototype.trimstart@1.0.7, npm/strip-json-comments@2.0.1, npm/tar@6.1.15, npm/tmp@0.2.1, npm/to-object-path@0.3.0, npm/to-readable-stream@1.0.0, npm/to-regex-range@2.1.1, npm/to-regex@3.0.2, npm/tree-kill@1.2.2, npm/type-detect@4.0.8, npm/type-fest@0.7.1, npm/typed-array-buffer@1.0.0, npm/typed-array-byte-length@1.0.0, npm/typed-array-byte-offset@1.0.0, npm/typed-array-length@1.0.4, npm/typescript@5.1.3, npm/union-value@1.0.1, npm/union@0.5.0, npm/unique-filename@3.0.0, npm/unique-slug@4.0.0, npm/universalify@2.0.0, npm/unset-value@1.0.0, npm/upath@1.2.0, npm/urix@0.1.0, npm/url-join@4.0.1, npm/url-parse-lax@3.0.0, npm/url@0.11.3, npm/use@3.1.1, npm/uuid@8.3.2, npm/whatwg-encoding@2.0.0, npm/which-typed-array@1.1.11, npm/widest-line@3.1.0, npm/workerpool@6.2.0, npm/ws@7.5.9, npm/yargs-parser@20.2.9, npm/yargs-unparser@2.0.0, npm/yargs@16.2.0, npm/yocto-queue@0.1.0

View full report↗︎