[Snyk] Security upgrade react-scripts from 4.0.3 to 5.0.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • explorer/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-scripts

The new version differs by 69 commits.

• 221e511 Publish
• 6a3315b Update CONTRIBUTING.md
• 5614c87 Add support for Tailwind (The constraints on compute power a program can consume is limited only to its instruction count solana-labs/solana#11717)
• 657739f chore(test): make all tests install with `npm ci` (Cleanup test utilities  solana-labs/solana#11723)
• 20edab4 fix(webpackDevServer): disable overlay for warnings (fix: land program addresses off-curve (bp #11355) solana-labs/solana#11413)
• 69321b0 Remove cached lockfile (Remove old signatureSubscribe info (bp #11704) solana-labs/solana#11706)
• 3afbbc0 Update all dependencies (short_vec::decode_len() returns wrong size for aliased values solana-labs/solana#11624)
• f5467d5 feat(eslint-config-react-app): support ESLint 8.x (Bump version to 1.4.0 solana-labs/solana#11375)
• e8319da [WIP] Fix integration test teardown / cleanup and missing yarn installation (BpfLoader211111... programs can't CPI into BpfLoader111111.. programs solana-labs/solana#11686)
• c7627ce Update webpack and dev server (rpc: rework binary encoding. BREAKING CHANGE solana-labs/solana#11646)
• f85b064 The default port used by `serve` has changed (Restore CLI usage page to docs solana-labs/solana#11619)
• 544befe Update package.json (generate_pull_response optimization solana-labs/solana#11597)
• 9d0369b Fix ESLint Babel preset resolution (Adapt RpcClient to recent token method changes (bp #11519) solana-labs/solana#11547)
• d7b23c8 test(create-react-app): assert for exit code (Fix nonce fee_calculator overwrite solana-labs/solana#10973)
• 1465357 Prepare 5.0.0 alpha release
• 3880ba6 Remove dependency pinning (Add Binary64 option for account data solana-labs/solana#11474)
• 8b9fbee Update CODEOWNERS
• cacf590 Bump template dependency version (Enable cross program support in mainnet-beta epoch 63 (bp #11404) solana-labs/solana#11415)
• 5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (Return delegated amount as UiTokenAmount (bp #11475) solana-labs/solana#11476)
• 50ea5ad allow CORS on webpack-dev-server (Add cluster stats tab to explorer solana-labs/solana#11325)
• 63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (Add getTokenLargestAccounts endpoint (bp #11322) solana-labs/solana#11338)
• 960b21e Bump immer from 8.0.4 to 9.0.6 (RpcClient: get_token_accounts_by_owner now returns UiTokenAccounts solana-labs/solana#11364)
• 134cd3c Resolve dependency issues in v5 alpha (Move simulate_transaction from rpc to bank solana-labs/solana#11294)
• b45ae3c Update CONTRIBUTING.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

[stale]

This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

[stale]

This stale pull request has been automatically closed. Thank you for your contributions.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@crowdin/cli@3.6.1	None	0	6.78 MB	andrii.bodnar
npm/@docusaurus/core@2.0.0-beta.0	Transitive: environment, eval, filesystem, network, shell, unsafe	+418	25.6 MB	slorber
npm/@docusaurus/preset-classic@2.0.0-beta.0	environment Transitive: eval, filesystem, shell, unsafe	+167	17.3 MB	slorber
npm/@docusaurus/theme-search-algolia@2.0.0-beta.0	filesystem Transitive: environment, eval, network, shell, unsafe	+186	19.5 MB	slorber
npm/clsx@1.1.1	None	0	6.28 kB	lukeed
npm/eslint-plugin-react@7.23.2	filesystem Transitive: eval	+32	3.1 MB	ljharb
npm/eslint@7.26.0	filesystem Transitive: environment, eval, shell, unsafe	+68	10.5 MB	eslintbot
npm/postcss-loader@4.3.0	unsafe Transitive: environment, eval, filesystem	+34	1.86 MB	evilebottnawi
npm/postcss@8.2.15	environment, filesystem	+2	245 kB	ai

🚮 Removed packages: npm/@blockworks-foundation/mango-client@3.6.7, npm/@bonfida/bot@0.5.3, npm/@bonfida/spl-name-service@0.1.30, npm/@cloudflare/stream-react@1.2.0, npm/@metamask/jazzicon@2.0.0, npm/@metaplex/js@4.12.0, npm/@popperjs/core@2.11.0, npm/@project-serum/anchor@0.23.0, npm/@project-serum/serum@0.13.61, npm/@react-hook/debounce@4.0.0, npm/@sentry/react@7.6.0, npm/@solana/buffer-layout@3.0.0, npm/@solana/spl-token-registry@0.2.3736, npm/@solana/web3.js@1.50.0, npm/@testing-library/jest-dom@5.16.1, npm/@testing-library/react@13.3.0, npm/@testing-library/user-event@14.2.3, npm/@types/bn.js@5.1.0, npm/@types/bs58@4.0.1, npm/@types/chai@4.3.1, npm/@types/chart.js@2.9.34, npm/@types/classnames@2.3.1, npm/@types/jest@28.1.4, npm/@types/node@18.0.3, npm/@types/react-dom@18.0.3, npm/@types/react-router-dom@5.3.2, npm/@types/react-select@3.1.2, npm/@types/react@18.0.8, npm/@types/socket.io-client@3.0.0, npm/bignumber.js@9.0.2, npm/bn.js@5.2.0, npm/bootstrap@5.1.3, npm/bs58@4.0.1, npm/chai@4.3.6, npm/chart.js@2.9.4, npm/classnames@2.3.1, npm/coingecko-api@1.0.10

View full report↗︎