[Snyk] Upgrade @mui/icons-material from 5.10.9 to 6.1.3

[q1blue]

Snyk has created this PR to upgrade @mui/icons-material from 5.10.9 to 6.1.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 85 versions ahead of your current version.

• The recommended version was released on 23 days ago.

Release notes

Package name: @mui/icons-material

• 6.1.3 - 2024-10-09
  

  Oct 9, 2024

  A big thanks to the 18 contributors who made this release possible. Here are some highlights ✨:

  • 🚀 Improved performance on styled components by pre-serializing and caching the styles (#43412) @ romgrk

  @ mui/material@6.1.3

  • ​Change React.ReactElement to React.ReactElement (#43402) @ sai6855
  • ​[Badge] Make keys in anchor origin partial (#43950) @ sai6855
  • ​[Grid2] Fix column spacing for nested containers (#43733) @ Janpot
  • ​[Grid2] Remove required item prop for size prop (#44027) @ Janpot
  • ​[Grid2] Add compatible props warning (#43801) @ k-rajat19
  • ​[Modal] Fix comment location (#44026) @ oliviertassinari
  • ​[OutlinedInput] Resolve border color issue on mobile (#43797) (#43879) @ wojtek35

  @ mui/system@6.1.3

  • ​Make createGrid compatible with React 19 types (#44035) @ aarongarciah
  • ​Add empty interfaces to fix issue with typescript module augmentation (#43873) @ yonatan0
  • ​Pre-serialize & cache styles to improve performance (#43412) @ romgrk
  • ​[typescript] SystemCSSProperties should not have SystemStyleObject as value (#44029) @ siriwatknp

  @ mui/utils@6.0.0-beta.11

  • ​[utils] Make getReactElementRef React 19 compatible (#44034) @ aarongarciah

  @ mui/lab@6.1.3

  • ​[lab][Timeline] Fix types for React 19 (#44043) @ aarongarciah

  Docs

  • ​Update docs-infra role (#44032) @ mnajdova
  • ​Update Material Symbols plan to reflect Google development (#44000) @ oliviertassinari
  • ​Fix 301 redirections in docs @ oliviertassinari
  • ​Fix indentation @ oliviertassinari
  • ​Fix Live edit copies (#43835) @ oliviertassinari
  • ​Virtualize icons svg (#43939) @ Janpot
  • ​[Grid] Fix Grid2 gap description (#43967) @ aarongarciah
  • ​[icons] Index search synchronously (#44001) @ oliviertassinari
  • ​[material-ui] Incorrect React useState Example on Toggle Button (#43987) @ barrownicholas
  • ​[material-ui] Add theme setting for pigment-css migration (#43993) @ effektsvk
  • ​[material-ui] Fix incorrect slotProp name in the TextField deprecation note. (#43985) @ Chee7ah
  • ​[examples] Use CSS Variables (#43856) @ Juneezee
  • ​[material-ui] Improved documentation for indeterminateIcon prop (#43791) @ marctaylor01

  Core

  • ​Fix typo in useLocalStorageState (#44024) @ hieunguyenduc696
  • ​Amend changelog (#43968) @ aarongarciah
  • ​Remove @ mui/styled-engine-sc dev dependency from @ mui/styled-engine-sc (#44050) @ Janpot
  • ​[docs-infra] Add pointer cursor on hover for logo to improve UX (#43999) @ Asin-Junior-Honore
  • ​[blog] Migrate some .gif to
  • ​[code-infra] Align next dependency specifier across project (#44036) @ Janpot
  • ​[code-infra] Move MuiError babel macro to babel plugin (#43904) @ Janpot
  • ​[code-infra] Forbid calling Error without new (#43963) @ Janpot
  • ​[docs-infra] Fix link in header regression (#43834) @ oliviertassinari
  • ​[infra] Fix line break in Stack Overflow message @ oliviertassinari
  • ​[test] Add missing async (#44028) @ oliviertassinari
  • ​[test] Fix Escape event firing event (#43961) @ oliviertassinari
  • ​[test] Fix flaky pigment-css screenshot (#43959) @ Janpot
  • ​[website] Add missing _redirects HTTP status @ oliviertassinari
  • ​[website] Fix sponsor image height @ oliviertassinari
  • ​[website] Remove srcset, does nothing in README @ oliviertassinari
  • ​[website] Polish display of sponsors @ oliviertassinari
  • ​[website] Standardize utm tags @ oliviertassinari
  • ​[website] Improve utm_source strategy @ oliviertassinari
  • ​[website] Clarify min-level docs-infra @ oliviertassinari
  • ​[website] Update backlink sponsors (#43995) @ rluzists1

  All contributors of this release in alphabetical order: @ aarongarciah, @ Asin-Junior-Honore, @ barrownicholas, @ Chee7ah, @ effektsvk, @ hieunguyenduc696, @ Janpot, @ Juneezee, @ k-rajat19, @ mnajdova, @ oliviertassinari, @ romgrk, @ sai6855, @ siriwatknp, @ wojtek35, @ yonatan0

• 6.1.2 - 2024-10-02
  

  A big thanks to the 13 contributors who made this release possible.

  @ mui/material@6.1.2

  • [Autocomplete] Fix listbox opens and closes on click when used with limitTags (#42494) @ appleSimple
  • [Button] Ignore dark and contrastText if not provided in the theme (#43861) @ siriwatknp
  • [Button] Fix regression for color inherit (#43862) @ siriwatknp
  • [LinearProgress] Fix background color (#43949) @ sai6855
  • Support CSS variables with shadow DOM (#43948) @ siriwatknp
  • [Rating] Use Rating name as prefix of input element ids (#43829) @ yash49
  • [Drawer] Fix issue with main window being used instead of iframe's window (#43818) @ albarv340
  • [ThemeProvider] Support setting default mode (#43951) @ siriwatknp

  Docs

  • Update theme toggle demo (#43956) @ Janpot
  • Add note about minimum required webpack version (#43864) @ Janpot
  • Format Pigment CSS docs (#43812) @ oliviertassinari
  • Fix visual bug on dashboard template (#43836) @ oliviertassinari
  • Fix pigment-css.md syntax error (#43837) @ kdichev
  • Fix Sign-in template form experience (#43838) @ oliviertassinari
  • Remove "To be continued" section from v0 –> v1 migration guide (#43832) @ samuelsycamore
  • Fix 301 to chromium (#43809) @ oliviertassinari
  • [joy-ui] Add missing ComponentLinkHeader components (#43865) @ samuelsycamore
  • [Modal] Remove unnecessary type assertion (#43825) @ ZeeshanTamboli
  • [Table] Stabilize random series in virtualized table demo (#43744) @ Janpot
  • [system] Add migration guide link to @ mui/styles pages (#43833) @ samuelsycamore

  Core

  • [code-infra] Fix flaky dashboard screenshot - take 2 (#43937) @ Janpot
  • [code-infra] Replace all instances of e with event and add eslint rule (#43866) @ samuelsycamore
  • [code-infra] Fix and update bundling fixtures (#43709) @ Janpot
  • [code-infra] Update transitive dependencies with vulnerabilties (#43895) @ Janpot
  • [code-infra] Optimize regression tests (#43889) @ Janpot
  • [code-infra] Remove custom playwright installation steps (#43881) @ Janpot
  • [code-infra] Fix flaky dashboard screenshot (#43890) @ Janpot
  • [code-infra] Add new instanceof proptypes for toolpad (#43814) @ Janpot
  • Fix eslint-plugin-react-compiler issues in usePagination tests (#43946) @ wilhelmlofsten
  • Uniformity in version range @ oliviertassinari
  • Replace toBeAriaHidden matcher with toBeInaccessible in tests (#43870) @ ZeeshanTamboli
  • [docs-infra] Strengthen CSP (#43711) @ oliviertassinari
  • [docs-infra] Open Codesandbox demo with fontsize=12 (#43860) @ siriwatknp
  • [icons] Reduce Material Icon page size (#43911) @ oliviertassinari
  • [test] Point Istanbul to correct URL (#43935) @ sai6855
  • [test] Sync React.version parse logic with codebase (#43820) @ oliviertassinari
  • Improve getReactElementRef() utils (#43022) @ sai6855
  • [Drawer] Refactor getScrollbarSize usages (#43828) @ BrianWoolfolk
  • [Modal] Replace show parameter name with hide in modal manager (#43868) @ ZeeshanTamboli
  • [Modal] Remove unnecessary manager prop handling (#43867) @ ZeeshanTamboli

  All contributors of this release in alphabetical order: @ albarv340, @ appleSimple, @ BrianWoolfolk, @ DanailH, @ Janpot, @ kdichev, @ oliviertassinari, @ sai6855, @ samuelsycamore, @ siriwatknp, @ wilhelmlofsten, @ yash49, @ ZeeshanTamboli

• 6.1.1 - 2024-09-19
  

  A big thanks to the 18 contributors who made this release possible.

  @ mui/material@6.1.1

  • [Grid] Bring back GridProps and GridTypeMap (#43717) @ DiegoAndai
  • [Paper] Fix wrong background-image on Paper when elevation is 0 (#43723) @ ZeeshanTamboli
  • [Skeleton] Fix wave animation for styled-components (#43740) @ siriwatknp
  • [Modal] Fix event handlers overriding behavior (#43757)

[changeset-bot]

⚠️ No Changeset found

Latest commit: f33a0a1

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/string_decoder@1.3.0	None	0	14.4 kB	matteo.collina
npm/string.prototype.trimstart@1.0.4	None	0	16.9 kB	ljharb
npm/style-loader@1.3.0	None	0	57 kB	evilebottnawi
npm/stylehacks@4.0.3	None	0	25 kB	evilebottnawi
npm/supports-color@6.1.0	None	0	7.46 kB	sindresorhus
npm/svgo@1.3.2	filesystem	0	406 kB	greli
npm/tar@6.1.11	environment, filesystem	0	161 kB	isaacs
npm/terser-webpack-plugin@4.2.3	eval	0	75.3 kB	evilebottnawi
npm/terser@5.9.0	eval	0	1.92 MB	fabiosantoscode
npm/through2@2.0.5	None	0	9.65 kB	rvagg
npm/thunky@1.1.0	None	0	7.76 kB	mafintosh
npm/timers-browserify@2.0.12	None	0	10.4 kB	jryans
npm/timsort@0.3.0	None	0	58.7 kB	mziccard
npm/to-arraybuffer@1.0.1	None	0	5.54 kB	jhiesey
npm/to-fast-properties@2.0.0	None	0	3.5 kB	sindresorhus
npm/to-object-path@0.3.0	None	0	5.07 kB	jonschlinkert
npm/to-regex-range@5.0.1	None	0	22.9 kB	jonschlinkert
npm/ts-pnp@1.2.0	None	0	8 kB	arcanis
npm/tty-browserify@0.0.0	None	0	1.99 kB	substack
npm/turbolinks@5.2.0	None	0	111 kB	javan
npm/typedarray@0.0.6	None	0	26 kB	substack
npm/unbox-primitive@1.0.1	None	0	12.8 kB	ljharb
npm/unicode-canonical-property-names-ecmascript@2.0.0	None	0	5.01 kB	google-wombot
npm/unicode-match-property-ecmascript@2.0.0	None	0	5.05 kB	google-wombot
npm/unicode-match-property-value-ecmascript@2.0.0	None	0	25.6 kB	google-wombot
npm/unicode-property-aliases-ecmascript@2.0.0	None	0	5.98 kB	google-wombot
npm/union-value@1.0.1	None	0	6.83 kB	doowb
npm/uniq@1.0.1	None	0	4.32 kB	mikolalysenko
npm/uniqs@2.0.0	None	0	2.42 kB	fgnass
npm/unique-filename@1.1.1	None	0	41.4 kB	iarna
npm/unique-slug@2.0.2	None	0	2.68 kB	zkat
npm/unquote@1.1.1	None	0	2.41 kB	lakenen
npm/unset-value@1.0.0	None	0	8.53 kB	jonschlinkert
npm/upath@1.2.0	None	0	34.3 kB	anodynos
npm/uri-js@4.4.1	None	0	470 kB	garycourt
npm/urix@0.1.0	None	0	4.37 kB	lydell
npm/url-parse@1.5.3	None	0	57.4 kB	3rdeden
npm/url@0.11.0	None	0	76.8 kB	defunctzombie
npm/use@3.1.1	None	0	9.51 kB	jonschlinkert
npm/util.promisify@1.0.1	None	+1	1.15 MB	ljharb
npm/util@0.11.1	environment	0	24.5 kB	goto-bus-stop
npm/utils-merge@1.0.1	None	0	3.72 kB	jaredhanson
npm/v8-compile-cache@2.3.0	environment, filesystem, unsafe	0	16.8 kB	zertosh
npm/vary@1.1.2	None	0	8.75 kB	dougwilson
npm/vendors@1.0.4	None	0	4.17 kB	wooorm
npm/vm-browserify@1.1.2	None	0	15.5 kB	goto-bus-stop
npm/watchpack-chokidar2@2.0.1	None	0	427 B	sokra
npm/watchpack@1.7.5	None	0	22.8 kB	sokra
npm/webpack-assets-manifest@3.1.1	filesystem	+2	83.2 kB	webdeveric
npm/webpack-cli@3.3.12	environment, filesystem, shell, unsafe	0	224 kB	evilebottnawi
npm/webpack-dev-middleware@3.7.3	filesystem	+1	49.1 kB	evilebottnawi
npm/webpack-dev-server@3.11.3	environment, filesystem, network	0	508 kB	evilebottnawi
npm/webpack-log@2.0.0	None	+1	50 kB	michael-ciniawsky
npm/webpack@4.46.0	environment, filesystem, unsafe	+2	1.81 MB	sokra
npm/websocket-extensions@0.1.4	None	0	55 kB	jcoglan
npm/which-boxed-primitive@1.0.2	None	0	15 kB	ljharb
npm/which-module@2.0.0	None	0	4.58 kB	nexdrew
npm/which@1.3.1	environment	0	9.42 kB	isaacs
npm/worker-farm@1.7.0	environment, shell	0	49.9 kB	rvagg
npm/wrap-ansi@5.1.0	None	0	9.62 kB	sindresorhus
npm/wrappy@1.0.2	None	0	2.96 kB	zkat
npm/ws@6.2.2	network	0	102 kB	lpinca
npm/xtend@4.0.2	None	0	6.46 kB	raynos
npm/y18n@4.0.3	filesystem	0	11 kB	oss-bot
npm/yallist@4.0.0	None	0	14.8 kB	isaacs
npm/yaml@1.10.2	environment	0	448 kB	eemeli
npm/yargs-parser@13.1.2	environment	0	57.1 kB	oss-bot
npm/yargs@13.3.2	environment, filesystem	0	229 kB	oss-bot
npm/yocto-queue@0.1.0	None	0	6.03 kB	sindresorhus

🚮 Removed packages: npm/array-uniq@1.0.3, npm/detect-node@2.1.0, npm/get-stream@4.1.0, npm/hpack.js@2.1.6, npm/is-stream@1.1.0, npm/npm-run-path@2.0.2, npm/p-finally@1.0.0, npm/path-is-inside@1.0.2, npm/pinkie@2.0.4, npm/signal-exit@3.0.5

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Critical CVE	npm/url-parse@1.5.3	CVE: GHSA-hgjh-723h-mx2j Authorization Bypass Through User-Controlled Key in url-parse (CRITICAL) Affected versions: < 1.5.8 Patched version: 1.5.8	etl/yarn.lock	⚠︎

View full report↗︎

Next steps

What is a critical CVE?

Contains a Critical Common Vulnerability and Exposure (CVE).

Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/url-parse@1.5.3