[Snyk] Fix for 2 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	591/1000 Why? Recently disclosed, Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	Yes	No Known Exploit
	756/1000 Why? Recently disclosed, Has a fix available, CVSS 9.4	Arbitrary Code Execution SNYK-JS-SANITIZEHTML-585892	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: isomorphic-fetch

The new version differs by 12 commits.

• fc5e0d0 3.0.0
• 496fa43 Add version that was previously uncomitted to the package.json due to the previous release process
• 9f5a8b6 Add a list of alternatives
• 49280e6 Resolve minor security issue
• 0f5edd0 Explain why Isomorphic Fetch is needed in docs (allow passing secrets as env vars freeCodeCamp/pantry-for-good#135)
• e32b006 Fix travis (Fix editing Food Schedule Frequency and Start Date freeCodeCamp/pantry-for-good#190)
• db0aa8c Update to latest version
• 8bf02c4 Bump node-fetch from 1.7.3 to 2.6.1 (Problem Following the Readme until: "npm run dev" command freeCodeCamp/pantry-for-good#189)
• 89c7e70 Merge pull request [Snyk] Security upgrade sanitize-html from 1.27.5 to 2.12.1 #93 from paulmelnikow/fetch_ponyfill
• 25e3cab Add link to fetch-ponyfill
• 8d33aba Merge pull request [Snyk] Security upgrade socket.io from 2.5.0 to 3.0.5 #90 from josiah0/update-lintspaces-cli
• c22fcda Update lintspaces-cli

See the full diff

Package name: react-google-maps

The new version differs by 47 commits.

• 11c845a chore(release): 8.0.0
• 993c95d docs: compile from src with `styleguidist`
• 77a5f4f chore(lib): compile from src with `babel`
• b3c8f73 chore(src/components): compile from src/macros with `babel`
• e09ff15 docs: remove old docs folder
• 7cb9194 chore(README.md): update with the new documentation
• f5be7fd chore(package.json): remove unused devDependencies
• 8c504b9 docs: add `react-styleguidist` formatted examples
• 0232b35 chore(package.json): add `react-styleguidist`
• 030c674 chore(src/components): compile from src/macros with `babel`
• ea41411 feat(package.json): remove `create-react-class` from dependencies
• 4a1c34e feat(index.js): export `withScriptjs`
• 9a81765 chore: remove old lib folder
• 8f3b484 feat(withScriptjs): revamp with prettier
• c3de3b3 feat(withGoogleMap): revamp with prettier
• 13cbef2 feat(addons/MarkerClusterer): revamp to PureComponent
• 95269d2 feat(addons/InfoBox): revamp to PureComponent
• b92a570 feat(visualization/HeatmapLayer): revamp with jscodeshift
• bc41752 feat(places/SearchBox): revamp with jscodeshift
• 01bfb80 feat(drawing/DrawingManager): revamp with jscodeshift
• a0e6dd4 feat(StreetViewPanorama): revamp with jscodeshift
• 772f363 feat(GoogleMap): revamp with jscodeshift
• 8c66c14 feat(OverlayView): revamp with jscodeshift
• 92159bd feat(TrafficLayer): revamp with jscodeshift

See the full diff

Package name: sanitize-html

The new version differs by 51 commits.

• ca28bcd Merge pull request #419 from apostrophecms/v2
• 432e994 migrates srcset update
• 6f79315 Fixes merge conflicts
• deed33b Updates version number and catches changelog up for 2.0.0 (npm not working while deploying project locally freeCodeCamp/pantry-for-good#418)
• 3c7f93f Updates eslint config and fixes warnings (Added Multiple High-Level Functionalities freeCodeCamp/pantry-for-good#416)
• 90588d9 Merge pull request Add unit tests for donation controller freeCodeCamp/pantry-for-good#413 from TrySound/upgrade-postcss
• 78bda11 Capitalize Node
• 483888d Merge pull request Add unit test files for controllers freeCodeCamp/pantry-for-good#414 from apostrophecms/nesting-limit
• 9301cc8 clearer language?
• 5d15534 Merge pull request Added shift controller, route, and model freeCodeCamp/pantry-for-good#415 from apostrophecms/2/import-readme
• 14d0b52 Updates README import language
• 22bb2a8 nestingLimit option
• 66a1c87 Upgrade postcss
• e978b5f Merge pull request Testing/customer controllers freeCodeCamp/pantry-for-good#411 from TrySound/upgrade-is-plain-object
• fd18161 Upgrade changelog
• 5f62d16 Upgrade is-plain-object
• 51fdefb Merge pull request Add unit tests for customer controller freeCodeCamp/pantry-for-good#409 from apostrophecms/use-existing-has-function
• 5dbc0ab changelog and package.json
• d5abe66 use existing has function, less code
• 056481f 2.0.0 rc.1 version and changelog update (Add unit tests for customer controller freeCodeCamp/pantry-for-good#407)
• 4550160 Merge pull request Inventory - Scan and lookup product barcodes on openfoodfacts.org freeCodeCamp/pantry-for-good#402 from TrySound/upgrade-klona
• 2058e3a Add changelog
• c71f289 [v2] Upgrade klona
• 524d92c 2/no iframe (fix security vulnerabilities as suggested by npm install using npm audit fix --force freeCodeCamp/pantry-for-good#393)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic