From 94aee97bf8bdd64786f0a48069fc6e22a4280adc Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 25 Jan 2026 11:49:30 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844
- https://snyk.io/vuln/SNYK-JS-TAR-6476909
- https://snyk.io/vuln/SNYK-JS-TAR-1579147
- https://snyk.io/vuln/SNYK-JS-TAR-1579152
- https://snyk.io/vuln/SNYK-JS-TAR-1579155
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
- https://snyk.io/vuln/SNYK-JS-TAR-1536528
- https://snyk.io/vuln/SNYK-JS-TAR-1536531
- https://snyk.io/vuln/SNYK-JS-TAR-1536758
---
 package.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index 967d8253d9ac..72230512332a 100644
--- a/package.json
+++ b/package.json
@@ -29,12 +29,12 @@
     "babel-preset-env": "^1.7.0",
     "browser-date-formatter": "^3.0.3",
     "change-case": "^3.1.0",
-    "cheerio": "^1.0.0-rc.3",
+    "cheerio": "^1.0.0",
     "compression": "^1.7.4",
     "connect-datadog": "0.0.9",
     "connect-slashes": "^1.4.0",
     "cookie-parser": "^1.4.5",
-    "copy-webpack-plugin": "^6.0.3",
+    "copy-webpack-plugin": "^7.0.0",
     "cors": "^2.8.5",
     "cross-env": "^7.0.2",
     "css-loader": "^4.3.0",
@@ -65,7 +65,7 @@
     "js-yaml": "^3.14.0",
     "linkinator": "^2.13.1",
     "liquidjs": "^9.22.1",
-    "lodash": "^4.17.20",
+    "lodash": "^4.17.23",
     "lunr": "^2.3.9",
     "lunr-languages": "^1.4.0",
     "mdast-util-from-markdown": "^0.8.4",
@@ -101,7 +101,7 @@
     "unist-util-visit": "^2.0.3",
     "uuid": "^8.3.0",
     "walk-sync": "^1.1.4",
-    "webpack": "^4.44.0",
+    "webpack": "^5.0.0",
     "webpack-cli": "^3.3.12"
   },
   "devDependencies": {