[Snyk] Upgrade uglify-es from 3.1.9 to 3.3.10

[tcotidiane33]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade uglify-es from 3.1.9 to 3.3.10.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 15 versions ahead of your current version.
• The recommended version was released 6 years ago, on 2018-02-08.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Uninitialized Memory Exposure npm:stringstream:20180511	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	Mature
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: uglify-es

• 3.3.10 - 2018-02-08
• 3.3.9 - 2018-01-27
• 3.3.8 - 2018-01-21
• 3.3.7 - 2018-01-14
• 3.3.6 - 2018-01-13
• 3.3.5 - 2018-01-07
• 3.3.4 - 2017-12-31
• 3.3.3 - 2017-12-28
• 3.3.2 - 2017-12-25
• 3.3.1 - 2017-12-25
• 3.3.0 - 2017-12-24
• 3.2.2 - 2017-12-10
• 3.2.1 - 2017-12-03
• 3.2.0 - 2017-11-25
• 3.1.10 - 2017-11-19
• 3.1.9 - 2017-11-11

from uglify-es GitHub release notes

Commit messages

Package name: uglify-es

• aebc916 harmony-v3.3.10
• ebf5096 fix tests
• 630b090 Merge branch 'master' into harmony-v3.3.10
• 0cfbd79 v3.3.10
• d66d86f account for exceptions in `AST_Assign.left` (#2892)
• 905325d update dependencies (#2889)
• dea0cc0 mention file encoding (#2887)
• d69d800 evaluate `to{Low,Upp}erCase()` under `unsafe` (#2886)
• c0b8f2a add information on testing and code style (#2885)
• cb0257d describe a few compiler assumptions (#2883)
• 149a569 fix `inline` within arrow functions (#2881)
• 9637f51 change `undefined == x` to `null == x` (#2882)
• 3026bd8 improve exceptional flow compression by `collapse_vars` (#2880)
• 78a44d5 maintain order between side-effects and externally observable assignments (#2879)
• 4b3c065 fix `arguments` in arrow functions (#2877)
• 7e13c0d handle `break` & `continue` in `collapse_vars` (#2875)
• e6a2e9e allow `collapse_vars` across conditional branches (#2867)
• e773f03 fix assignment logic in `reduce_vars` (#2872)
• b16380d fix missing corner case in #2855 (#2868)
• 334b07a Update License Copyright Year to 2018 (#2866)
• 3cc1527 always test for `rename` (#2865)
• 525a61f better fix for #2858 (#2864)
• c3a002f account for side-effects in `comparisons` of `null` & `undefined` (#2863)
• fad6766 simplify comparisons with `undefined` & `null` (#2862)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs