[Snyk] Security upgrade hapi-swagger from 13.1.0 to 14.2.5

[hfreire]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	591/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.4	Server-side Request Forgery (SSRF) SNYK-JS-SWAGGERUIDIST-6056393	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: hapi-swagger

The new version differs by 82 commits.

• 6addaf1 14.2.5
• c4d912b chore: publish with npm
• 19de338 style: linter fixes
• 6c952c1 chore: upgrade yarn v3 & husky v7
• 094ffd8 Merge pull request Update @hapi/boom to the latest version 🚀 #738 from Short-io/master
• 0a77be5 Merge pull request Update testdouble to the latest version 🚀 #737 from ChalkPE/master
• d2c668d upgrade to non-vulnerable version of swagger-ui
• 20ae03d fix: docs are rendered only with the options in last registered plugin
• 7891598 14.2.4
• 2d033b3 Merge pull request Bump eslint-plugin-unicorn from 14.0.1 to 15.0.1 #728 from xsalazar/types/add_security_requirement_types
• ca9e6ba Formatting fixes
• bbaa928 Update value type and comments
• 242e2ac Add security requirements type to root document
• b83320b chore: correct package version
• c7ea8ab chore: add back npm hooks
• 7930bc6 14.2.3
• b282f6a chore: remove pre post npm hooks for now
• 56fbec9 Merge pull request Bump semantic-release from 15.13.31 to 15.14.0 #727 from xsalazar/types/add_security_types
• 874d494 Clean up trailing periods
• 6ae7fa0 Adds types for securityDefinitions, securitySchemes, and scopes
• 749dc64 14.2.2
• 2de3387 fix: missing "=" in type definition
• a45a1e0 Merge pull request Bump eslint from 6.7.2 to 6.8.0 #725 from sauramirez/master
• f996cf1 Adds missing TS uiCompleteScript alternative (fixes glennjones#710)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-side Request Forgery (SSRF)