[Snyk] Fix for 2 vulnerabilities

[bri06]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	Yes	Proof of Concept
	763/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.4	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @storybook/vue

The new version differs by 250 commits.

• 60bf2b5 Bump version from "7.6.16" to "7.6.17" [skip ci]
• a62571c Merge pull request #26091 from storybookjs/version-patch-from-7.6.16
• 7ddca37 Update snapshot
• 94dd83e Merge pull request #26086 from drik98/next
• db2c66f Write changelog for 7.6.17 [skip ci]
• 9f31c2d Merge pull request #23677 from vmizg/fix-toc-heading-leak
• 8ed55cb Update ./docs/versions/next.json for v8.0.0-beta.3
• 87d4fda Merge pull request #26037 from storybookjs/sb7-migration-mention-framework
• 9d8e54b Tweak prose
• 287300b Bump version from "7.6.15" to "7.6.16" [skip ci]
• 3b378dd Merge pull request #26044 from storybookjs/version-patch-from-7.6.15
• 6e6b5b7 Fix CHANGELOG.md
• 91a8921 Revert 24451
• 7a98580 Write changelog for 7.6.16 [skip ci]
• 70297b6 Merge pull request #26042 from storybookjs/yann/fix-addon-themes-types
• 0274ce9 Add note about framework to migration guide
• 8bcc3b4 Bump version from "7.6.14" to "7.6.15" [skip ci]
• c79251d Merge pull request #26020 from storybookjs/version-patch-from-7.6.14
• abdf474 Merge remote-tracking branch 'origin/version-patch-from-7.6.14' into version-patch-from-7.6.14
• e18ab32 Fix CHANGELOG.md
• 32fe122 Write changelog for 7.6.15 [skip ci]
• 26ceaf2 Merge pull request #25950 from storybookjs/jeppe/25035-bug-boolean-control-in-true-state-in-url-is-ignored
• 23b76d5 Merge pull request #26019 from storybookjs/kasper/revert-24451-2
• c585353 Write changelog for 7.6.15 [skip ci]

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled Resource Consumption ('Resource Exhaustion')
🦉 Path Traversal

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud