[Snyk] Security upgrade harp from 0.20.3 to 0.40.0

[elOtta1223]

Snyk has created this PR to fix 86 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Arbitrary File Write SNYK-JS-TAR-1579152	****
	Arbitrary File Write SNYK-JS-TAR-1579155	****
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	****
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	****
	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	****
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	****
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	791
	NULL Pointer Dereference SNYK-JS-NODESASS-535500	761
	NULL Pointer Dereference SNYK-JS-NODESASS-535505	761
	NULL Pointer Dereference SNYK-JS-NODESASS-540974	761
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	756
	Remote Code Execution (RCE) SNYK-JS-EJS-2803307	726
	Out-of-bounds Read SNYK-JS-NODESASS-535501	726
	Out-of-bounds Read SNYK-JS-NODESASS-540956	726
	Out-of-bounds Read SNYK-JS-NODESASS-540996	726
	Sandbox Bypass npm:constantinople:20180421	714
	Prototype Pollution SNYK-JS-LODASH-6139239	696
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	696
	Regular Expression Denial of Service (ReDoS) npm:marked:20180225	696
	Prototype Pollution SNYK-JS-LODASH-450202	686
	Prototype Pollution SNYK-JS-LODASH-608086	686
	Prototype Pollution SNYK-JS-LODASH-73638	686
	Code Injection SNYK-JS-LODASH-1040724	681
	Use After Free SNYK-JS-NODESASS-541000	654
	Cross-site Scripting (XSS) npm:marked:20150520	654
	Out-of-Bounds SNYK-JS-NODESASS-535498	646
	NULL Pointer Dereference SNYK-JS-NODESASS-535502	646
	Resource Exhaustion SNYK-JS-NODESASS-535504	646
	Denial of Service (DoS) SNYK-JS-NODESASS-540978	646
	Denial of Service (DoS) SNYK-JS-NODESASS-540980	646
	Denial of Service (DoS) SNYK-JS-NODESASS-540982	646
	Out-of-bounds Read SNYK-JS-NODESASS-540990	646
	Out-of-Bounds SNYK-JS-NODESASS-540998	646
	Out-of-bounds Read SNYK-JS-NODESASS-541002	646
	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	646
	Arbitrary File Write SNYK-JS-TAR-1579147	639
	Prototype Pollution npm:lodash:20180130	636
	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	631
	Improper minification of non-boolean comparisons npm:uglify-js:20150824	629
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	624
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	624
	Arbitrary Code Execution npm:ejs:20161128	619
	Uncontrolled Recursion SNYK-JS-NODESASS-535503	600
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	589
	Uncontrolled Recursion SNYK-JS-NODESASS-540960	589
	Out-of-bounds Read SNYK-JS-NODESASS-540962	589
	Improper Input Validation SNYK-JS-NODESASS-540966	589
	Improper Input Validation SNYK-JS-NODESASS-540968	589
	Uncontrolled Recursion SNYK-JS-NODESASS-540970	589
	Out-of-bounds Read SNYK-JS-NODESASS-540972	589
	Out-of-bounds Read SNYK-JS-NODESASS-540986	589
	Denial of Service (DoS) SNYK-JS-NODESASS-540988	589
	Cross-site Scripting (XSS) npm:marked:20170112	589
	Cross-site Scripting (XSS) npm:marked:20170815	589
	Regular Expression Denial of Service (ReDoS) npm:marked:20170907	589
	Regular Expression Denial of Service (ReDoS) npm:minimatch:20160620	589
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	586
	Improper Control of Dynamically-Managed Code Resources SNYK-JS-EJS-6689533	586
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTMLMINIFIER-3091181	586
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	586
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342073	586
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342082	586
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	586
	Out-of-bounds Read SNYK-JS-NODESASS-535499	550
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	541
	Out-of-bounds Read SNYK-JS-NODESASS-540984	539
	NULL Pointer Dereference SNYK-JS-NODESASS-540994	539
	Out-of-bounds Read SNYK-JS-NODESASS-540958	536
	Uncontrolled Recursion SNYK-JS-NODESASS-540964	536
	NULL Pointer Dereference SNYK-JS-NODESASS-540992	536
	Arbitrary Code Injection SNYK-JS-EJS-1049328	526
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-584281	520
	Denial of Service (DoS) SNYK-JS-NODESASS-542662	509
	Cross-site Scripting (XSS) npm:ejs:20161130	509
	Denial of Service (DoS) npm:ejs:20161130-1	509
	Regular Expression Denial of Service (ReDoS) npm:clean-css:20180306	506
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-174116	479
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-451540	479
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	479
	Improper Certificate Validation SNYK-JS-NODESASS-1059081	479
	Improper Input Validation SNYK-JS-POSTCSS-5926692	479
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SCSSTOKENIZER-2339884	479
	Regular Expression Denial of Service (ReDoS) npm:uglify-js:20151024	479
	Cross-site Scripting (XSS) npm:marked:20170815-1	454
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	410
	Insecure use of /tmp folder npm:cli:20160615	354

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Arbitrary Code Injection
🦉 Improper Control of Dynamically-Managed Code Resources
🦉 More lessons are available in Snyk Learn