[Snyk] Security upgrade oidc-client from 1.10.1 to 1.11.1

[alfxp]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • src/ClassifiedAds.UIs/angular/package.json
  • src/ClassifiedAds.UIs/angular/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	716/1000 Why? Recently disclosed, Has a fix available, CVSS 8.6	Use of Weak Hash SNYK-JS-CRYPTOJS-6028119	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: oidc-client

The new version differs by 91 commits.

• 9e28f3b 1.11.1 build
• ae7aa27 Merge pull request #1286 from wollardj/fix/fix-types
• 8d2106d Merge branch 'dev' of https://github.com/IdentityModel/oidc-client-js into dev
• 87f21c6 Merge pull request #1068 from dopry/feat/1067/merge-settings
• ffed9a5 resolve leaked promise #726
• 2fea102 deps updates
• d5cf30a update jsrsasign
• da25a95 update dep
• 6b5020c fix: remove getEpochTime from OidcClientSettings
• 65d15e4 1.11.0
• 202a057 Merge pull request #1223 from paulmowat/fix/postMessageUrlCheck
• f0c08c5 Merge pull request #1240 from AlexanderBaggett/bug/iframe-size
• 7b16f46 add merge claims (with default to false) to deal with merging objects from user info #861
• 938f5bb Merge pull request #1165 from IdentityModel/dependabot/npm_and_yarn/elliptic-6.5.3
• ecf04b2 Merge pull request #1166 from IdentityModel/dependabot/npm_and_yarn/samples/Angular/App/elliptic-6.5.3
• da9b8b1 Merge pull request #1192 from IdentityModel/dependabot/npm_and_yarn/samples/Angular/App/http-proxy-1.18.1
• 73f1563 Merge pull request #1265 from IdentityModel/dependabot/npm_and_yarn/ini-1.3.7
• 0a00b3c fix basic auth PR to keep params in post boady and also pass basic auth on refresh token renewal
• deed90c Merge pull request #1060 from waldo2188/dev
• 058ab22 Merge pull request #1189 from Daniel-Khodabakhsh/fix-UserManager.signoutCallback-typing
• 4f46fcb Merge pull request #1229 from pmcb55/feat/1217/add-refresh-token-to-signinresponse
• a19cafb Merge pull request #1272 from coolhome/patch-2
• 12425e8 Merge pull request #1260 from tonyliving/dev
• f8fe981 Add MetadataService.resetSigningKeys() type

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Use of Weak Hash