[Snyk] Security upgrade crypto-js from 4.1.1 to 4.2.0

[swirlds-automation]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Issue	Breaking Change	Exploit Maturity
	Use of Weak Hash SNYK-JS-CRYPTOJS-6028119	No	No Known Exploit

Commit messages

Package name: crypto-js

The new version differs by 23 commits.

• ac34a5a Merge branch 'release/4.2.0' into develop
• d5af3ae Update release notes.
• 9496e07 Bump version.
• 421dd53 Change default hash algorithm and iteration's for PBKDF2 to prevent weak security by using the default configuration.
• d1f4f4d Update grunt.
• 1da3dab Discontinued
• 4dcaa7a Merge pull request Update version of caniuse-lite #380 from Alanscut/dev
• 762feb2 chore: rename BF to Blowfish
• fb81418 feat: blowfish support
• c8a2312 Merge pull request 00370 get all node descriptions from REST api #379 from Alanscut/dev
• 09ee2ab feat: custom KDF hasher
• 0229694 Merge branch 'develop' of ssh://github.com/brix/crypto-js into develop
• df09288 Remove travis status, as travis is not used anymore.
• 6703e79 Merge pull request Improve Hbar Transfer graph when destinations are all 'fee collector accounts' #285 from paulmwatson/develop
• d50d964 No es default param.
• 4840268 Merge pull request 00276 show rewards in accountdetails #378 from Elity/develop
• f92ddc0 Merge pull request Use singleton node registry #377 from Alanscut/dev
• fe84967 fix: es-check error
• ca7384f test: add test case,using salt in the config
• dcc3848 fix:The "cfg.salt" parameter don't work
• ecfe2e4 Update dev dependencies.
• a4dac50 Merge branch 'release/4.1.1' into develop
• 71ad0bc Minor typo fix: varialbes => variables

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Use of Weak Hash

[github-actions]

Coverage Report

Status	Category	Percentage	Covered / Total
🔵	Lines	88.83%	31437 / 35392
🔵	Statements	88.83%	31437 / 35392
🔵	Functions	68.6%	782 / 1140
🔵	Branches	83.99%	3594 / 4279

File Coverage

No changed files found.

Generated in workflow #552

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

The version of Java (11.0.17) you have used to run this analysis is deprecated and we will stop accepting it soon. Please update to at least Java 17.
Read more here