[Snyk] Security upgrade sanity from 3.16.4 to 3.20.0

[nicholasklem]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	758/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.3	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: sanity

The new version differs by 195 commits.

• b2cdefd v3.20.0
• ef4de9a fix(deps): upgrade @ sanity/client and @ sanity/presentation (#5219)
• 51190b0 fix(desk): change link to help article about the Desk - Structure rename (#5217)
• 80e243e fix(comments): feedback footer font size and copy (#5215)
• e3a39e6 fix(core): field actions hidden issue (#5212)
• d443e70 test(e2e): disable dataset creation per PR (#5210)
• f238440 feat(desk): rename Desk to Structure in public facing UI (#5181)
• 02736d5 feat: re-export `@ sanity/presentation` as `sanity/presentation` (#5200)
• f833f0e chore: add focus path debug tooling (#5190)
• 0c851c6 fix(deps): Update react monorepo (#5089)
• 9231b1a v3.19.3
• 1227102 refactor(core): improve navbar collapse menu (#5185)
• 8c674ac fix(deps): update dependency @ sanity/client to ^6.8.5 (#5169)
• fd05eba fix(portable-text-editor): selection validation and perf. improvement (#5136)
• 8aed3b1 chore(portable-text-editor): upgrade slate + remove workarounds (#5175)
• ebbef52 feat(core): support weighted `template`, `mode` intent parameters (#5157)
• 72ae08f feat(cli): adds information about projectId and datasets on import and export dataset commands (#5128)
• 533af73 fix(comments): improve scroll behavior (#5179)
• c4aec5d fix(core): disable pointer events when field actions are hidden (#5180)
• 7d9546c chore(deps): bump @ sanity/ui to latest (#5178)
• 86f8f9a fix(comments): addon dataset client api version (#5177)
• 3c7d79b feat(router): add support for tools to bypass search param scoping (#5172)
• d4d8a9f fix(router): improve search params encoding (#5173)
• 5709800 feat(core): make field actions keyboard accessible (#5163)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Improper Input Validation

[socket-security]

New and updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages	Version	New capabilities	Transitives	Size	Publisher
sanity	3.20.0	filesystem, shell, environment	+55	279 MB	bjoerge
@sanity/util	3.16.4...3.20.0	None	+0/-1	104 kB	bjoerge
@sanity/ui	1.7.3...1.9.3	None	+2/-2	6.21 MB	sanity-io