[Snyk] Fix for 2 vulnerable dependencies

[snyk-bot]

Description

This PR fixes one or more vulnerable packages in the maven dependencies of this project.
See the Snyk test report for more details.

Snyk Project: phax/ph-css:ph-csscompress-maven-plugin/pom.xml

Snyk Organization: phax

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • ph-csscompress-maven-plugin/pom.xml

Vulnerabilities that will be fixed

With an upgrade:

• ph-csscompress-maven-plugin/pom.xml
  • org.apache.maven:maven-plugin-api@3.0 > org.apache.maven:maven-plugin-api@3.5.0
    • Directory Traversal
    • Shell Command Injection
  • org.codehaus.plexus:plexus-utils@2.1 > org.codehaus.plexus:plexus-utils@3.0.24
    • Directory Traversal
    • Shell Command Injection

You can read more about Snyk's upgrade and patch logic in Snyk's documentation.

Check the changes in this PR to ensure they won't cause issues with your project.

Stay secure,
The Snyk team

[codecov-io]

Codecov Report

Merging #50 into master will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##             master      #50   +/-   ##
=========================================
  Coverage     68.18%   68.18%           
  Complexity     1531     1531           
=========================================
  Files           144      144           
  Lines          7085     7085           
  Branches        756      756           
=========================================
  Hits           4831     4831           
  Misses         1966     1966           
  Partials        288      288

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update dd51c27...8ad0cf9. Read the comment docs.