[Snyk] Upgrade @mui/icons-material from 5.10.9 to 5.18.0

[q1blue]

Snyk has created this PR to upgrade @mui/icons-material from 5.10.9 to 5.18.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 64 versions ahead of your current version.

• The recommended version was released 3 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LUXON-3225081	69	Proof of Concept
	Improper Handling of Exceptional Conditions SNYK-JS-OCTOKITWEBHOOKS-6129527	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	69	Proof of Concept
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	69	No Known Exploit
	Excessive Platform Resource Consumption within a Loop SNYK-JS-BRACES-6838727	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	69	Proof of Concept
	Denial of Service (DoS) SNYK-JS-SOCKETIOPARSER-5596892	69	No Known Exploit
	Improper Handling of Extra Parameters SNYK-JS-FOLLOWREDIRECTS-6141137	69	Proof of Concept
	Sandbox Bypass SNYK-JS-WEBPACK-3358798	69	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	69	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXYMIDDLEWARE-8229906	69	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	69	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	69	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	69	Proof of Concept
	Improper Check for Unusual or Exceptional Conditions SNYK-JS-HTTPPROXYMIDDLEWARE-9691389	69	No Known Exploit
	Prototype Pollution SNYK-JS-JSON5-3182856	69	Proof of Concept
	Improper Authentication SNYK-JS-JSONWEBTOKEN-3180022	69	No Known Exploit
	Improper Restriction of Security Token Assignment SNYK-JS-JSONWEBTOKEN-3180024	69	No Known Exploit
	Use of a Broken or Risky Cryptographic Algorithm SNYK-JS-JSONWEBTOKEN-3180026	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	69	No Known Exploit
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	69	No Known Exploit
	Improper Input Validation SNYK-JS-NANOID-8492085	69	No Known Exploit
	Improper Handling of Unexpected Data Type SNYK-JS-ONHEADERS-10773729	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	69	Proof of Concept
	Improper Input Validation SNYK-JS-POSTCSS-5926692	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELHELPERS-9397697	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELRUNTIMECOREJS3-9397696	69	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	69	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SIDEWAYFORMULA-3317169	69	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	69	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	69	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-3244450	69	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-WEBPACK-7840298	69	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	69	Proof of Concept
	Always-Incorrect Control Flow Implementation SNYK-JS-HTTPPROXYMIDDLEWARE-9691387	69	No Known Exploit
	Cross-site Scripting SNYK-JS-SEND-7926862	69	No Known Exploit
	Arbitrary Code Injection SNYK-JS-PRISMJS-9055448	69	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	69	Proof of Concept
	Prototype Pollution SNYK-JS-XML2JS-5414874	69	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	69	Proof of Concept
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	69	No Known Exploit

Release notes

Package name: @mui/icons-material

• 5.18.0 - 2025-07-08
  

  A big thanks to the 2 contributors who made this release possible.

  CSS layers make it easier to override styles by splitting a single style sheet into multiple layers.
  To learn more, check out the CSS layers documentation.

  @ mui/[email protected]

  • Backport CSS layers from v7 (#46320) @ siriwatknp

  @ mui/[email protected]

  • Backport CSS layers from v7 (#46320) @ siriwatknp

  Docs

  • Ease migration to v5 (#45991) @ oliviertassinari
  • Add AccordionSummary to the breaking change migration (@ siriwatknp) (#45972) @ siriwatknp

  All contributors of this release in alphabetical order: @ oliviertassinari, @ siriwatknp

• 5.17.1 - 2025-03-18
• 5.17.0 - 2025-03-18
• 5.16.14 - 2025-01-06
• 5.16.13 - 2024-12-25
• 5.16.12 - 2024-12-17
• 5.16.11 - 2024-12-11
• 5.16.10 - 2024-12-11
• 5.16.9 - 2024-12-04
• 5.16.8 - 2024-11-28
• 5.16.7 - 2024-08-09
• 5.16.6 - 2024-07-30
• 5.16.5 - 2024-07-25
• 5.16.4 - 2024-07-16
• 5.16.3 - 2024-07-16
• 5.16.2 - 2024-07-16
• 5.16.1 - 2024-07-11
• 5.16.0 - 2024-07-05
• 5.15.21 - 2024-06-28
• 5.15.20 - 2024-06-12
• 5.15.19 - 2024-05-29
• 5.15.18 - 2024-05-16
• 5.15.17 - 2024-05-08
• 5.15.16 - 2024-05-01
• 5.15.15 - 2024-04-04
• 5.15.14 - 2024-03-19
• 5.15.13 - 2024-03-13
• 5.15.12 - 2024-03-05
• 5.15.11 - 2024-02-24
• 5.15.10 - 2024-02-12
• 5.15.9 - 2024-02-08
• 5.15.8 - 2024-02-06
• 5.15.7 - 2024-01-31
• 5.15.6 - 2024-01-22
• 5.15.5 - 2024-01-17
• 5.15.4 - 2024-01-10
• 5.15.3 - 2024-01-03
• 5.15.2 - 2023-12-25
• 5.15.1 - 2023-12-19
• 5.15.0 - 2023-12-12
• 5.14.19 - 2023-11-29
• 5.14.18 - 2023-11-14
• 5.14.16 - 2023-10-31
• 5.14.15 - 2023-10-24
• 5.14.14 - 2023-10-17
• 5.14.13 - 2023-10-10
• 5.14.12 - 2023-10-04
• 5.14.11 - 2023-09-26
• 5.14.9 - 2023-09-13
• 5.14.8 - 2023-09-05
• 5.14.7 - 2023-08-29
• 5.14.6 - 2023-08-24
• 5.14.5 - 2024-01-17
• 5.14.3 - 2023-08-01
• 5.14.1 - 2023-07-19
• 5.14.0 - 2023-07-11
• 5.13.7 - 2023-07-04
• 5.11.16 - 2023-04-04
• 5.11.11 - 2023-02-28
• 5.11.9 - 2023-02-14
• 5.11.0 - 2022-12-13
• 5.10.16 - 2022-11-28
• 5.10.15 - 2022-11-22
• 5.10.14 - 2022-11-15
• 5.10.9 - 2022-10-11

from @mui/icons-material GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[changeset-bot]

⚠️ No Changeset found

Latest commit: 120c44f

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​@​djagger/​echartsx@​0.0.22
	npm/​@​docusaurus/​module-type-aliases@​2.1.0
	npm/​@​docusaurus/​preset-classic@​2.1.0
	npm/​@​docusaurus/​plugin-google-gtag@​2.1.0
	npm/​@​docusaurus/​plugin-client-redirects@​2.1.0
	npm/​@​docusaurus/​theme-search-algolia@​2.1.0
	npm/​@​docusaurus/​core@​2.1.0

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		npm/@babel/[email protected] has a Critical CVE. CVE: GHSA-67hx-6x53-jw92 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code (CRITICAL) Affected versions: < 7.23.2; >= 8.0.0-alpha.0 < 8.0.0-alpha.4 Patched version: 7.23.2 From: web/package-lock.json → npm/@docusaurus/[email protected] → npm/@docusaurus/[email protected] → npm/@docusaurus/[email protected] → npm/@babel/[email protected] ℹ Read more on: This package | This alert | What is a critical CVE? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected]. Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/@babel/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report