react-google-maps-api icon indicating copy to clipboard operation
react-google-maps-api copied to clipboard
verified publisher icon JustFly1984

[Snyk] Security upgrade stylelint from 14.14.1 to 15.10.1

Open JustFly1984 opened this issue 2 years ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • packages/react-google-maps-api-gatsby-example/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 768/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: stylelint The new version differs by 250 commits.
  • fb8cf35 15.10.1
  • eeed72b Prepare release (#7048)
  • 8090553 Document check of configs in release process (#7047)
  • 56a545e Security fix for `semver` vulnerability (#7043)
  • a42f955 Fix rules documentation for `media-query-no-invalid` (#7044)
  • e56aa30 15.10.0
  • c9e89eb Prepare release (#6974)
  • b8e5317 Fix `selector-type-case` performance (#7041)
  • f82a24a Fix `selector-anb-no-unmatchable` performance (#7042)
  • 16110fd Revert removed changelog entry (#7039)
  • 59d5bf9 Add support JS objects for extends config option (#6998)
  • 888192d Fix `patch-package` warning (#7036)
  • 74c90b3 Refactor `replaceBackslashes()` test utility to migrate to ESM (#7034)
  • 15c15b6 Refactor to use `sourceIndices` utility from `@ csstools/css-parser-algorithms` (#7033)
  • 3f91eaa Bump lint-staged from 13.2.2 to 13.2.3 (#7029)
  • 3948f47 Bump fast-glob from 3.2.12 to 3.3.0 (#7030)
  • 8bb207c Bump typescript from 5.1.3 to 5.1.6 (#7032)
  • fff5ee3 Bump eslint from 8.43.0 to 8.44.0 (#7031)
  • 5775ba0 Bump @ changesets/cli from 2.26.1 to 2.26.2 (#7028)
  • 21e7345 Fix `selector-type-no-unknown` performance (#7027)
  • cf73360 Fix `no-descending-specificity` performance (#7026)
  • b919a0b Refactor `lib/rules/__tests__/*` test files to migrate to ESM (#7024)
  • 366e0d8 Switch Jest `coverageProvider` from `babel` (default) to `v8` (#7025)
  • 1d145f9 Refactor `lib/utils/__tests__/*` test files to migrate to ESM (#7022)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

JustFly1984 avatar Jul 07 '23 00:07 JustFly1984