data-point
data-point copied to clipboard
Published
20 hours ago β’
ViacomInc
ViacomInc
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- packages/data-point/package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|
 |
Prototype Pollution SNYK-JS-AJV-584908 |
Yes | No Known Exploit |
Commit messages
Package name: ajv
The new version differs by 250 commits.- 521c3a5 6.12.3
- bd7107b Merge pull request #1229 from ajv-validator/dependabot/npm_and_yarn/mocha-8.0.1
- 9c26bb2 Merge pull request #1234 from ajv-validator/dependabot/npm_and_yarn/eslint-7.3.1
- c6a6daa Merge branch 'master' into dependabot/npm_and_yarn/mocha-8.0.1
- 15eda23 Merge branch 'master' into dependabot/npm_and_yarn/eslint-7.3.1
- d6aabb8 test: remove node 8 from travis test
- c4801ca Merge pull request #1242 from ajv-validator/refactor
- 988982d ignore proto properties
- f2b1e3d whitespace
- 65e3678 Merge pull request #1239 from GrahamLea/patch-1
- 68d72c4 update regex
- 9c009a9 validate numbers in multipleOf
- 332b30d Merge pull request #1241 from ajv-validator/refactor
- 1105fd5 ignore proto properties
- 65b2f7d validate numbers in schemas during schema compilation
- 24d4f8f remove code post-processing
- fd64fb4 Add link to CSP section in Security section
- 0e2c346 Add Contents link to CSP section
- c581ff3 Clarify limitations of ajv-pack in README
- 0006f34 Document pre-compiled schemas for CSP in README
- 140cfa6 Merge pull request #1238 from cvlab/patch-1
- e7f0c81 Fix mistype in README.md
- 54c96b0 Bump eslint from 6.8.0 to 7.3.1
- 854dbef Bump mocha from 7.2.0 to 8.0.1
Package name: request
The new version differs by 44 commits.- 6420240 2.88.0
- bd22e21 fix: massive dependency upgrade, fixes all production vulnerabilities
- 925849a Merge pull request #2996 from kwonoj/fix-uuid
- 7b68551 fix(uuid): import versioned uuid
- 5797963 Merge pull request #2994 from dlecocq/oauth-sign-0.9.0
- 628ff5e Update to oauth-sign 0.9.0
- 10987ef Merge pull request #2993 from simov/fix-header-tests
- cd848af These are not going to fail if there is a server listening on those ports
- a92e138 #515, #2894 Strip port suffix from Host header if the protocol is known. (#2904)
- 45ffc4b Improve AWS SigV4 support. (#2791)
- a121270 Merge pull request #2977 from simov/update-cert
- bd16414 Update test certificates
- 536f0e7 2.87.1
- 02fc5b1 Update changelog
- de1ed5a 2.87.0
- a6741d4 Replace hawk dependency with a local implemenation (#2943)
- a7f0a36 2.86.1
- 8f2fd4d Update changelog
- 386c7d8 2.86.0
- 76a6e5b Merge pull request #2885 from ChALkeR/patch-1
- db76838 Merge branch 'patch-1' of github.com:ChALkeR/request
- fb7aeb3 Merge pull request #2942 from simov/fix-tests
- e47ce95 Add Node v10 build target explicitly
- 0c5db42 Skip status code 105 on Node > v10
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Read more about Snyk's upgrade and patch logic
Codecov Report
Merging #462 into master will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## master #462 +/- ##
=========================================
Coverage 100.00% 100.00%
=========================================
Files 139 139
Lines 1978 1978
Branches 197 197
=========================================
Hits 1978 1978
Continue to review full report at Codecov.
Legend - Click here to learn more
Ξ = absolute <relative> (impact),ΓΈ = not affected,? = missing dataPowered by Codecov. Last update 44f4ca8...046a715. Read the comment docs.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}