MyGovBC-MSP
MyGovBC-MSP copied to clipboard
bcgov
Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.0.7 to 1.1.1. Changelog Sourced from eventsource's changelog. 1.1.1 Do not include authorization and cookie headers on redirect to different origin (#273 Espen Hovlandsdal) 1.1.0 Improve performance...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [async](https://github.com/caolan/async) from 2.6.2 to 2.6.4. Changelog Sourced from async's changelog. v2.6.4 Fix potential prototype pollution exploit (#1828) v2.6.3 Updated lodash to squelch a security warning (#1675) Commits c6bdaca Version...
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.  #### Changes included in this PR - Changes to...
Bumps [karma](https://github.com/karma-runner/karma) from 5.2.3 to 6.3.16. Release notes Sourced from karma's releases. v6.3.16 6.3.16 (2022-02-10) Bug Fixes security: mitigate the "Open Redirect Vulnerability" (ff7edbb) v6.3.15 6.3.15 (2022-02-05) Bug Fixes helper:...
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.7 to 1.5.10. Commits 8cd4c6c 1.5.10 ce7a01f [fix] Improve handling of empty port 0071490 [doc] Update JSDoc comment a7044e3 [minor] Use more descriptive variable name d547792 [security]...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.7.0 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...
Bumps [log4js](https://github.com/log4js-node/log4js-node) from 6.3.0 to 6.4.0. Changelog Sourced from log4js's changelog. 6.4.0 security: default file permission to be 0o600 instead of 0o644 - thanks ranjit-git and @peteriman chore(docs): updated fileSync.md...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 1.3.1 to 1.3.4. Commits ebdf849 1.3.4 ac57872 move all allocUnsafes to allocs for easier maintenance c64c950 1.3.3 0598ba1 fix .. in encodingLength 010aedb 1.3.2 0d0d593 backport encodingLength...