node-nightly icon indicating copy to clipboard operation
node-nightly copied to clipboard

Published 20 hours ago verified publisher icon hemanth

[Snyk] Security upgrade is-online from 9.0.1 to 11.0.0

Open hemanth opened this issue 1 year ago • 1 comments

snyk-top-banner

Snyk has created this PR to fix 2 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • package.json
  • package-lock.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-HTTPCACHESEMANTICS-3248783		   586  
medium severity Open Redirect
SNYK-JS-GOT-2932019		   484  

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report 📜 Customise PR templates 🛠 Adjust project settings 📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Open Redirect 🦉 Regular Expression Denial of Service (ReDoS)

hemanth avatar Sep 07 '24 23:09 hemanth

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/[email protected] Transitive: network +41 908 kB sindresorhus

🚮 Removed packages: npm/[email protected])

View full report↗︎

socket-security[bot] avatar Sep 07 '24 23:09 socket-security[bot]