demo-course-platform
demo-course-platform copied to clipboard
sanity-io
[Snyk] Security upgrade sanity from 3.41.1 to 3.62.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
666/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.9 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106 |
No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: sanity
The new version differs by 250 commits.- f352db8 v3.62.0
- 9c72c74 fix: warnings on React 19 (#7654)
- 5452e3d fix(deps): update dependency @ sanity/ui to ^2.8.10 (#7652)
- b6df802 fix(deps): update dependency @ sanity/ui to ^2.8.10 (#7653)
- 6c1d4c8 chore(deps): update dependency @ sanity/visual-editing to v2.2.2 (#7651)
- 4298fe0 fix(core): inherit readOnly state from ancestors in copyPaste function (#7643)
- c9b574d fix(deps): update dependency @ sanity/mutate to ^0.10.1 (#7650)
- 65d7e7e fix(deps): Update dev-non-major (#7649)
- 2bc49be fix(deps): update dependency @ sanity/presentation to v1.17.3 (#7648)
- 07c48a0 fix(deps): update dependency @ portabletext/editor to ^1.1.5 (#7638)
- 93a1114 fix(deps): update dependency @ sanity/presentation to v1.17.2 (#7647)
- 5a8965e fix(deps): Update dev-non-major (#7646)
- 3698fd3 fix(deps): update dependency @ sanity/presentation to v1.17.1 (#7645)
- 816067e chore(deps): update dependency @ sanity/preview-url-secret to v2 (#7641)
- 4973abc fix(deps): update dependency @ sanity/presentation to v1.17.0 (#7640)
- 97f1db0 fix(deps): Update dev-non-major (#7639)
- a4bd01d chore(cli): update help copy for deploy command (#7624)
- f1f21fd chore(test-studio): add asset types to structure navigation (#7631)
- 01d0313 chore(deps): update dependency sanity-diff-patch to v4 (#7630)
- a9525c8 feat: validate PR title against conventional commits (#7580)
- ede88ac chore(deps): update dependency @ sanity/tsdoc to v1.0.113 (#7627)
- 2e150f1 fix(deps): update dependency @ sanity/client to ^6.22.2 (#7625)
- 7f2c1ce chore(deps): update typescript-tooling (#7605)
- 02da757 fix: restore support for defaultOrdering. (#7626)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
๐ง View latest project report
๐ Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
๐ฆ Regular Expression Denial of Service (ReDoS)
The latest updates on your projects. Learn more about Vercel for Git โ๏ธ
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| demo-course-platform | โ Ready (Inspect) | Visit Preview | ๐ฌ Add feedback | Oct 22, 2024 6:36pm |
| demo-course-platform-studio | โ Ready (Inspect) | Visit Preview | ๐ฌ Add feedback | Oct 22, 2024 6:36pm |
![vercel[bot] avatar](https://avatars.githubusercontent.com/in/8329?v=4 "Published by a pub.dev verified publisher"){kind=small}
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
| Package | New capabilities | Transitives | Size | Publisher |
|---|---|---|---|---|
| npm/[email protected] | Transitive: environment, filesystem, network, unsafe | +184 |
118 MB | bjoerge |
๐ฎ Removed packages: npm/[email protected]
![socket-security[bot] avatar](https://avatars.githubusercontent.com/in/156372?v=4 "Published by a pub.dev verified publisher"){kind=small}
