zkAuth
zkAuth copied to clipboard
Published
1 month ago
•
3lLobo
3lLobo
[Snyk] Security upgrade solidity-coverage from 0.8.2 to 0.8.5
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- backend/package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7 |
Regular Expression Denial of Service (ReDoS) npm:debug:20170905 |
No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: solidity-coverage
The new version differs by 14 commits.- bfe149c 0.8.5
- 34beea7 Update contributor list (#812)
- 255d700 Add dependabot config (#759)
- 70a5084 Add a package description to package.json (#775)
- c680e54 change `.solcoverjs` occurencies to `.solcover.js` (#777)
- dea15cd Remove all mentions to buidler (#778)
- b56f209 Update HH dev dep & fix Zeppelin E2E test (#811)
- d5c134b Update mocha version to 10.2.0, fix deprecated debug package (#810)
- 1d69897 Update changelog: 0.8.4
- 4da00a8 0.8.4
- 2b20b1a Update solidity-parser to 0.16.0 (#802)
- 89882a2 0.8.3
- 5aee556 Merge branch 'master' of https://github.com/sc-forks/solidity-coverage
- e1416d9 Prepare for next hardhat version (#796)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
