[Snyk] Security upgrade concurrently from 5.2.0 to 6.2.2

Open AasthaMehtaTech opened this issue 2 years ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: concurrently

The new version differs by 39 commits.

105445c 6.2.2
875d375 Fix linting
7263ffe Remove read-pkg
8bcdf7f ci: add missing parallel coverage reporting step
24e51ad Add coveralls badge to readme
b16585f ci: readd coveralls reporting
0bc490f 6.2.1
c295062 Stop reading from stdin after programmatic API finishes (#253)
07a7de1 Update links to new GH org and remove travis+appveyor (#285)
f574848 Fix link to substack blog post in README
fe5c01c Add GH actions workflow
10ff00c Correctly reexport flow controllers
becac73 6.2.0
d38ab32 Include `killed` boolean in command result (#250)
e8f0706 Make --restart-tries restart forever with negative value
aad79fa 6.1.0
ecf1c5b Change default text color to reset instead of gray.dim
70b92da Run npm audit fix
ccb6b8d 6.0.2
330cf92 Fix input handler when input contains a colon (#269)
7710c21 Update lodash package (#271)
e36e8c1 6.0.1
9fa0544 Fix cwd option not overwriting per command if specified in programmatic usage (#266)
343d1ab 6.0.0

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

Learn how to fix vulnerabilities with free interactive lessons:

Jun 22 '23 02:06 AasthaMehtaTech