pawjs
pawjs copied to clipboard
Published
20 hours ago •
Atyantik
Atyantik
[Snyk] Security upgrade postcss-loader from 7.0.0 to 7.1.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 |
Uncaught Exception SNYK-JS-YAML-5458867 |
No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: postcss-loader
The new version differs by 38 commits.- b5c55fb chore(release): 7.1.0
- 8114be4 feat(deps): update `cosmiconfig` (#628)
- 054ee90 docs: fix default value of config (#626) (#627)
- f6e1cde chore(deps-dev): bump webpack from 5.75.0 to 5.76.0 (#625)
- d7070b2 chore: update dependencies to the latest version (#624)
- 5128bee ci: use LTS node version in lint job (#622)
- e1e5195 chore: update dependencies to the latest version (#621)
- e6b2282 ci: use concurrency in github workflows (#620)
- fa8ebf6 chore: update ignorePaths in .cspell.json (#619)
- 5999338 chore(deps): bump json5 from 1.0.1 to 1.0.2 (#618)
- bef937b chore: update dependency review action (#617)
- 2e7f227 chore: update dependencies to the latest version (#616)
- c3f6c57 chore: update dependencies to the latest version (#615)
- 2129116 chore(release): 7.0.2
- 955085f fix: support ESM version of `postcss.config.js` and `postcss.config.mjs` (#614)
- b0f4749 chore: update styfle/cancel-workflow-action (#612)
- ab3ff44 chore: add cSpell to check spelling issues (#610)
- 3177135 chore: update dependencies to the latest version (#609)
- 08b19c7 docs: update cla link (#608)
- 49a0943 ci: add node v19 (#607)
- d274f90 ci: add dependency review action (#606)
- 64af37b chore: update dependencies to the latest version (#605)
- 548e8aa chore: update commitlint action (#604)
- 42a085f chore: run cancel workflow on pull request (#603)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
