cloudboost
cloudboost copied to clipboard
Published
20 hours ago •
CloudBoost
CloudBoost
[Snyk] Fix for 1 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- home-ui/package.json
- home-ui/package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
584/1000 Why? Has a fix available, CVSS 7.4 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: prerender-node
The new version differs by 43 commits.- be8d5a7 bump version to 2.2.0
- 22210a6 Merge pull request #88 from juresyahya/master
- eeb7a33 Add Whatsapp crawler bot for rich-linking
- dc0e95c Merge pull request #86 from nicolashenry/patch-2
- 8575776 compatible request version
- ad9267c bump version to 2.1.0
- 16444fc added user agent check for Applebot
- 877149f bump prerender-node to 2.0.2
- ad2c0ff remove console log in express3 integration test
- 02e63c5 make sure we pass through the request and prerender response to the afterRender function
- 3d0b64f bumped version to 2.0.1
- 5d22730 make sure we handle https URLs the same as before
- e354c9a Update `afterRender` method definition, with v2.0.0
- 3cb3956 Update `afterRender` method definition, with v2.0.0
- e66c3df Meant 2.0.0, not 3.0.0
- cf89fd1 Merge pull request #78 from prerender/respond-with-errors
- 10a9b88 add CHANGELOG
- 8bb2c00 stop swallowing errors if prerender service fails
- 0fdbae3 Merge pull request #77 from prerender/nock
- bb94b6c use nock to mock requests
- 04947cf Bumping version
- d5a7a52 Update README.md with note about express support
- 51f9b24 Merge pull request #76 from prerender/arunoda-no-express-deps
- 74e8fac resolved merge conflicts
Package name: request
The new version differs by 250 commits.- 02fc5b1 Update changelog
- de1ed5a 2.87.0
- a6741d4 Replace hawk dependency with a local implemenation (#2943)
- a7f0a36 2.86.1
- 8f2fd4d Update changelog
- 386c7d8 2.86.0
- 76a6e5b Merge pull request #2885 from ChALkeR/patch-1
- db76838 Merge branch 'patch-1' of github.com:ChALkeR/request
- fb7aeb3 Merge pull request #2942 from simov/fix-tests
- e47ce95 Add Node v10 build target explicitly
- 0c5db42 Skip status code 105 on Node > v10
- d555bd7 Generate server certificates for Node > v10
- 81f8cb5 Remove redundant code
- db17497 Use Buffer.from and Buffer.alloc in tests
- 0d29635 Merge pull request #2923 from gareth-robinson/cifixes
- 3745cec Correction for Windows OS identification
- 219a298 Alterations for failing CI tests
- bbb3a0b 2.85.1
- 21ef363 Update changelog
- 5dad86e 2.85.0
- 5ba8eb4 Revert "Update hawk to 7.0.7 (#2880)"
- b191514 2.84.1
- d77c839 Update changelog
- 4b46a13 2.84.0
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
