cloudboost icon indicating copy to clipboard operation
cloudboost copied to clipboard
verified publisher icon CloudBoost

[Snyk] Fix for 1 vulnerabilities

Open nawazdhandala opened this issue 3 years ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • data-service/package.json
    • data-service/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
low severity 461/1000
Why? Recently disclosed, Has a fix available, CVSS 3.5		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-DEBUG-3227433		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: axios The new version differs by 123 commits.
  • 5c8095e Releasing 0.16.1
  • 982183c Updating changelog
  • fa58223 Merge pull request #828 from mzabriskie/feature/return-last-request-in-redirects
  • a18f039 Merge pull request #829 from jcready/patch-3
  • df6b46c Add caret
  • 04982a2 Update follow-redirects dependency
  • 19644ba Adding documentation for Buffer data
  • 1883344 support node buffers less than 8192 bytes (#773)
  • bbfbeff Minor grammar/line length changes (#547)
  • a784774 Adding comment about header names (#778)
  • 88cc84c Adding documentation for response.request
  • 84d9a41 Adding code to assign the last request to axios response
  • e5beab0 Adding test checking the request in axios response is the last in a redirect
  • 08eb985 Merge pull request #818 from carlosromel/patch-1
  • 21b43ed Merge pull request #826 from mzabriskie/github-templates
  • 34b63f8 Adding additional instruction line
  • bb57daa Adding templates for issues and pull requests
  • 23c4dfc Update README.md
  • a8dab57 Merge pull request #741 from model3volution/Update/readme
  • 19b7948 Releasing 0.16.0
  • e6ffc52 Updating Upgrage Guide
  • 8d675bb Merge branch 'master' of github.com:mzabriskie/axios
  • 5b904d5 Updating changelog
  • efc1f11 Merge pull request #781 from TomyJaya/TomyJaya-patch-1

See the full diff

Package name: ioredis The new version differs by 129 commits.
  • 206b0ed docs(CHANGELOG): 4.0.0
  • e6bf95b 4.0.0
  • eb79e2d docs(README): mention duplicate keys in scan stream example (#681)
  • ca58249 feat: export Pipeline for inheritances enabling (#675)
  • d40a99e fix: port is ignored when path set to null
  • 5eb4198 feat: export ScanStream at package level (#667)
  • a57c2a8 docs: v4.0.0-3
  • 3746a2c 4.0.0-3
  • 6144c56 fix: resolve warning for Buffer() in Node.js 10
  • a28983d chore: package settings
  • e76c44f Merge branch 'fix-sentinel-warning'
  • 032e08b refactor: fix denque not working with es module
  • 3c7519c refactor: move connection_pool to TypeScript
  • 1397247 refactor: move more files to TypeScript
  • 4369295 test: fix tests for connectors
  • 072134f docs: remove io.js from description in readme and package.json (#663)
  • 0f42e45 fix filename on Linux
  • 92a6c67 fix several issues
  • 7bf6fea fix(Sentinel): unreachable errors when sentinals are healthy
  • 27b408e refactor: rewrite connectors with TypeScript
  • 24dabbe refactor: move from JavaScript to TypeScript (#659)
  • 92696d5 docs(API): add docs for maxRetriesPerRequest option
  • 33a49ee docs(Changelog): v4.0.0-2
  • a41f76a 4.0.0-2

See the full diff

Package name: socket.io-redis The new version differs by 13 commits.
  • ed83ba9 chore(release): 5.3.0
  • 7a19075 feat: add support for Redis Cluster
  • 597a8d1 chore: add docker-compose.yml file
  • 2500964 test: add Node.js 10, 12 and 13 in the test matrix
  • f257303 chore: add package-lock.json file
  • d6242d9 chore: bump debug to version 4.1.0 (#306)
  • a1cebc8 [chore] Bump ioredis to version 4.0.0 (#291)
  • 6d787fb [chore] Remove support for Node.js 4
  • 8fe4e03 [docs] Fix Cluster example in the README
  • e9cbe30 [docs] Fix Sentinel example in the README (#276)
  • 353870b [chore] Bump debug to version 3.1.0
  • 91fb8ed [docs] Add an example with Sentinel in the README
  • 5fe5dad [docs] Update README.md about requestsTimeout (#258)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

nawazdhandala avatar Jan 09 '23 16:01 nawazdhandala