cloudboost
cloudboost copied to clipboard
CloudBoost
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- data-service/sdk/package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: axios
The new version differs by 123 commits.- 5c8095e Releasing 0.16.1
- 982183c Updating changelog
- fa58223 Merge pull request #828 from mzabriskie/feature/return-last-request-in-redirects
- a18f039 Merge pull request #829 from jcready/patch-3
- df6b46c Add caret
- 04982a2 Update follow-redirects dependency
- 19644ba Adding documentation for Buffer data
- 1883344 support node buffers less than 8192 bytes (#773)
- bbfbeff Minor grammar/line length changes (#547)
- a784774 Adding comment about header names (#778)
- 88cc84c Adding documentation for response.request
- 84d9a41 Adding code to assign the last request to axios response
- e5beab0 Adding test checking the request in axios response is the last in a redirect
- 08eb985 Merge pull request #818 from carlosromel/patch-1
- 21b43ed Merge pull request #826 from mzabriskie/github-templates
- 34b63f8 Adding additional instruction line
- bb57daa Adding templates for issues and pull requests
- 23c4dfc Update README.md
- a8dab57 Merge pull request #741 from model3volution/Update/readme
- 19b7948 Releasing 0.16.0
- e6ffc52 Updating Upgrage Guide
- 8d675bb Merge branch 'master' of github.com:mzabriskie/axios
- 5b904d5 Updating changelog
- efc1f11 Merge pull request #781 from TomyJaya/TomyJaya-patch-1
Package name: socket.io-client
The new version differs by 44 commits.- 3eb047f [chore] Release 2.1.0
- afb952d [docs] Add a note about reconnecting after a server-side disconnection
- 74893d5 [feat] Add a 'binary' flag (#1194)
- 9701611 [chore] Bump engine.io-client to version 3.2.0 (#1192)
- 3d8f24e [test] Update travis configuration
- e27f38b [chore] Restore unminified distribution files (#1191)
- bb743c4 [docs] Document connected and disconnected socket properties (#1155)
- f31837f [chore] Bump debug to version 3.1.0
- ebb0596 [chore] Release 2.0.4
- 57cee21 [test] Remove IE6 and IE7 tests (#1164)
- c58ecfc [docs] Add code examples for registered events (#1139)
- e9ebe36 [docs] Add an example with ES6 import in the README (#1138)
- 19f2b19 [chore] Release 2.0.3
- 83fedf5 [docs] Add explicit documentation for websocket transport (#1128)
- c0da119 [docs] Update documentation (#1124)
- c3c0270 [chore] Release 2.0.2
- d864486 [chore] Bump debug to version 2.6.8 (#1123)
- 214a57f [test] Launch browser tests on localhost by default (#1122)
- 8091591 [fix] Do not update the opts.query reference (#1121)
- 4f71bd2 [chore] Release 2.0.1
- d30914d [chore] Release 2.0.0
- 9e7b543 [chore] Bump engine.io to version 3.1.0 (#1109)
- 442587e [chore] Bump dev dependencies (#1108)
- ff4cb3e [feat] Move binary detection to the parser (#1103)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
