atom-beautify
atom-beautify copied to clipboard
Published
20 hours ago •
Glavin001
Glavin001
[Snyk] Security upgrade universal-analytics from 0.4.17 to 0.4.18
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
584/1000 Why? Has a fix available, CVSS 7.4 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852 |
No | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: universal-analytics
The new version differs by 11 commits.- 0846ead Version 0.4.18
- e676a15 Merge pull request #113 from pioug/package-lock
- 8ba84c9 Merge pull request #115 from atkit/master
- a39f75f Updated README.md about supported uid parameter that is used internally for User ID
- e0c9762 Install latest [email protected]
- 1a98a24 Regenerate package-lock.json
- e13640c Merge pull request #108 from XanderLuciano/documentation-update
- 63c5514 Merge pull request #109 from XanderLuciano/history-update
- 00c9317 Updated repo history for version 0.4.17
- 0e86f08 Typo Fix
- 47a55a0 Update README.md
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
