react-molin
react-molin copied to clipboard
Published
20 hours ago •
Molin123
Molin123
[Snyk] Security upgrade antd-mobile from 1.7.2 to 2.0.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: antd-mobile
The new version differs by 250 commits.- b22c38c bump 2.0.0
- 3dd765d up changelog
- 3db977f chore: update app to 2.0
- b6f1bee chore: up analysis
- 5031c54 bump rc.4
- 3ec2093 chore: update site.
- d4a494e update input-item controlled mode.
- 8b50709 chore: up snapshots
- 31b0142 add am-button-borderfix support
- d471b32 chore: add site-cdn to deploy.
- 466442c [email protected]
- 87e8ce3 chore: update snap.
- 8921989 chore: update docs.
- 26aa9f0 update tabbar style, demo.
- 8deb2ec tests: update snapshot
- 03dd93b refactor: rn switch, update ts
- 875dcef style: fix prop name for notice-bar
- ca13a09 chore: update modal ts and docs
- 96faca1 chore: update site.
- 0dde170 up snap, bump rc.3
- 81486ff chore: update site.
- db8c9cd bump version.
- f1db4f5 feat(SearchBar): replace autoFocus, focused with instance.focus() (#1963)
- 5fb694e chore: update doc.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
