RirikoAI
[Snyk] Fix for 2 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857 |
Yes | Proof of Concept |
|
703/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.2 |
Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116 |
No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: openai
The new version differs by 16 commits.- 3ec43ee Merge pull request #220 from openai/v4
- 31ddda8 v4.0.0
- 37de535 v4.0.0-beta.12
- 68ac889 v4.0.0-beta.11
- 05ff44f v4.0.0-beta.10
- 28276d6 v4.0.0-beta.9
- 61cd8e1 v4.0.0-beta.8
- 347a227 v4.0.0-beta.7
- 96e5b7f v4.0.0-beta.6
- 07b3504 v4.0.0-beta.5
- be1e275 v4.0.0-beta.4
- f35bbc5 v4.0.0-beta.3
- 492cc2e v4.0.0-beta.2
- e8b3cd3 v4.0.0-beta.1
- 9d818a1 v4.0.0-beta.0
- 206f871 cleanup
Package name: pino-pretty
The new version differs by 19 commits.- 1e38da2 Bumped v10.3.0
- 05e123b Update to latest help-me (#482)
- db27875 Update Readme.md. Fix commas. (#479)
- 6581192 Bump actions/setup-node from 3 to 4 (#476)
- 66cb1b1 Remove `config` from README programmatic options (#475)
- 41fdd31 v10.2.3
- 8ee55cc Manually require and export all util scripts
- 9fb7330 Bumped v10.2.2
- 0a64b2a fixup
- 602be25 Bumped v10.2.1
- 6f30140 Disable FinalizationRegistry if NODE_V8_COVERAGE is set (#464)
- dcb5e1b Bump actions/checkout from 3 to 4 (#461)
- 45475e6 Bump tsd from 0.28.1 to 0.29.0 (#454)
- b34e7c7 Refactor functions to use context object (#452)
- 23c3628 Improve jsdoc blocks
- f1e78b5 Fix coverage
- 38f873a Move utils tests to sibling files
- 0d67bfa Refactor utils into directory
- b4a1fb6 Add basic benchmark suite (#451)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| ririko-bot | ❌ Failed (Inspect) | Dec 14, 2023 4:15pm |
![vercel[bot] avatar](https://avatars.githubusercontent.com/in/8329?v=4 "Published by a pub.dev verified publisher"){kind=small}
Code Climate has analyzed commit 90e0bbd0 and detected 0 issues on this pull request.
View more on Code Climate.
![qlty-cloud-legacy[bot] avatar](https://avatars.githubusercontent.com/in/9403?v=4 "Published by a pub.dev verified publisher"){kind=small}