node-jeanne
node-jeanne copied to clipboard
TinyMan
[Snyk] Fix for 1 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
⚠️ Warning
Failed to update the package-lock.json, please update manually before merging.
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: debug
The new version differs by 45 commits.- f073e05 Release 3.1.0
- 2c0df9b rename `DEBUG_HIDE_TTY_DATE` to `DEBUG_HIDE_DATE`
- dcb37b2 Merge branch '2.x'
- 56a3853 Add `DEBUG_HIDE_TTY_DATE` env var (#486)
- 13abeae Release 2.6.9
- f53962e remove ReDoS regexp in %o formatter (#504)
- bdb7e01 remove "component" from package.json
- c38a016 remove ReDoS regexp in %o formatter (#504)
- 47747f3 remove `component.json`
- a0601e5 fix
- e7e568a ignore package-lock.json
- fdfa0f5 Fix browser detection
- 7cd9e53 examples: fix colors printout
- 8d76196 Merge pull request #496 from EdwardBetts/spelling
- daf1a7c correct spelling mistake
- 3e1849d Release 3.0.1
- b3ea123 Disable colors in Edge and Internet Explorer (#489)
- 13e1d06 remove v3 discussion note for now
- 52b894c Release 3.0.0
- d2dd80a component: update "ms" to v2.0.0
- 6752953 fix browser test 😵
- f6f6213 remove `make coveralls` from travis
- f178d86 attempt to separate the Node and Browser tests in Travis
- d73c4ae fix `make test`
Package name: jamy
The new version differs by 29 commits.- 71a098a 0.3.0
- 603d10c chore(package): update @ types/node to version 10.12.12 (#23)
- 4b5d5b4 chore: update dependencies
- 2402afc chore(ci): add node 11 to target ci build
- 10689d5 chore(package): update eslint to version 5.0.1 (#22)
- cdae191 Update debug to the latest version 🚀 (#19)
- 361e812 [Snyk] Fix for 8 vulnerable dependencies (#21)
- 2a52d02 Merge pull request #15 from TinyMan/greenkeeper/update-to-node-10
- be4b459 Update to node 10 in .travis.yml
- ad940b2 Merge pull request #13 from TinyMan/greenkeeper/@ types/node-10.0.3
- 5aea4a4 chore(package): update lockfile
- 9f880c0 chore(package): update @ types/node to version 10.0.3
- acffac3 Merge pull request #11 from TinyMan/greenkeeper/rewire-4.0.0
- 6694b88 chore(package): update lockfile
- 4817e66 chore(package): update rewire to version 4.0.0
- d559ea8 Merge pull request #9 from TinyMan/greenkeeper/@ types/node-9.3.0
- 9aaff93 chore(package): update lockfile
- 75e338d chore(package): update @ types/node to version 9.3.0
- 4546ce1 Merge pull request #6 from TinyMan/greenkeeper/codecov-3.0.0
- 384a162 Merge pull request #7 from TinyMan/greenkeeper/rewire-3.0.0
- a7fc0f1 Revert "chore(package): update mocha to version 4.0.1"
- 570a4be Travis build
- 5eaad23 chore(package): update rewire to version 3.0.0
- a5bca64 chore(package): update codecov to version 3.0.0
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
