playground-for-web icon indicating copy to clipboard operation
playground-for-web copied to clipboard

Published 20 hours ago verified publisher icon appwrite

[Snyk] Upgrade express from 4.18.1 to 4.19.2

Open eldadfux opened this issue 5 months ago • 0 comments

snyk-top-banner

Snyk has created this PR to upgrade express from 4.18.1 to 4.19.2.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 5 versions ahead of your current version.

  • The recommended version was released on 6 months ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Cross-site Request Forgery (CSRF)
SNYK-JS-AXIOS-6032459		 676 Proof of Concept
high severity Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137		 676 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-AXIOS-6124857		 676 Proof of Concept
medium severity Open Redirect
SNYK-JS-EXPRESS-6474509		 676 No Known Exploit
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-6444610		 676 Proof of Concept
Release notes
Package name: express from express GitHub release notes

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

eldadfux avatar Sep 17 '24 09:09 eldadfux