wip
wip copied to clipboard
Published
20 hours ago •
bitjson
bitjson
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|
 |
Prototype Pollution SNYK-JS-MINIMIST-559764 |
Yes | Proof of Concept |
Commit messages
Package name: configstore
The new version differs by 9 commits.- fbb075d 3.1.0
- a4067fd Bump dependencies and switch to `make-dir`
- f48ba06 Add note about Electron
- 7ce00b4 3.0.0
- 66f605d Simplify the XDG config fallback
- 76fea84 Bump dependencies
- 383b09f Remove the deprecated `.del()` method
- 9ed0378 ES2015ify
- 9c62976 Bump minimum supported `node` version to `node@4`. (#49)
Package name: update-notifier
The new version differs by 22 commits.- d295cf3 2.0.0
- fda96b6 ES2015ify
- ac47d69 Improve readme
- f1de1bf Update dependencies
- 01fcd25 Bump minimum supported `node` version to `node@4`. (#102)
- e36671d 1.0.3
- d66245c Exit process on SIGINT (#98)
- 384e846 get tests passing on Travis CI with latest xo, etc (#97)
- b72bf7f 1.0.2
- c2a9565 Lazy load dependencies (#82)
- 38aa83a 1.0.1
- 32b5197 fix opts.defer check (#90)
- 58ed26e fix XO lint issues
- bc3ba72 docs: h3 -> h4 for options.boxenOpts (#87)
- aff41f7 docs: add align: 'center' to default boxenOpts (#86)
- b7bc767 1.0.0
- 98aa7bf Add options to customize the notification message (#83)
- d61bd9b feat: center-align message via [email protected] (#84)
- ff17da4 0.7.0
- 3cf4614 show message on sigint as well as exit (#75)
- b1f7dde feat: handle configstore error gracefully (#79)
- e9d4cab meta tweaks
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
📚 Read more about Snyk's upgrade and patch logic
