plugnplay
plugnplay copied to clipboard

Published 20 hours ago •

Reame
Issues

[Snyk] Fix for 1 vulnerabilities

Open e0ipso opened this issue 1 year ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: glob

The new version differs by 116 commits.

a68703e 9.0.0
58159ca test: cwd can be a url
a547a9c more docs
42a3ac7 link to bash manual for Pattern Matching
474172d update readme with cwd URL support
ad3904d update readme with posix class support
b22fc7d [email protected]
cdd1627 update all the things, remove unused mkdirp types
75c6416 Merge branch 'v9'
fa0cd77 cwd can be a file:// url
d03ed0a typedoc github action
9a5a45a put bench results in readme
20b2f88 docs, fix benchmark script
4829c88 upgrade ci actions
5cbacdd [email protected]
210310b omit symlinks on windows
d34c8d5 full test coverage, clean up signals and remove extranous code
5f21b46 adding lots of tests, clean up types
b12e6ba slashes on nodir test
75f74b0 more windows test slashes
3aa1abd more windows test affordances
3e68a7b some windows test affordances
8c2e082 feature complete and tests passing
c3be35a correct ** vs ./** behavior

See the full diff

Package name: rimraf

The new version differs by 40 commits.

3b6b098 4.0.0
e0cffea ci: reduce workload even more
0e6646d ci: remove unnecessary lint filter
546e017 update action versions
6d88a65 tone down benchmark intensity
842a8d2 fix benchmark workflow yaml
1b91697 chore: add copyright year to license
08bbb06 rewrite in TS, export hybrid, update changelog, docs
1b3f46e drop support for node versions below 14
2e1f003 gh actions workflow for benchmarks
52f9370 tests for retry-busy behavior
188e3ed don't test on very old node versions
d1d5495 test for fix-eperm
e7501cd prettier formatting
40f64ec windows: only fall back to move-remove when absolutely necessary
b6f7819 update tap
99496cd test: run posix test on windows, why not?
51d43c1 benchmarks
6b8aa29 doc: correct os.tmp default
4b228c9 do not ever actually try to rmdir /
2442655 consolidate all the spellings of 'opt' into one
d4eec2e add cli script
0c82d74 accept strings, arrays of strings, and no other types
ad4f2db Do not rimraf /, override with preserveRoot:false

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Nov 30 '23 14:11 e0ipso