some-comments
some-comments copied to clipboard
Published
20 hours ago •
fiddur
fiddur
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: knex
The new version differs by 250 commits.- eb136f1 Merge branch 'master' of https://github.com/tgriesser/knex
- 2072163 Update version in changelog (#3138)
- f28ae7a Merge branch 'master' of https://github.com/tgriesser/knex
- f757e36 Bump version to 0.16.4 (#3137)
- 18532b2 Bump version to 0.16.4
- 286d84b Prepare for 0.16.4-next3 release (#3136)
- 1948c3d Add boolean as a column name in join (#3121)
- fe6083e Support nullable timestamps on MySQL (#3100)
- b15ee3d make unionAll()'s call signature match union() (#3055)
- e7ed005 Fix queryContext not being passed to raw queries (#3111)
- 11fdc0c Add missing clearOrder & clearCounters types (#3109)
- 7ecbcd5 Update changelog and version number (#3108)
- 5fea86e Update dependencies (#3107)
- 19926d8 [#3033] fix: sqlite3 drop/renameColumn() breaks with postProcessResponse (#3040)
- 24fcf27 Fix transaction support for migrations (#3084)
- de1c934 Include 'string' as accepted Knex constructor type definition (#3105)
- 0aacab5 Fix for #2998 - Migrator & TypeScript (#3041)
- fcd21d9 Add command for executing tests on SQLite (#3101)
- 1da56a3 Update mssql dev dep to v5 stable (#3096)
- b9a648c Format code (#3088)
- 0db7859 add test that clearing offset (#2954)
- f3f0750 Make TS stubs modern (#3080)
- 68723e0 Update changelog (#3086)
- 1b39d67 Tests for drop-and-recreate with async/await (#3083)
Package name: request-promise
The new version differs by 25 commits.- ca35c5f Version 1.0.0
- ba7cf85 Adjusted test coverage measurement
- d91340f Added comments
- f31c36f Updated tests for examples
- d6b5e84 Documented manual steps
- f5201b0 Third part of fresh up
- ff7c73e Second part of fresh up
- 593f3b3 Reverted disallowing streaming
- f96e9f8 First part of fresh up
- 68777d8 Listed changes in upcoming version
- 3941033 Added experimental support for continuation local storage (see issue #64)
- d346752 Better error handling
- 8164fcc Removed unneeded import
- cd52b92 Wording
- 1a29d9b Returning headers in HEAD request (see issue #58)
- 841852d Reducing flakyness of tests
- aa5c881 Fixed Coveralls badge
- 3684a1f Introduced Coveralls
- b18872d Bugfix
- 220d505 Failed exposing now throws an error instead of just printing to the console
- dc74809 Disallowed streaming
- 3b489f7 Removed obsolete test
- a5336e9 Removed special handling of unhandled rejection - solves issue #43
- 485865d Added node 4
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
