lighthouse4u icon indicating copy to clipboard operation
lighthouse4u copied to clipboard

Published 20 hours ago verified publisher icon godaddy

[Snyk] Security upgrade lighthouse from 9.6.8 to 10.0.0

Open rmarkins-godaddy opened this issue 4 months ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
medium severity Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		 Yes Proof of Concept
Commit messages
Package name: lighthouse The new version differs by 250 commits.
  • 2eb8f34 v10.0.0 (#14594)
  • 836271a core(lr): disable bf-cache (#14774)
  • 106a963 misc(build): shim unneeded deps in lr report generator (#14773)
  • 9107521 tests(e2e): seek translated view trace button (#14772)
  • 89d9fb5 core: disconnect Puppeteer when started by Lighthouse (#14770)
  • efacda0 i18n: import strings (#14768)
  • d890413 misc: allow multiple nightlies to be published in a day (#14767)
  • 017ad4e core(config): prevent custom gatherer interference (#14756)
  • de6b53a core: rename preload-lcp-image to prioritize-lcp-image (#14761)
  • 0b8c63d report: fix sticky table header in DevTools (#14766)
  • e6e8f5a docs: update custom gatherer recipe for 10.0 (#14765)
  • c456c2c docs: reintroduce changes to flows for 10.0 (#14710)
  • 93bab90 docs(user-flows): use new api location (#14533)
  • e91cacb docs: update docs/readme.md for 10.0 (#14457)
  • bfc9dcb docs(recipes): update custom-gatherer-puppeteer to use FR (#13940)
  • 8b4b44f docs(plugins): update to reflect changes in 10.0 (#14322)
  • 32c0604 docs(config): update to reflect changes in FR (#14324)
  • 67c8b1a docs(puppeteer): update to reflect FR changes (#14319)
  • 8b92753 docs: update puppeteer auth example for 10.0 (#14195)
  • 0451601 core: use main-frame LCP trace element (#14760)
  • 8a1e84f core(full-page-screenshot): get screenshot, nodes concurrently (#14763)
  • c34973b core(audit): add options param to make{Table,Opportunity}Details (#14753)
  • 69e62cf misc(lint): enable no-conditional-assignment rule (#14757)
  • 74ead2a tests(metrics-tricky-tti): disable for M112 (#14762)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

rmarkins-godaddy avatar Mar 12 '24 18:03 rmarkins-godaddy