meanstackjs
meanstackjs copied to clipboard
Published
20 hours ago β’
greenpioneersolutions
greenpioneersolutions
[Snyk] Security upgrade jquery from 3.3.1 to 3.5.0
Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.
β¨What is Merge Advice?
We check thousands of dependency upgrade pull requests and CI tests every day to see which upgrades were successfully merged. After crunching this data, we give a recommendation on how safe we think the change is for you to merge without causing issues. Learn more, and share your feedback to help improve this feature. πChanges included in this PR
-
Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- yarn.lock
-
Adding or updating a Snyk policy (.snyk) file; this file is required in order to apply Snyk vulnerability patches. Find out more.
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|
 |
Cross-site Scripting (XSS) SNYK-JS-JQUERY-567880 |
No | No Known Exploit |
With a Snyk patch:
| Severity | Issue | Exploit Maturity |
|---|---|---|
|
Prototype Pollution SNYK-JS-LODASH-567746 |
Proof of Concept |
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Read more about Snyk's upgrade and patch logic
