node-nicovideo-api
node-nicovideo-api copied to clipboard
hanakla
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|
 |
Prototype Pollution SNYK-JS-LODASH-567746 |
Yes | Proof of Concept |
Commit messages
Package name: cheerio
The new version differs by 56 commits.- c3ec1cd Release 0.20.0
- ef848ca Add coveralls badge, remove link to old report
- dbcbe90 Merge pull request #808 from leifhanack/lodash4
- c04ead1 Merge pull request #668 from rwaldin/prop-method
- b5531bb Merge pull request #671 from twolfson/dev/fallback.select.content.sqwished
- 9d98bd7 Merge pull request #704 from Rycochet/master
- 1b9c5c9 Merge pull request #797 from Delgan/641-appendTo_prependTo
- b12cbe8 Update lodash dependeny to 4.1.0
- 8c9b2e0 Merge pull request #796 from Delgan/fix_780
- b09db31 Fix PR #726 adding 'appendTo()' and 'prependTo()'
- ce8829d Added appendTo and prependTo with tests #641
- 4779762 Fix #780 by changing options context in '.find()'
- 8dc1cc9 Add an unit test checking the query of child
- b27bed6 fix #667: attr({foo: null}) removes attribute foo, like attr('foo', null)
- 70c5608 Include reference to dedicated "Loading" section
- fa70a84 Added load method to $
- 4e8483a update css-select to 1.2.0
- 5f2777a Merge pull request #732 from jugglinmike/reinstate-toarray
- 106e42a Merge pull request #776 from dYale/master
- 97149d3 Fixing Grammatical Error
- a1367ee Merge pull request #739 from TrySound/npm-files
- 6c73b7a Merge pull request #773 from JaKXz/patch-1
- 48bb22d Test against node v0.12 --> v4.2
- ec2414d Correct output in example
Package name: request-promise
The new version differs by 42 commits.- 21db39f Version 2.0.1
- faaef8e updated dev dependencies
- a847331 improved error output
- 2373d58 Merge pull request #94 from ratson/master
- 6b6f826 Update lodash to v4
- 7174f7b Version 2.0.0
- 9c454b5 feat: added node 5
- 05b6314 Merge pull request #75 from hildjj/cls-depend
- bf90827 As suggested in #70
- ea0fd0c fix: specific jshint version for node 0.10 build
- 791b920 Updated devDependencies
- dbdeaba Version 1.0.2 (see issue #70)
- 2552ed0 Corrected typos (issue #67)
- e2d8dfa Reverted continuation-local-storage as peer dependency
- ae5aa91 Version 1.0.1
- 16fd16f continuation-local-storage as peer dependency to fix npm warning
- 8823970 Documented missing braking change in v1.0.0
- ca35c5f Version 1.0.0
- ba7cf85 Adjusted test coverage measurement
- d91340f Added comments
- f31c36f Updated tests for examples
- d6b5e84 Documented manual steps
- f5201b0 Third part of fresh up
- ff7c73e Second part of fresh up
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
