config-hyperterm
config-hyperterm copied to clipboard
Published
20 hours ago •
hemanth
hemanth
[Snyk] Security upgrade meow from 3.7.0 to 8.0.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: meow
The new version differs by 84 commits.- a1f5f0f 8.0.0
- 1b3d9ee Upgrade dependencies
- ef7ae5d Gracefully handle package.json not being found (#167)
- 49ce74d Make `isMultiple` non-greedy (#162)
- 14924de Default `isMultiple` to empty array (#163)
- dc7dae4 7.1.1
- 71d640e Fix compatibility with `vercel/ncc` (#159)
- ebe00a1 7.1.0
- e38789f Improve flags types to acknowledge `isMultiple` and `isRequired` options (#154)
- fa2a374 Fix typo
- 629af48 Update `minimist-options` and remove type coercion patch (#152)
- 1c251e8 Rename `yargs` to `parseArguments` (#149)
- 20f6e85 Rename `camelcase` to `camelCase` (#151)
- 1f265e4 7.0.1
- e08eb4d Fix `isMultiple` not handling multi-word flags (#150)
- e3301ed 7.0.0
- ea3fd99 Require Node.js 10
- 1eede6a Add `isRequired` flag option (#141)
- c4c5ee2 Add `isMultiple` option for flags (#143)
- d9d42a2 Document ES Modules usage (#147)
- 43e9f39 Fix Travis
- 3c23328 6.1.1
- f85b546 Update dependencies
- c67d9f4 Rename occurrences of minimist to parser (#146)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
New and updated dependency changes detected. Learn more about Socket for GitHub ↗︎
| Packages | Version | New capabilities | Transitives[^1] | Size | Publisher | |
|---|---|---|---|---|---|---|
| meow | 🆕 | 8.1.2 | None | +32 |
476 kB | sindresorhus |
| [^1]: https://docs.socket.dev |
![socket-security[bot] avatar](https://avatars.githubusercontent.com/in/156372?v=4 "Published by a pub.dev verified publisher"){kind=small}