spotify-api-graphql-console
spotify-api-graphql-console copied to clipboard
Published
20 hours ago •
charlypoly
charlypoly
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 |
Prototype Pollution SNYK-JS-ASYNC-2441827 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: source-map-loader
The new version differs by 25 commits.- e0ec5d9 chore(release): 1.0.0
- 87fa9ae refactor: remove whatwg-encoding (#115)
- 4d043f0 docs: ignore example
- 1ccc708 test: coverage (#111)
- 73773e2 test: validate options (#110)
- 0d77b18 refactor: code
- 2ceba27 test: code (#108)
- 1e785a1 fix: use webpack fs (#105)
- 01b3812 refactor: code (#104)
- 4c39c22 fix: perf and crashing (#101)
- b64f7d8 fix: absolute path for sources and add sources in dependendencies
- c18d1f9 feat: indexed-sourcemap
- 526c229 test: refactor (#97)
- 7f769aa fix: avoid crash on big data URL source maps
- 2da2b2e chore(defaults): update (#95)
- 8433ed3 chore(release): 0.2.4
- 8262587 fix(package): 5 low severity vulnerabilities (#72)
- 637fde1 chore(package): remove unused `source-map` dependency (`dependencies`) (#71)
- e2fdbfd fix(index): resolve source maps with root-relative paths correctly (#68)
- 78ad469 fix(index): handle exception on loading invalid source maps (#67)
- a0b84d4 docs(README): typo fix (#64)
- 7843bb3 refactor(package): updates dependencies to fix CVE-2015-8315 (#62)
- 4f3833b docs(CHANGELOG): updates for `v0.2.3`
- 420e866 chore(release): 0.2.3
Package name: webpack
The new version differs by 250 commits.- 213226e 4.0.0
- fde0183 Merge pull request #6081 from webpack/formating/prettier
- b6396e7 update stats
- f32bd41 fix linting
- 5238159 run prettier on existing code
- 518d1e0 replace js-beautify with prettier
- 4c25bfb 4.0.0-beta.3
- dd93716 Merge pull request #6296 from shellscape/fix/hmr-before-node-stuff
- 7a07901 Merge pull request #6563 from webpack/performance/assign-depth
- c7eb895 Merge pull request #6452 from webpack/update_acorn
- 9179980 Merge pull request #6551 from nveenjain/fix/templatemd
- e52f323 optimize performance of assignDepth
- 6bf5df5 Fixed template.md
- 90ab23a Merge branch 'master' into fix/hmr-before-node-stuff
- b0949cb add integration test for spread operator
- 39438c7 unittest now also walks the ast
- 15ab027 Merge pull request #6536 from jevan0307/sideEffects-selectors
- 1611ce1 Merge pull request #6561 from joshunger/patch-1
- 6e175bc Merge pull request #6549 from webpack/md4_hash
- 0637531 Add a hyperlink to create a new issue
- 0e1f9c6 Merge pull request #6554 from webpack/deps/end-of-beta
- 72477f4 upgrade versions to stable versions
- ed30285 Merge pull request #6546 from webpack/bot/review-permission
- 40ee8c7 Use MD4 for hashing
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
