cryptocheck [Snyk] Security upgrade request from 2.81.0 to 2.88.0

[Snyk] Security upgrade request from 2.81.0 to 2.88.0

Open snyk-bot opened this issue 4 years ago • 0 comments

merge advice

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Severity	Issue	Breaking Change	Exploit Maturity
	Prototype Pollution SNYK-JS-AJV-584908	No	No Known Exploit

Commit messages

Package name: request

The new version differs by 71 commits.

6420240 2.88.0
bd22e21 fix: massive dependency upgrade, fixes all production vulnerabilities
925849a Merge pull request #2996 from kwonoj/fix-uuid
7b68551 fix(uuid): import versioned uuid
5797963 Merge pull request #2994 from dlecocq/oauth-sign-0.9.0
628ff5e Update to oauth-sign 0.9.0
10987ef Merge pull request #2993 from simov/fix-header-tests
cd848af These are not going to fail if there is a server listening on those ports
a92e138 #515, #2894 Strip port suffix from Host header if the protocol is known. (#2904)
45ffc4b Improve AWS SigV4 support. (#2791)
a121270 Merge pull request #2977 from simov/update-cert
bd16414 Update test certificates
536f0e7 2.87.1
02fc5b1 Update changelog
de1ed5a 2.87.0
a6741d4 Replace hawk dependency with a local implemenation (#2943)
a7f0a36 2.86.1
8f2fd4d Update changelog
386c7d8 2.86.0
76a6e5b Merge pull request #2885 from ChALkeR/patch-1
db76838 Merge branch 'patch-1' of github.com:ChALkeR/request
fb7aeb3 Merge pull request #2942 from simov/fix-tests
e47ce95 Add Node v10 build target explicitly
0c5db42 Skip status code 105 on Node > v10

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

Jul 16 '20 22:07 snyk-bot