lattice
lattice copied to clipboard
Published
20 hours ago •
latticejs
latticejs
[Snyk] Security upgrade systeminformation from 3.54.0 to 4.34.11
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- examples/apollo-real-time-chart/package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
833/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.8 |
Command Injection SNYK-JS-SYSTEMINFORMATION-1074913 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: systeminformation
The new version differs by 250 commits.- bf44c88 4.34.11
- c582230 updated docs
- 6daffd3 docker, processes() fixyed possible security issue
- 8eda9d1 4.34.10
- a23b8f0 inetLatency() fixed possible DOS intrusion
- 53b140e 4.34.9
- edb2ed2 graphics() virtual controller vram value fix (win)
- ddb16ad 4.34.8
- 98f491a graphics() controller subid fix (win)
- 19dc7a5 code cleanup
- 4c69c72 4.34.7
- 1e3a80e services() improved service discovery (linux)
- 372236d 4.34.6
- 4f60a4c networkInterfaces() catch errors
- 2bc1ee6 4.34.5
- c49ac47 networkInterfaceDefault() fixed CMD popup (windows)
- dc0a7a5 updated docs
- ad56c85 4.34.4
- 8709977 system() fixed vitrual catch error
- 4d314a8 4.34.3
- b1d1963 graphics() fixed non nvidia-smi controllers (win)
- cddfdd3 version fixed
- b523853 4.34.3
- 9020f84 4.34.2
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
