[Snyk] Fix for 5 vulnerabilities

Open snyk-bot opened this issue 4 years ago • 0 comments

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Priority Score (*)	Issue	Breaking Change	Exploit Maturity
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-REDIS-1255645	Yes	No Known Exploit
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	Yes	No Known Exploit
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	Yes	No Known Exploit
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	Yes	No Known Exploit
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: redis

The new version differs by 142 commits.

fc28860 Bump version to 3.1.1 (#1597)
2d11b6d fix #1569 - improve monitor_regex (#1595)
7e77de8 Add Chat (#1594)
5d3e995 Merge branch 'master' of https://github.com/NodeRedis/node-redis
b797cf2 add user to README.md
79f34c2 Bump version to 3.1.0 (#1590)
7fdc54e fix for 428e1c8a7b2322c2650294638cb1663ac5692728 - fix auth retry when redis is in loading state
09f0fe8 "fix" tests
428e1c8 Add support for Redis 6 `auth pass [user]` (#1508)
bb208d0 Add codeclimate badge (#1572)
47e2e38 Exclude examples from deepsource (#1579)
fbca5cd Upgrade node and dependencies (#1578)
2188744 Create codeql-analysis.yml (#1577)
32861b5 Create .deepsource.toml (#1574)
2a34d41 Add LGTM badge (#1571)
69b7094 Workflows fixes (#1570)
49c4131 Merge pull request #1531 from marnikvde/improve-docs
3c8ff5c Merge branch 'master' into improve-docs
685a72d Merge pull request #1277 from dcharbonnier/patch-1
055f5c5 Merge branch 'master' into patch-1
c78b6d5 Merge pull request #1527 from heynikhil/patch-1
53f1468 Merge branch 'master' into patch-1
232f191 Merge pull request #1563 from lebseu/patch-1
e4cb073 Update README.md

Package name: validator

The new version differs by 250 commits.

24b3fd3 13.6.1
b986f3d fix: ReDOS in isEmail and isHSL (#1651)
2a3a1c3 13.6.0
1fa0959 chore: add typeof utility (#1648)
cf403d0 fix(isMobilePhone): add Sierra Leone phone and fix Sri Lanka phone (#1558)
3f70b8e feat(isPassportNumber, isIBAN, isMobilePhone): add Mozambique locale (#1604)
05ceb18 isURL(): Allow URLs to have only a username in the userinfo subcomponent (#1644)
9ee1b6b fix(isMobilePhone): update china zh-CN locale (#1642)
b82f4f2 fix(docs): typo in README.md (#1640)
615547f feat(isMobilePhone): add Latvia lv-LV locale (#1638)
d006e08 fix(isMobilePhone): add support for new networks codes in GH (#1635)
c33fca6 fix(isISIN): optimization (#1633)
2ef84e4 fix(isIP): validator patterns for IPv4 and IPv6 RegExp formats (#1632)
67a200d feat(isPostalCode): add KR locale (#1628)
b65ddc5 fix: fix A-z ranges (#1625)
39830a9 feat: IR passport and identityCard, respect .gitignore files (#1595)
5d6db63 feat(isIPRange): add support for IP version 4 or 6 (#1594)
a31c116 fix: update isMobilePhone validation for en-SG (#1573)
63b6162 chore: add gitter chatroom badge (#1592)
bb0dba6 feat(isPassportNumber): add MY locale (#1574)
7989e5b feat(isLicensePlate): add support for pt-BR locale (#1588)
3c771e8 feat(pt-BR): tax id, passport and license plates (#1613)
418df05 fix(isMobilePhone): prevent allowing landline numbers in es-CO (#1623)
6262f62 chore: improving code coverage to 100% branches (#1624)

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

Apr 27 '21 08:04 snyk-bot