[Snyk] Security upgrade i18n from 0.8.3 to 0.14.0

Open snyk-bot opened this issue 3 years ago • 0 comments

merge advice

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-ASYNC-2441827	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: i18n

The new version differs by 194 commits.

02dd49d tests: use arrow function
fa50268 eslint refactor var -> const,let
abb05ec refactor to arrow functions
5855724 drop node support < 10
9e6559a Merge branch 'gajus-master'
234b94b (re-)added tests fast-printf #453
ef5675c Merge branch 'master' of git://github.com/gajus/i18n-node into gajus-master
2461a97 typo
737b67d refactored test to cover mf plurals
42f12d3 Merge branch 'calmonr-fix-messageformat'
0faeee0 Merge branch 'fix-messageformat' of https://github.com/calmonr/i18n-node into calmonr-fix-messageformat
6018b9f Merge tag '0.13.4'
9683cc6 Merge branch 'release/0.13.4' into npm
bdce606 v0.13.4
4e6963f upgrade tested
3139881 save update
aa60ac7 upgraded devDeps
b6e672d Merge pull request #482 from Justman10000/patch-1
ed5c03f should fix coverage report
10daf65 publish coverage
84008b8 sad to see travis go paid only
d433ebe Update node.js.yml
7b4a0a2 Create node.js.yml
5a08ecc #486 - test path traversal vulnerability

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

Learn how to fix vulnerabilities with free interactive lessons:

Apr 12 '22 16:04 snyk-bot