rivescript-viz
rivescript-viz copied to clipboard
mariohmol
[Snyk] Security upgrade d3 from 4.13.0 to 7.0.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-D3COLOR-1076592 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: d3
The new version differs by 189 commits.- 1b8bada 7.0.0
- b98d63a update API
- 23b0212 Adopt type: module. (#3506)
- 0f01226 Fix broken markdown for link
- 5149a2f 6.7.0
- a8ebbc5 update d3-time, d3-scale
- 31d73d1 6.6.2
- 1836b64 update d3-scale
- 76c92ca 6.6.1
- ff34b4c d3-array 2.12.1
- cff66a4 add space
- b62d444 fix a typo in API.md
- 607a60f 6.6.0
- 11aa552 update dependencies
- 37cd9bf 6.5.0
- 73110b9 d3-array 2.11
- 12336e3 6.4.0
- afd34bb update dependencies
- e9fee2c 6.3.1
- ec388d8 Update d3-array.
- a8baadf 6.3.0
- 4d3baf7 Update d3-array.
- 3c63660 6.2.0
- ffb43e6 Update d3-array, d3-scale.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
