create-mern-app icon indicating copy to clipboard operation
create-mern-app copied to clipboard

Published 20 hours ago verified publisher icon mernjs

[Snyk] Security upgrade eslint-config-next from 13.2.1 to 14.1.0

Open mernjs opened this issue 5 months ago • 1 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • templates/library/nextjs-library-boilerplate/example/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 631/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 6.2		 Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		 Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: eslint-config-next The new version differs by 250 commits.
  • 16e7a5b v14.1.0
  • 8a3881f Update labeler.json (#60843)
  • 1b255a6 v14.0.5-canary.68
  • 02c2f11 Enable missing suspense bailout by default (#60840)
  • 2096dfa v14.0.5-canary.67
  • b8d8e6e dx: warn the deprecated cache configs are used (#60836)
  • c192f4e turbopack: rename custom cache handler configs (#60828)
  • 2227ae5 Revert "Fix: Throw an error for empty array return in `generateStaticParams` with `output:export`" (#60831)
  • b7f5107 Fix: respect init.cache if fetch input is request instance (#60821)
  • 752c15e Add metrics names for unstable_cache (#60802)
  • e733853 Ensure request specific caches for revalidate are reset (#60810)
  • ecbc36c Fix error from the auth docs. (#60829)
  • c247347 feat: support custom image loaders in turbopack (#60736)
  • cb71d80 chore(deps): update `browserslist` and `caniuse-lite` (#60827)
  • 54f73a2 Docs: Use JS comment for MDX (#60825)
  • d450ff7 docs: add build worker optout error back with upgrade advice (#60826)
  • afcafcd chore(docs): fix example documentation for Art Direction (#60823)
  • 7472cef Remove the warning for build worker when custom webpack present (#60820)
  • 65fce8a add authentication docs page (#60388)
  • b14c1eb fix(ts): auto-complete `next/headers` (#60817)
  • 8179e70 v14.0.5-canary.66
  • e0399ca Support next/og usage in ESM nextjs app (#60818)
  • 299d145 Use snapshots for component-stack tests (#60768)
  • 486567d Update ReactRefreshRegression test snapshot for Turbopack (#60767)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

mernjs avatar Jan 19 '24 18:01 mernjs