postman-runtime
postman-runtime copied to clipboard
postmanlabs
[Snyk] Security upgrade terser from 5.14.0 to 5.14.2
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366 |
No | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: terser
The new version differs by 9 commits.- 0136e8a update changelog
- c5cb19d 5.14.2
- a4da734 fix potential regexp DDOS
- 839b81b Add source mapping for closing `}` (#1211)
- 645a092 Optimize property access evaluation (#1213)
- 6706fec 5.14.1
- 4a56ef2 update changelog
- c558e12 Add keep_numbers option. Closes #1208
- f745ac7 fix parsing of nested template strings. Closes #1204
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
Codecov Report
Merging #1219 (1523767) into develop (946ee96) will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## develop #1219 +/- ##
========================================
Coverage 79.57% 79.57%
========================================
Files 42 42
Lines 2972 2972
Branches 856 856
========================================
Hits 2365 2365
Misses 607 607
| Flag | Coverage Δ | |
|---|---|---|
| integration | 69.48% <ø> (ø) |
|
| legacy | 48.51% <ø> (ø) |
|
| unit | 43.23% <ø> (ø) |
Flags with carried forward coverage won't be shown. Click here to find out more.
:mega: Codecov can now indicate which changes are the most critical in Pull Requests. Learn more
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}