progress-bot icon indicating copy to clipboard operation
progress-bot copied to clipboard

Published 20 hours ago verified publisher icon rb28z2

[Snyk] Security upgrade discord.js from 11.6.4 to 12.0.0

Open snyk-bot opened this issue 3 years ago • 0 comments

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-WS-1296835		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: discord.js The new version differs by 250 commits.
  • 2338594 Merge branch 'master' into stable
  • 3142d8c v12.0.0
  • a133768 v12.0.0
  • 7d40c43 chore: merge v12-dev master into stable
  • d7c5baf chore: update discordjs/discord.js references
  • f4b1b39 feat: document intent error code messages (#3871)
  • 2d67fbb docs: clarify which checks GuildMember#manageable does (#3870)
  • 544bb78 refactor: make LimitedCollection an implementation detail (#3872)
  • c7f4485 docs(PartialRoleData): id is optional (#3866)
  • 713309e fix(playinterface): lazy require VoiceBroadcast to avoid circul… (#3864)
  • acdd832 fix(typings): enum values for ChannelType (#3861)
  • 09e4912 fix(typings): remove duplicate VerificationLevels (#3862)
  • a6d3501 fix(typings): for intents (#3860)
  • 8a2f893 feat: Intents bitfield (#3844)
  • b58813a chore(*): update node version mention & use strict
  • d33fc74 typings: Refactor how channel types are done (#3808)
  • a04b4ca docs(TextBasedChannel): fix typo (#3858)
  • 31ee0d8 docs(shard): add .cache to GuildManager in fetchClientValue exa… (#3857)
  • d9e12b8 fix(guild): import paths
  • c065156 chore: consistency/prettier (#3852)
  • 6650d50 feat(MessageEmbed): Support EmbedFieldData[] instead of EmbedFi… (#3845)
  • 9c8aaf1 feat: reimplement disableEveryone into disableMentions
  • bbe169d fix(MessageEmbed): prevent possible destructuring error
  • e4f567c refactor(GuildChannel): change overwritePermisions to accept an… (#3853)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

snyk-bot avatar May 26 '21 22:05 snyk-bot