weather-cli
weather-cli copied to clipboard
Published
20 hours ago •
riyadhalnur
riyadhalnur
[Snyk] Fix for 1 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: conf
The new version differs by 22 commits.- 8329e55 10.0.0
- 4fa57ef Require Node.js 12
- 3ef86c8 Wrap require-cache part with try-catch (#149)
- ce1dcee Add note about multiple processes
- c92c032 9.0.2
- 094ac38 Add ajv-formats when a schema is used (#144)
- 8043943 9.0.1
- 735225e Fix `.reset()` to correctly handle falsy default values (#141)
- 4f77f08 Rename `master` branch to `main`
- 8ba18f9 9.0.0
- b291021 Make the `clearInvalidConfig` option `false` by default
- a96e9d7 8.0.0
- 2177831 Update dependencies
- 259ba9b Fix `.clear()` behavior (#136)
- 43c644f Move to GitHub Actions (#132)
- 556c95e Minor readme tweaks
- be69402 Use `prepack` in package.json
- ef85dd0 Disable `prefer-optional-catch-binding` rule globally (#128)
- e630220 Avoid using `Array#reduce` (#127)
- 9060c49 Fix readme typo (#125)
- 22b6ea3 7.1.2
- 526002e Fix the `.get()` TypeScript return type (#117)
Package name: meow
The new version differs by 12 commits.- 6052e69 10.0.0
- e61af45 Meta tweaks
- 0c11c39 Allow user to pass in package URL for package reading (#182)
- 8c12b2d Upgrade dependencies
- 05320ac Require Node.js 12 and move to ESM (#181)
- 5400b66 Reduce cyclomatic complexity (#175)
- 569def4 9.0.0
- 1609709 Fix reporting missing required flags (#168)
- 1d1b6ab 8.1.0
- a27ff12 Add `allowUnknownFlags` options (#169)
- a0ce744 Add type test
- c725b57 Move to GitHub Actions (#170)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
