spark-design-system
spark-design-system copied to clipboard
Published
20 hours ago •
sparkdesignsystem
sparkdesignsystem
[Snyk] Security upgrade gatsby-plugin-google-analytics from 2.3.4 to 5.1.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
479/1000 Why? Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: gatsby-plugin-google-analytics
The new version differs by 250 commits.- 2cfb64b chore(release): Publish
- c132f2d feat(gatsby-plugin-google-gtag): Add `delayOnRouteUpdate` option (#37017)
- 3032a1b fix(gatsby): Use xstate `predictableActionArguments` & update to 4.34 (#36342)
- aca64b7 chore: Add constraints to renovate (#37047)
- f94db78 fix(gatsby-transformer-csv): Fix high memory consumption (#36610)
- f158930 test: e2e tests for Slices API (#36746)
- 9d67c13 chore(docs): Google Analytics: use gtag.js plugin (#36984)
- 8569655 chore(gatsby-plugin-google-analytics): Update `minimatch` (#37029)
- 086c862 fix(gatsby-core-utils): decode uri-encode filename for remote file (#35637)
- ccf56d5 chore: Add npm "engines" (#37046)
- 5772595 fix(gatsby-source-wordpress) pass store for auth (#37006)
- c411d69 chore(docs): Add `--` to quick start flags (#37041)
- 2a06fff chore(docs): Deployment Updates & Cleanup (#37038)
- 0fb0390 chore: Repository Cleanup (#37035)
- 88b9dc5 chore(gatsby-source-wordpress): remove runApisInSteps and call runApiSteps for each gatsby-node api (#37039)
- b69709c build: include e2e tests in renovate config (#37005)
- 8fc95f5 chore(docs): Clarify language in v4 to v5 migration guide (#37007)
- 1cfd9b8 chore(e2e-tests): Wait for route change on back/forward (#37033)
- 4842417 chore(docs): Add IE 11 note to v2 to v3 migration guide (#37022)
- 19dd1c4 fix(graphiql-explorer): Adjust env var truthiness logic (#37032)
- 57b37ae chore(changelogs): update changelogs (#37030)
- 58197a0 fix(docs): update forEach to use map (#37008)
- 3a4d333 chore: migrate from express-graphql to graphql-http (#37001)
- 5766694 chore(docs): Add overview video to release notes (+ other misc) (#37003)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
