WebSheets-Listing-Page icon indicating copy to clipboard operation
WebSheets-Listing-Page copied to clipboard

Published 20 hours ago verified publisher icon tengkuhafidz

[Snyk] Fix for 1 vulnerabilities

Open tengkuhafidz opened this issue 2 years ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 696/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908		 Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: gatsby The new version differs by 250 commits.
  • 0a455df chore(release): Publish
  • 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (#32961) (#32967)
  • f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) (#32966)
  • ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (#30642)
  • 944e381 chore(release): Publish next
  • d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (#32665)
  • cf9c066 fix(gatsby): add this typings to actions (#32210)
  • 53aa88e chore: enable test parallelism (#32766)
  • b7deabc fix(deps): update starters and examples - gatsby (#32843)
  • 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (#32567)
  • d87c5cb chore: enable lmdb by default and update node for next major (#32695)
  • 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (#32907)
  • f556a00 chore: update changelogs (#32924)
  • aba5eba feat(gatsby): enable webpack caching in development for everyone (#32922)
  • ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (#32901)
  • 1a87a8a docs(gatsby-source-wordpress): document content sync (#32768)
  • 417df15 chore: re-generate changelogs (#32886)
  • 1810874 fix(gatsby-source-wordpress): draft previews (#32915)
  • 7c72ab8 chore(gatsby): remove unused packages (#32903)
  • afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (#32876)
  • 1303ecb chore(docs): Update wording for "using-web-fonts" (#32902)
  • 9589911 chore(docs): Fix code highlighting in part 6 (#32900)
  • 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (#32883)
  • 41f5337 fix(deps): update typescript to ^4.29.3 (#32614)

See the full diff

Package name: gatsby-plugin-manifest The new version differs by 250 commits.
  • e98cb62 chore(release): Publish
  • 164f9a1 fix(gatsby-source-contentful): De-dupe type names (#30834) (#30850)
  • 0b99d00 fix(gatsby): webpack warnings are no longer in object format by default (#30801) (#30853)
  • f561724 fix(gatsby): lower memory pressure in SSR (#30793) (#30851)
  • 96805d5 fix(gatsby-source-wordpress): change `console.warning` to `console.warn` (#30764) (#30852)
  • e40c83d chore(release): Publish next
  • a5b5cf8 feat: upgrade to remark 13 (#29678)
  • 172cf4d chore(docs): Add link to perf implications siteContext (#30778)
  • 4336d04 fix(gatsby-plugin-gatsby-cloud): Add missing index.js (so the plugin can be resolved in workspaces) (#30761)
  • 2bdd5a5 fix(gatsby-source-wordpress): only log out duplicate node if we have all the data we want to log (#30751)
  • 1a9b830 fix(gatsby-plugin-image): Don't inherit all img styles (#30754)
  • e0df4cc chore(docs): Change "whitelist" to "allow list" (#30756)
  • 81ec270 chore: Add backport script (#30732)
  • 63cc8fa fix(docs): Copy edits for debugging html doc + add React-specific example (#30745)
  • eed1d43 fix(docs): Add link to how to enable DEV_SSR for fixing inconsistent css styles between dev/prod (#30746)
  • ecd823f perf(gatsby): cache babel config items (#28738)
  • a60e92f chore(release): Publish next
  • dd9e95c docs(gatsby-plugin-image): Note on tracedSVG options name change (#30736)
  • a5869e3 fix(gatsby-plugin-image): Use bare GATSBY___IMAGE global (#30713)
  • 0f3fa4e fix(contentful): make gatsby-plugin-image a peer dependency (#30709)
  • 6b2fd94 fix(gatsby-source-wordpress): pass missing property helpers to gql fetch util (#30727)
  • c6fa488 chore(docs): Update wording of tutorial part 8 (#30606)
  • a777367 fix(gatsby-cli): Update docs links in error-map (#30493)
  • c473abf chore(docs): include autoprefixer in tailwind install command (#30718)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

tengkuhafidz avatar May 13 '22 17:05 tengkuhafidz