WebSheets-Listing-Page
WebSheets-Listing-Page copied to clipboard
Published
20 hours ago •
tengkuhafidz
tengkuhafidz
[Snyk] Security upgrade gatsby from 2.24.49 to 4.0.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5 |
Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-3023021 |
Yes | Proof of Concept |
|
643/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5 |
Improper Input Validation SNYK-JS-PARSEURL-3024398 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: gatsby
The new version differs by 250 commits.- 8d07242 chore(release): Publish
- 0790895 chore(gatsby): Update README (#33615)
- 06760d7 chore(gatsby): Change comment format in actions/public (#33592)
- 7d66a23 feat(gatsby): capture number of ssg,dsg,ssr pages in telemetry (#33337)
- 98a843c fix(gatsby): use lmdb.removeSync so getNode can't return deleted nodes (#33554)
- 4d8e40b fix(gatsby-source-wordpress): Add steps for `refetch_ALL` (#33264)
- 4761dc3 fix(gatsby): restore onPreBuild to being called right after bootstrap finishes (#33591)
- 1cdbab6 fix(deps): update starters and examples gatsby packages to ^3.14.3 (#33553)
- 0f421db chore(release): Publish next
- 7d6a0aa fix(gatsby): fix page-tree in ink-cli (#33579)
- 3993819 chore(gatsby): Add `assetPrefix` to `IGatsbyConfig` (#33575)
- 6cc964a fix(gatsby-source-wordpress): restore PQR support (#33590)
- 9eef270 specifying what actually changed (#33452)
- 2975c4d feat(gatsby,gatsby-link): add queue to prefetch (#33530)
- 68fe836 fix(gatsby): temporary workaround for stale jobs cache (#33586)
- a800d9d fix(gatsby): Update internal usage of .runQuery (#33571)
- 677760c chore(docs): Clarify SEO component guide (#33451)
- ccca4b3 fix(gatsby): only remove unused code when apis got removed (#33527)
- 8dbf550 fix(gatsby): assign correct parentSpans to PQR activities (#33568)
- 31d5a5e fix(gatsby-dev-cli): resolve correct versions of packages with unpkg (#33551)
- 5110074 fix(gatsby-plugin-gatsby-cloud): emit file nodes after source updates (#33548)
- d2329df fix(gatsby): make sure 404 and 500 page inherit stateful status from original page (#33544)
- 68e5b90 chore(docs): Update query var in part-7 tutorial (#33559)
- a8cab55 chore(gatsby-plugin-react-helmet): Update Examples (#33552)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Server-side Request Forgery (SSRF)
