gmcserver icon indicating copy to clipboard operation
gmcserver copied to clipboard

Published 20 hours ago verified publisher icon vinceh121

[Snyk] Security upgrade @nivo/line from 0.68.0 to 0.85.0

Open vinceh121 opened this issue 3 months ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • gmcserver-web/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-D3COLOR-1076592		 No Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @nivo/line The new version differs by 250 commits.
  • 4ab05e2 v0.85.0
  • 68375a1 fix(dependencies): fix peer dependencies (#2528)
  • 193a4ce fix(line): use readonly arrays for props as the library does not modify them (#2494)
  • 0ab8f73 fix(marimekko): use readonly arrays for props as the library does not modify them (#2493)
  • a90a6cc feat(line): add support for touch events + crosshair (#2524)
  • d74996a fix(website): fix tooltip default color in the theming guide (#2521)
  • 44d8967 Fix: add initial property for truncateTickAt (#2504)
  • c741a88 chore: upgrade d3-color and d3-scale-chromatic
  • bc18832 fix(sankey): update onClick types in sankey chart to respect generics (#2509)
  • d87af09 set default props inside components
  • 0bc2fe8 refactor default props to fix error message
  • 71f3496 v0.84.0
  • 4fa26a2 feat(pie): add support for forwarding legend data
  • a1a774d feat(pie): fix typings
  • 238e8d1 feat(pie): migrate unit tests to react-test-renderer
  • 401dcf1 feat(pie): add the ability to programmatically control the activeId for the canvas implementation
  • 513a1c8 feat(pie): document new properties for controlling the activeId
  • de33c89 feat(pie): add the ability to programmatically control the activeId
  • cba9500 Fix Bar SSR
  • 6dc6636 fix(pie): use readonly arrays for props as the library does not modify them
  • 5306106 fix(bar): use readonly arrays for props as the library does not modify them
  • 64f4a7d v0.83.1
  • 1d504ba feat(legends): export SymbolProps
  • abf9178 Removed unnecessary imports

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

vinceh121 avatar Mar 07 '24 19:03 vinceh121