react-ssr-advanced-seed
react-ssr-advanced-seed copied to clipboard
Published
20 hours ago •
vip-git
vip-git
chore(deps): update dependency jszip to 3.7.0 [security]
This PR contains the following updates:
| Package | Change |
|---|---|
| jszip | 3.2.2 -> 3.7.0 |
GitHub Vulnerability Alerts
CVE-2021-23413
This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object prototype values (e.g proto, toString, etc) results in a returned object with a modified prototype instance.
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, click this checkbox.
This PR has been generated by Mend Renovate. View repository job log here.
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "Published by a pub.dev verified publisher"){kind=small}
⚠ Artifact update problem
Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.
♻ Renovate will retry this branch, including artifacts, only when one of the following happens:
- any of the package files in this branch needs updating, or
- the branch becomes conflicted, or
- you click the rebase/retry checkbox if found above, or
- you rename this PR's title to start with "rebase!" to trigger it manually
The artifact failure details are included below:
File name: package-lock.json
ERR! lerna Unknown command "info"
ERR! lerna Did you mean init?
npm WARN [email protected] No repository field.
lerna notice cli v3.18.4
lerna info versioning independent
lerna notice filter excluding "__tests__"
lerna info filter [ '!__tests__' ]
lerna info Bootstrapping 27 packages
lerna info Installing external dependencies
lerna ERR! npm install --ignore-scripts --no-package-lock --ignore-scripts --no-audit --package-lock-only exited 1 in 'omega-web'
lerna ERR! npm install --ignore-scripts --no-package-lock --ignore-scripts --no-audit --package-lock-only stderr:
npm ERR! code ERESOLVE
npm ERR! ERESOLVE could not resolve
npm ERR!
npm ERR! While resolving: [email protected]
npm ERR! Found: [email protected]
npm ERR! node_modules/react
npm ERR! peer react@"^16.8.0" from @material-ui/[email protected]
npm ERR! node_modules/@material-ui/core
npm ERR! @material-ui/core@"4.4.2" from the root project
npm ERR! peer @material-ui/core@"^4.0.0" from @material-ui/[email protected]
npm ERR! node_modules/@material-ui/icons
npm ERR! @material-ui/icons@"4.4.1" from the root project
npm ERR! peer react@"^16.0.0" from [email protected]
npm ERR! node_modules/react-dom
npm ERR! react-dom@"16.8.6" from the root project
npm ERR! peer react-dom@"^16.8.0" from @material-ui/[email protected]
npm ERR! node_modules/@material-ui/core
npm ERR! @material-ui/core@"4.4.2" from the root project
npm ERR! 1 more (@material-ui/icons)
npm ERR! 2 more (@material-ui/icons, @material-ui/styles)
npm ERR! 2 more (@material-ui/icons, @material-ui/styles)
npm ERR!
npm ERR! Could not resolve dependency:
npm ERR! react-fade-in@"0.1.6" from the root project
npm ERR!
npm ERR! Conflicting peer dependency: [email protected]
npm ERR! node_modules/react
npm ERR! peer react@"^15.4.1" from [email protected]
npm ERR! node_modules/react-fade-in
npm ERR! react-fade-in@"0.1.6" from the root project
npm ERR!
npm ERR! Fix the upstream dependency conflict, or retry
npm ERR! this command with --force or --legacy-peer-deps
npm ERR! to accept an incorrect (and potentially broken) dependency resolution.
npm ERR!
npm ERR!
npm ERR! For a full report see:
npm ERR! /tmp/renovate-cache/others/npm/_logs/2023-03-18T22_11_49_419Z-eresolve-report.txt
npm ERR! A complete log of this run can be found in:
npm ERR! /tmp/renovate-cache/others/npm/_logs/2023-03-18T22_11_49_419Z-debug-0.log
lerna ERR! npm install --ignore-scripts --no-package-lock --ignore-scripts --no-audit --package-lock-only exited 1 in 'omega-web'
lerna WARN complete Waiting for 1 child process to exit. CTRL-C to exit immediately.
:warning: We detected 137 security issues in this pull request:
Vulnerable Libraries (137)
| Severity | Details |
|---|---|
| High | pkg:npm/[email protected]@3.0.0 (t) upgrade to: 6.0.1,5.0.1,4.1.1,3.0.1 |
| High | pkg:npm/[email protected]@8.0.0 (t) upgrade to: 6.0.2,7.1.1,8.0.1 |
| N/A | pkg:npm/[email protected]@4.14.3 (t) - no patch available |
| Critical | pkg:npm/[email protected]@2.0.1 (t) - no patch available |
| Critical | pkg:npm/[email protected]@1.4.3 (t) - no patch available |
| High | pkg:npm/[email protected]@10.2.1 (t) - no patch available |
| Medium | pkg:npm/[email protected]@2.2.4 (t) - no patch available |
| High | pkg:npm/[email protected]@2.0.1 (t) - no patch available |
| Medium | pkg:npm/[email protected]@7.2.5 (t) upgrade to: 7.4.6,6.2.2,5.2.3 |
| High | pkg:npm/[email protected]@1.0.2 (t) - no patch available |
| Low | pkg:npm/[email protected]@3.6.6 (t) - no patch available |
| N/A | pkg:npm/[email protected]@0.0.7 (t) - no patch available |
| Medium | pkg:npm/[email protected]@1.1.0 (t) - no patch available |
| N/A | pkg:npm/[email protected]@4.5.0 (t) - no patch available |
| High | pkg:npm/[email protected]@4.2.3 (t) - no patch available |
| Medium | pkg:npm/[email protected]@3.0.2 (t) - no patch available |
| High | pkg:npm/[email protected]@2.8.5 (t) - no patch available |
| High | pkg:npm/[email protected]@1.4.7 (t) - no patch available |
| Medium | pkg:npm/[email protected]@6.0.23 (t) upgrade to: 8.2.13,7.0.36 |
| High | pkg:npm/[email protected]@4.1.0 (t) upgrade to: 6.0.1,5.0.1,4.1.1,3.0.1 |
| Medium | pkg:npm/[email protected]@2.6.11 (t) - no patch available |
| Medium | pkg:npm/[email protected]@0.19.2 (t) - no patch available |
| High | pkg:npm/[email protected]@4.0.0 (t) upgrade to: 3.2.2,4.0.1,5.0.5 |
| Medium | pkg:npm/[email protected]@7.0.25 (t) upgrade to: 8.2.13,7.0.36 |
| High | pkg:npm/[email protected]@3.0.0 (t) upgrade to: 3.0.1,4.0.1 |
| Critical | pkg:npm/[email protected]@0.2.3 (t) upgrade to: 0.4.0 |
| High | pkg:npm/[email protected]@3.2.0 (t) upgrade to: 3.2.2,2.6.4 |
| Critical | pkg:npm/[email protected]@1.0.0 (t) - no patch available |
| High | pkg:npm/[email protected]@5.0.0 (t) upgrade to: 6.0.1,5.0.1,4.1.1,3.0.1 |
| High | pkg:npm/[email protected]@2.1.1 (t) upgrade to: 2.2.2 |
| Medium | pkg:npm/[email protected]@7.3.1 (t) upgrade to: 7.4.6,6.2.2,5.2.3 |
| Critical | pkg:npm/[email protected]@0.9.0 (t) - no patch available |
| High | pkg:npm/[email protected]@1.17.1 (t) upgrade to: 1.21.0 |
| High | pkg:npm/[email protected]@1.0.4 (t) upgrade to: 1.0.5 |
| Medium | pkg:npm/[email protected]@6.10.2 (t) upgrade to: 6.12.3 |
| High | pkg:npm/[email protected]@3.3.0 (t) - no patch available |
| Medium | pkg:npm/[email protected]@3.1.5 (t) - no patch available |
| Critical | pkg:npm/[email protected]@1.0.1 (t) - no patch available |
| High | pkg:npm/[email protected]@1.5.10 (t) upgrade to: 1.14.7 |
| Critical | pkg:npm/[email protected]@1.0.0 (t) - no patch available |
| N/A | pkg:npm/[email protected]@1.10.0 (t) upgrade to: 8.0.1 |
| High | pkg:npm/[email protected]@4.7.6 (t) - no patch available |
| Medium | pkg:npm/[email protected]@3.6.5 (t) - no patch available |
| Medium | pkg:npm/[email protected]@15.1.1 (t) upgrade to: 16.5.0 |
| Medium | pkg:npm/[email protected]@1.3.1 (t) - no patch available |
| Medium | pkg:npm/[email protected]@4.4.3 (t) - no patch available |
| High | pkg:npm/[email protected]@2.1.3 (t) upgrade to: 2.2.2 |
| Critical | pkg:npm/[email protected]@4.17.1 (t) - no patch available |
| Critical | pkg:npm/[email protected]@1.2.5 (t) upgrade to: 1.2.6 |
| Critical | pkg:npm/[email protected]@6.7.0 (t) - no patch available |
| High | pkg:npm/[email protected]@3.9.7 (t) - no patch available |
| High | pkg:npm/[email protected]@4.4.13 (t) upgrade to: 4.4.18,5.0.10,6.1.9 |
| High | pkg:npm/[email protected]@1.0.1 (t) upgrade to: 2.2.2 |
| High | pkg:npm/[email protected]@2.1.3 (t) - no patch available |
| High | pkg:npm/[email protected]@4.1.0 (t) upgrade to: 4.1.1,4.1.1 |
| Critical | pkg:npm/[email protected]@1.4.0 (t) upgrade to: 2.0.3 |
| High | pkg:npm/[email protected]@4.0.0-alpha.5 (t) - no patch available |
| High | pkg:npm/[email protected]@5.0.2 (t) - no patch available |
| Low | pkg:npm/[email protected]@6.5.3 (t) - no patch available |
| Critical | pkg:npm/[email protected]@6.9.4 (t) - no patch available |
| Medium | pkg:npm/[email protected]@4.10.0 (t) upgrade to: 4.16.5 |
| Critical | pkg:npm/[email protected]@4.17.20 (t) - no patch available |
| Critical | pkg:npm/[email protected]@3.3.0 (t) - no patch available |
| High | pkg:npm/[email protected]@5.1.1 (t) upgrade to: 5.1.2 |
| Medium | pkg:npm/[email protected]@2.2.0 (t) - no patch available |
| High | pkg:npm/[email protected]@2.0.1 (t) - no patch available |
| High | pkg:npm/[email protected]@3.2.1 (t) upgrade to: 3.2.2,4.0.1,5.0.5 |
| High | pkg:npm/[email protected]@1.0.6 (t) - no patch available |
| Medium | pkg:npm/[email protected]@4.0.1 (t) - no patch available |
| High | pkg:npm/[email protected]@0.0.8 (t) - no patch available |
| High | pkg:npm/[email protected]@6.0.5 (t) upgrade to: 4.4.16,5.0.8,6.1.7 |
| Medium | pkg:npm/[email protected]@7.0.34 (t) upgrade to: 8.2.13,7.0.36 |
| N/A | pkg:npm/[email protected]@3.24.3 (t) upgrade to: 4.1.3,4.1.3,4.1.3 |
| High | pkg:npm/[email protected]@4.0.3 (t) - no patch available |
| High | pkg:npm/[email protected]@4.8.0 (t) - no patch available |
| Medium | pkg:npm/[email protected]@7.2.1 (t) upgrade to: 7.4.6,6.2.2,5.2.3 |
| High | pkg:npm/[email protected]@3.0.2 (t) - no patch available |
| High | pkg:npm/[email protected]@3.0.4 (t) upgrade to: 3.0.5 |
| High | pkg:npm/[email protected]@6.0.1 (t) upgrade to: 6.0.2,7.1.1,8.0.1 |
| N/A | pkg:npm/[email protected]@2.6.9 (t) upgrade to: 3.1.0 |
| High | pkg:npm/[email protected]@5.0.2 (t) - no patch available |
| High | pkg:npm/[email protected]@1.0.2 (t) upgrade to: 2.0.1 |
| N/A | pkg:npm/[email protected]@7.0.32 (t) - no patch available |
| Medium | pkg:npm/[email protected]@1.1.1 (t) upgrade to: 2.0.0 |
| Critical | pkg:npm/[email protected]@1.0.6 (t) upgrade to: 1.1.0 |
| High | pkg:npm/[email protected]@1.3.5 (t) upgrade to: 1.3.6 |
| N/A | pkg:npm/[email protected]@0.8.3 (t) upgrade to: 0.8.5 |
| High | pkg:npm/[email protected]@0.21.0 (t) - no patch available |
| Medium | pkg:npm/[email protected]@16.4.0 (t) upgrade to: 16.5.0 |
| N/A | pkg:npm/[email protected]@8.0.0 (t) - no patch available |
| Low | pkg:npm/[email protected]@2.88.2 (t) - no patch available |
| Critical | pkg:npm/[email protected]@1.2.3 (t) upgrade to: 2.0.3 |
| High | pkg:npm/[email protected]@3.8.1 (t) - no patch available |
| Low | pkg:npm/[email protected]@2.88.0 (t) - no patch available |
| High | pkg:npm/[email protected]@0.8.4 (t) upgrade to: 0.8.5 |
| High | pkg:npm/[email protected]@2.6.3 (t) upgrade to: 3.2.2,2.6.4 |
| High | pkg:npm/[email protected]@2.0.0 (t) upgrade to: 3.0.1,4.0.1 |
| Medium | pkg:npm/[email protected]@10.2.0 (t) - no patch available |
| Critical | pkg:npm/[email protected]@0.2.13 (t) - no patch available |
| High | pkg:npm/[email protected]@2.4.1 (t) - no patch available |
| High | pkg:npm/[email protected]@1.0.4 (t) upgrade to: 5.0.0,3.0.1 |
| Medium | pkg:npm/[email protected]@9.15.10 (t) upgrade to: 9.18.2,10.1.2 |
| Medium | pkg:npm/[email protected]@6.11.4 (t) - no patch available |
| High | pkg:npm/[email protected]@3.1.0 (t) upgrade to: 5.1.2 |
| N/A | pkg:npm/[email protected]@1.21.0 (t) upgrade to: 1.23.0 |
| Medium | pkg:npm/[email protected]@2.7.4 (t) - no patch available |
| Critical | pkg:npm/[email protected]@4.0.1 (t) - no patch available |
| Critical | pkg:npm/[email protected]@2.0.4 (t) - no patch available |
| High | pkg:npm/[email protected]@4.5.0 (t) - no patch available |
| High | pkg:npm/[email protected]@1.2.0 (t) - no patch available |
| Medium | pkg:npm/[email protected]@9.6.0 (t) - no patch available |
| Medium | pkg:npm/[email protected]@4.14.2 (t) upgrade to: 4.16.5 |
| Critical | pkg:npm/[email protected]@3.7.2 (t) - no patch available |
| Medium | pkg:npm/[email protected]@16.9.0 (t) - no patch available |
| High | pkg:npm/[email protected]@7.0.1 (t) upgrade to: 10.2.7 |
| Critical | pkg:npm/[email protected]@4.27.3 (t) - no patch available |
| Critical | pkg:npm/[email protected]@2.0.0 (t) upgrade to: 2.0.3 |
| Medium | pkg:npm/[email protected]@6.2.1 (t) upgrade to: 7.4.6,6.2.2,5.2.3 |
| High | pkg:npm/[email protected]@10.8.2 (t) - no patch available |
| High | pkg:npm/[email protected]@5.0.1 (t) - no patch available |
| High | pkg:npm/[email protected]@2.3.0 (t) - no patch available |
| Critical | pkg:npm/[email protected]@1.0.7 (t) upgrade to: 1.1.1,2.0.2 |
| High | pkg:npm/[email protected]@5.1.0 (t) upgrade to: 5.1.2 |
| Medium | pkg:npm/[email protected]@1.0.1 (t) upgrade to: 1.0.3 |
| High | pkg:npm/[email protected]@3.6.0 (t) - no patch available |
| High | pkg:npm/[email protected]@0.9.0 (t) upgrade to: 0.10.0 |
| Medium | pkg:npm/[email protected]@4.8.2 (t) upgrade to: 4.16.5 |
| Low | pkg:npm/[email protected]@2.6.1 (t) - no patch available |
| High | pkg:npm/[email protected]@0.2.0 (t) - no patch available |
| Critical | pkg:npm/[email protected]@6.5.2 (t) - no patch available |
| High | pkg:npm/[email protected]@6.1.0 (t) upgrade to: 10.2.7 |
| High | pkg:npm/[email protected]@0.5.31 (t) - no patch available |
| Medium | pkg:npm/[email protected]@11.6.0 (t) - no patch available |
| High | pkg:npm/[email protected]@2.0.0 (t) upgrade to: 5.1.2 |
| Critical | pkg:npm/[email protected]@1.7.2 (t) upgrade to: 1.7.3 |
| High | pkg:npm/[email protected]@3.0.0 (t) upgrade to: 5.0.0,3.0.1 |
| High | pkg:npm/[email protected]@1.0.0 (t) upgrade to: 3.0.1,4.0.1 |
More info on how to fix Vulnerable Libraries in JavaScript.
👉 Go to the dashboard for detailed results.
📥 Happy? Share your feedback with us.
![guardrails[bot] avatar](https://avatars.githubusercontent.com/in/5512?v=4 "Published by a pub.dev verified publisher"){kind=small}