HaiKei
HaiKei copied to clipboard
Published
20 hours ago •
wearrrrr
wearrrrr
[Snyk] Security upgrade @sendgrid/mail from 7.7.0 to 8.0.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1 |
Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @sendgrid/mail
The new version differs by 9 commits.- b1c831f Release 8.0.0
- 2f56e16 [Librarian] Version Bump
- dc01933 Add an upgrade guide to main
- 8a7e4eb feat!: node version upgrade, axios upgrade (#1391)
- b8125d8 docs: updated the year in the license
- 7d62da1 docs: Fix broken url on npmjs (#1376)
- 3bab53b Adding misc as PR type (#1367)
- 4b0eeda docs: Add use case for substitutions (#1363)
- 3d8e645 docs: drop references to ISSUE_TEMPLATE.md
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Cross-site Request Forgery (CSRF)
