windmill
windmill copied to clipboard
Published
20 hours ago •
windmill-labs
windmill-labs
[Snyk] Security upgrade date-fns from 2.30.0 to 3.0.0
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
frontend/package.jsonfrontend/package-lock.json
Vulnerabilities that will be fixed with an upgrade:
| Issue | |
|---|---|
 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELRUNTIME-10044504 |
[!IMPORTANT]
- Check the changes in this PR to ensure they won't cause issues with your project.
- Max score is 1000. Note that the real score may have changed since the PR was raised.
- This PR was automatically created by Snyk using the credentials of a real user.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
[!IMPORTANT] Upgrade
date-fnsto 3.0.0 to fix a ReDoS vulnerability.
- Dependencies:
- Upgrade
date-fnsfrom 2.30.0 to 3.0.0 inpackage.jsonandpackage-lock.jsonto fix a Regular Expression Denial of Service (ReDoS) vulnerability.- Security:
- Addresses vulnerability SNYK-JS-BABELRUNTIME-10044504.
This description was created by
for 19ee1fb4cacdf7da93570d630ba557ad5a94f865. You can customize this summary. It will automatically update as commits are pushed.
