Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[Snyk] Upgrade @crowdin/cli from 3.13.0 to 3.19.1 #16

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade @crowdin/cli from 3.13.0 to 3.19.1 #16

wants to merge 1 commit into from

Conversation

X-oss-byte
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @crowdin/cli from 3.13.0 to 3.19.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 8 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2024-03-27.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Uncontrolled Resource Consumption ('Resource Exhaustion')
SNYK-JS-TAR-6476909		 646/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 6.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: @crowdin/cli from @crowdin/cli GitHub release notes
Commit messages
Package name: @crowdin/cli
  • 791be7f chore(release): version 3.19.1 [skip ci]
  • 6516846 fix: empty asterisks in translation (#750)
  • 3ce64dc chore: update messages.properties (#749)
  • ed8f9b8 chore(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 in /website (#747)
  • 0fa4cd6 build: update chocolatey checksum
  • 1bee31f chore(release): version 3.19.0 [skip ci]
  • aa99d5e fix: double asterisks in paths (#733)
  • 976f01d fix: preserve hierarchy output (#738)
  • 690cb22 feat: set http timeout (#734)
  • 880d5f3 chore(deps): bump follow-redirects from 1.15.4 to 1.15.6 in /website (#735)
  • 503a974 feat: plural strings (#731)
  • c280608 fix: message for strings based project when download (#729)
  • 19f2aa8 docs: update installation.md (#728)
  • 31e2053 feat: multilingual option (#725)
  • 3f79c48 build: update dependencies (#727)
  • 04a76c8 fix: label descriptions (#723)
  • 369ef8d feat: label option for string list command (#722)
  • bb57d11 feat: label option for screenshot upload command (#721)
  • d558211 chore(release): version 3.18.0 [skip ci]
  • 3d1e7e0 docs: update the Files Management article (#720)
  • 8d00c4b feat: strings based project functionality (#714)
  • e14a7a1 chore(release): version 3.17.0 [skip ci]
  • b19d8e0 build(deps): remove findsecbugs-plugin (#716)
  • 881c476 chore: add codecov.yml (#715)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@stackblitz StackBlitz
Copy link

stackblitz bot commented Apr 17, 2024

Review PR in StackBlitz Codeflow Run & review this pull request in StackBlitz Codeflow.

@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Apr 17, 2024

⚠️ No Changeset found

Latest commit: 26206ee

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@X-oss-byte @snyk-bot