Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[Snyk] Upgrade @grpc/grpc-js from 1.10.3 to 1.12.6 #450

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade @grpc/grpc-js from 1.10.3 to 1.12.6 #450

wants to merge 1 commit into from

Conversation

j-mendez
Copy link
Contributor

snyk-top-banner

Snyk has created this PR to upgrade @grpc/grpc-js from 1.10.3 to 1.12.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 19 versions ahead of your current version.

  • The recommended version was released 21 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
medium severity Uncontrolled Resource Consumption
SNYK-JS-GRPCGRPCJS-7242922		 559 No Known Exploit
Release notes
Package name: @grpc/grpc-js
  • 1.12.6 - 2025-02-04
    • Allow garbage collection of IDLE channels (#2896)
  • 1.12.5 - 2024-12-18
    • Prioritize HTTP status errors over message decoding errors (#2873)
  • 1.12.4 - 2024-12-04
    • Prioritize reporting UNAVAILABLE status when handing connection drops (#2862)
  • 1.12.3 - 2024-12-02
    • Report UNAVAILABLE if possible when handling connection drops (#2861)
  • 1.12.2 - 2024-10-09
    • fix LrsCallState statsTimer memory leak (#2891 contributed by @ gfrancz) (backported in #2898)
  • 1.12.1 - 2024-10-08
    • Fix a bug that could cause the client to not receive some resource updates (#2880)
  • 1.12.0 - 2024-10-03
    • Enable dualstack socket support by default in xDS clients (#2832)
  • 1.11.3 - 2024-09-17
  • 1.11.2 - 2024-09-05
  • 1.11.1 - 2024-07-16
  • 1.11.0 - 2024-07-15
  • 1.10.11 - 2024-07-10
  • 1.10.10 - 2024-06-24
  • 1.10.9 - 2024-06-10
  • 1.10.8 - 2024-05-15
  • 1.10.7 - 2024-05-01
  • 1.10.6 - 2024-04-03
  • 1.10.5 - 2024-04-01
  • 1.10.4 - 2024-03-26
  • 1.10.3 - 2024-03-15
from @grpc/grpc-js GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade @grpc/grpc-js from 1.10.3 to 1.12.6
a2ce7f9 
Snyk has created this PR to upgrade @grpc/grpc-js from 1.10.3 to 1.12.6.

See this package in npm:
@grpc/grpc-js

See this project in Snyk:
https://app.snyk.io/org/j-mendez/project/a856e7ec-3c81-4251-a6c3-1974682eed73?utm_source=github&utm_medium=referral&page=upgrade-pr
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@j-mendez @snyk-bot