Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[Snyk] Fix for 1 vulnerabilities #107

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Fix for 1 vulnerabilities #107

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-HTTPCACHESEMANTICS-3248783		 No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: gatsby The new version differs by 130 commits.
  • f3f1bbc chore(release): Publish
  • c410082 fix(gatsby-source-drupal): check relationships type exists on node before filtering (#33181) (#33228)
  • f3f2834 fix(gatsby-source-wordpress): fix failing test docker setup (#33163)
  • fe2f09b feat(gatsby): let serve use getServerData headers (#33159)
  • fc66250 fix(gatsby): Assign parentSpan to activities that were missing them (#33122)
  • 91187da feat(gatsby-source-drupal): Add tracing for full/delta fetches and http requests (#33142)
  • d31645c chore(gatsby): add webpack file to export same version (#33126)
  • 44afaf5 fix(gatsby): fix hydration flicker on initial render of ssr page (#33134)
  • f1141a0 docs: Fix broken link on Getting Started with MDX page (#33148)
  • f921277 chore(release): Publish next
  • b1168af chore(gatsby-plugin-gatsby-cloud): fix copy type file (#33156)
  • 14059da Remove <title> from inside <main> (#33150)
  • 85645cd chore(release): Publish next
  • 1720988 feat(gatsby-transformer-documentationjs): move createTypes to createSchemaCustomization (#33149)
  • 3d05986 feat(gatsby-plugin-styled-components): Add ability to disable vendor prefixes (#33147)
  • 323920d chore(gatsby): add environment variable for setting tracing config file (#32513)
  • 425b8f5 chore(release): Publish next
  • 2f2880e fix(gatsby-source-drupal): handle edge case with deleting nodes (#33143)
  • eb552d1 chore(docs): Add note to Storybook guide about StaticImage (#33127)
  • 4ff5026 docs: fix typo (#33137)
  • 81f35ff docs(gatsby-plugin-gatsby-cloud): fix typo: asterix -> asterisk (#33135)
  • 4837b72 feat(gatsby-plugin-page-creator): Fix gatsby plugin page creator v4 (#33120)
  • 3401149 feat(gatsby): Deprecate schema-related APIs in sourceNodes (#32291)
  • 62683f5 fix(gatsby-plugin-gatsby-cloud): Emit CREATE_FILE_NODE in onPostBootstrap (#33136)

See the full diff

Package name: gatsby-plugin-sharp The new version differs by 250 commits.
  • 83cd408 chore(release): Publish
  • d6f0318 chore: use packlist for cleanup-package-dir (#26657)
  • aa300f4 chore(docs):fixed file names and links in query-execution (#26680)
  • 11ab72a chore(docs): fixed some links in query-execution (#26555)
  • fed2619 fix(docs): query filters -> update dictionary, code fences, fix code, brand name (#26408)
  • 7de5f18 add code fences (#26409)
  • 823e473 fix(docs): schema -> fix 404, remove deleted page from sidebar, apply redirects (#26461)
  • 21b94df Docs - Remove not inclusive words (#26294)
  • 652af04 fix(docs): schema -> code fences, code fix (#26462)
  • 6b96972 chore(docs): Update GraphQL spelling in README.md (#26693)
  • c2aeded fix(gatsby): properly unlock processes onExit (#26670)
  • 93fdc09 fix(gatsby): only enable debugger when argument is given (#26669)
  • 7e83ace chore(docs): fix typos (#26682)
  • c40434a chore(docs): Fix a typo (#26665)
  • 18f6b4d chore(docs): Fix typos (#26663)
  • dedd37f chore(gatsby-plugin-sharp, gatsby-transformer-sharp): update dependencies (#26259)
  • 7975b91 chore(gatsby-recipes): Add a contributing.md to recipes (#26583)
  • ac72bfb chore(release): Publish
  • 703678e Admin/recipes gui (#26243)
  • 04c75bb fix(gatsby): fix error from ts conversion (#26681)
  • 25e3a63 fix(gatsby): fix materialization edge case with nullish values (#26677)
  • 19020c2 chore(benchmarks): set semver to match any patch/minor for most deps (#26679)
  • 608f40c chore: cherrypick Renovate updates (#26582)
  • 6ba68f8 feat(gatsby): Support React 17's new JSX Transform (#26652)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot