[Snyk] Upgrade: , , , dayjs, newrelic, next #1155
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade:
- @aws-sdk/credential-provider-node from 3.632.0 to 3.635.0.
See this package in npm: https://www.npmjs.com/package/@aws-sdk/credential-provider-node
- @aws-sdk/client-ses from 3.632.0 to 3.636.0.
See this package in npm: https://www.npmjs.com/package/@aws-sdk/client-ses
- @next/third-parties from 14.2.5 to 14.2.6.
See this package in npm: https://www.npmjs.com/package/@next/third-parties
- dayjs from 1.11.12 to 1.11.13.
See this package in npm: https://www.npmjs.com/package/dayjs
- newrelic from 12.1.1 to 12.2.0.
See this package in npm: https://www.npmjs.com/package/newrelic
- next from 14.2.5 to 14.2.6.
See this package in npm: https://www.npmjs.com/package/next
See this project in Snyk:
https://app.snyk.io/org/k2xl/project/cf09253a-8e4c-4f7f-b75f-a1763e5c78eb?utm_source=github&utm_medium=referral&page=upgrade-pr
# for free
to join this conversation on GitHub.
Already have an account?
# to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯♂ The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@aws-sdk/credential-provider-node
from 3.632.0 to 3.635.0 | 1 version ahead of your current version | 23 days ago
on 2024-08-20
@aws-sdk/client-ses
from 3.632.0 to 3.636.0 | 2 versions ahead of your current version | 22 days ago
on 2024-08-21
@next/third-parties
from 14.2.5 to 14.2.6 | 1 version ahead of your current version | 21 days ago
on 2024-08-21
dayjs
from 1.11.12 to 1.11.13 | 1 version ahead of your current version | 23 days ago
on 2024-08-20
newrelic
from 12.1.1 to 12.2.0 | 1 version ahead of your current version | 24 days ago
on 2024-08-19
next
from 14.2.5 to 14.2.6 | 1 version ahead of your current version | 21 days ago
on 2024-08-21
Release notes
Package name: @aws-sdk/credential-provider-node
-
3.635.0 - 2024-08-20
- client-ecs: Documentation only release to address various tickets (a4a0836a)
- client-opensearchserverless: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. (7daa541c)
- client-s3: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. (b474584f)
- codegen: add Smithy RPCv2 CBOR to list of protocols (#6096) (5154d4f1)
-
3.632.0 - 2024-08-15
- clients: update client endpoints as of 2024-08-15 (05ff22bf)
- client-s3: Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API. (f31c6ea7)
- client-docdb: This release adds Global Cluster Failover capability which enables you to change your global cluster's primary AWS region, the region that serves writes, during a regional outage. Performing a failover action preserves your Global Cluster setup. (62c6973c)
- client-iam: Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. (2e20e957)
- client-ecs: This release introduces a new ContainerDefinition configuration to support the customer-managed keys for ECS container restart feature. (e56be698)
- util-endpoints: parseArn when resourcePath contains both delimiters (#6387) (63cb133f)
- credential-providers: avoid sharing http2 requestHandler with inner STS (#6389) (d7b16106)
- lib-dynamodb: missing
from @aws-sdk/credential-provider-node GitHub release notes3.635.0(2024-08-20)
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.635.0.zip
3.632.0(2024-08-15)
New Features
Bug Fixes
@ smithy/coredependency in@ aws-sdk/lib-dynamodb(#6384) (84fd78ba)For list of updated packages, view updated-packages.md in assets-3.632.0.zip
Package name: @aws-sdk/client-ses
-
3.636.0 - 2024-08-21
- turbo: simplify build scripts in package.json (#6366) (614d98e1)
- link to smithy/middleware-retry in Notable Changes (#6397) (31263194)
- clients: update client endpoints as of 2024-08-21 (f8aaf1df)
- client-ses: Enable email receiving customers to provide SES with access to their S3 buckets via an IAM role for "Deliver to S3 Action" (aafc6ebd)
- client-entityresolution: Increase the mapping attributes in Schema to 35. (d038be36)
- client-glue: Add optional field JobRunQueuingEnabled to CreateJob and UpdateJob APIs. (b3bbf579)
- client-securityhub: Security Hub documentation and definition updates (17db5f7e)
- client-lambda: Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. (6fff3639)
- client-ec2: DescribeInstanceStatus now returns health information on EBS volumes attached to Nitro instances (1baa7ea8)
-
3.635.0 - 2024-08-20
- client-ecs: Documentation only release to address various tickets (a4a0836a)
- client-opensearchserverless: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. (7daa541c)
- client-s3: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. (b474584f)
- codegen: add Smithy RPCv2 CBOR to list of protocols (#6096) (5154d4f1)
-
3.632.0 - 2024-08-15
- clients: update client endpoints as of 2024-08-15 (05ff22bf)
- client-s3: Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API. (f31c6ea7)
- client-docdb: This release adds Global Cluster Failover capability which enables you to change your global cluster's primary AWS region, the region that serves writes, during a regional outage. Performing a failover action preserves your Global Cluster setup. (62c6973c)
- client-iam: Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. (2e20e957)
- client-ecs: This release introduces a new ContainerDefinition configuration to support the customer-managed keys for ECS container restart feature. (e56be698)
- util-endpoints: parseArn when resourcePath contains both delimiters (#6387) (63cb133f)
- credential-providers: avoid sharing http2 requestHandler with inner STS (#6389) (d7b16106)
- lib-dynamodb: missing
from @aws-sdk/client-ses GitHub release notes3.636.0(2024-08-21)
Chores
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.636.0.zip
3.635.0(2024-08-20)
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.635.0.zip
3.632.0(2024-08-15)
New Features
Bug Fixes
@ smithy/coredependency in@ aws-sdk/lib-dynamodb(#6384) (84fd78ba)For list of updated packages, view updated-packages.md in assets-3.632.0.zip
Package name: @next/third-parties
-
14.2.6 - 2024-08-21
- Ensure fetch cache TTL is updated properly (#69164)
-
14.2.5 - 2024-07-10
from @next/third-parties GitHub release notesNote
This release is backporting bug fixes. It does not include all pending features/changes on canary.
Core Changes
Package name: dayjs
-
1.11.13 - 2024-08-20
- customParseFormat supports Q quter / w ww weekOfYear (#2705) (8ca74f1)
-
1.11.12 - 2024-07-18
- Add NegativeYear Plugin support (#2640) (6a42e0d)
- add UTC support to negativeYear plugin (#2692) (f3ef705)
- Fix zero offset issue when use tz with locale (#2532) (d0e6738)
- Improve typing for min/max plugin (#2573) (4fbe94a)
- timezone plugin currect parse UTC tz (#2693) (b575c81)
from dayjs GitHub release notes1.11.13 (2024-08-20)
Bug Fixes
1.11.12 (2024-07-18)
Bug Fixes
Package name: newrelic
-
12.2.0 - 2024-08-19
- Added instrumentation support for Express 5 beta (#2476) (06a4c2f)
- This will be experimental until
- Updated
- Removed reference to
- Updated compatibility report (#2487) (c0a5e64)
- Reverted to upstream
- Updated aggregators unit tests to node:test (#2481) (fd2d76f)
-
12.1.1 - 2024-08-15
- Updated
- Updated
- Updated the
- Updated pino instrumentation to separate the wrapping of asJson into its own function (#2464) (81fdde1)
- Updated compatibility report (#2460) (a4570e9)
- Removed limit on superagent versioned testing (#2456) (b4b6a6b)
from newrelic GitHub release notesv12.2.0 (2024-08-19)
Features
express@5.0.0is generally availableBug fixes
koainstrumentation to properly get the matched route name and to handle changes in@ koa/router@13.0.0(#2486) (0c2ee2f)Documentation
@ newrelic/nextin README (#2479) (8740539)Miscellaneous chores
require-in-the-middle(#2473) (9bbc41c)Support statement:
We recommend updating to the latest agent version as soon as it's available. If you can't upgrade to the latest version, update your agents to a version no more than 90 days old. Read more about keeping agents up to date. (https://docs.newrelic.com/docs/new-relic-solutions/new-relic-one/install-configure/update-new-relic-agent/)
See the New Relic Node.js agent EOL policy for information about agent releases and support dates. (https://docs.newrelic.com/docs/apm/agents/nodejs-agent/getting-started/nodejs-agent-eol-policy/)
v12.1.1 (2024-08-15)
Bug fixes
amqplibinstrumentation to properly parse host/port from connect (#2461) (91636a8)redisinstrumentation to parse host/port when a url is not provided (#2463) (2b67623)kafkajsnode metrics to remove/Namedfrom the name (#2458) (37ce113)Code refactoring
Documentation
Miscellaneous chores
Support statement:
We recommend updating to the latest agent version as soon as it's available. If you can't upgrade to the latest version, update your agents to a version no more than 90 days old. Read more about keeping agents up to date. (https://docs.newrelic.com/docs/new-relic-solutions/new-relic-one/install-configure/update-new-relic-agent/)
See the New Relic Node.js agent EOL policy for information about agent releases and support dates. (https://docs.newrelic.com/docs/apm/agents/nodejs-agent/getting-started/nodejs-agent-eol-policy/)
Package name: next
-
14.2.6 - 2024-08-21
- Ensure fetch cache TTL is updated properly (#69164)
-
14.2.5 - 2024-07-10
from next GitHub release notesNote
This release is backporting bug fixes. It does not include all pending features/changes on canary.
Core Changes
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: