Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[Snyk] Upgrade: , #217

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade: , #217

wants to merge 1 commit into from

Conversation

tiff-es
Copy link
Owner

@tiff-es tiff-es commented Aug 8, 2024

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name Versions Released on

@babel/core
from 7.4.5 to 7.24.9 | 128 versions ahead of your current version | 24 days ago
on 2024-07-15
@babel/preset-env
from 7.4.5 to 7.24.8 | 110 versions ahead of your current version | a month ago
on 2024-07-11

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Prototype Pollution
SNYK-JS-LODASH-608086		 472 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-6139239		 472 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-PATHPARSE-1077067		 472 Proof of Concept
critical severity Incomplete List of Disallowed Inputs
SNYK-JS-BABELTRAVERSE-5962462		 472 Proof of Concept
high severity Code Injection
SNYK-JS-LODASH-1040724		 472 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-567746		 472 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 472 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 472 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-BROWSERSLIST-1090194		 472 Proof of Concept
medium severity Prototype Pollution
SNYK-JS-JSON5-3182856		 472 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASH-1018905		 472 Proof of Concept
Release notes
Package name: @babel/core
  • 7.24.9 - 2024-07-15

    v7.24.9 (2024-07-15)

    🐛 Bug Fix

    💅 Polish

    • babel-generator, babel-plugin-transform-optional-chaining

    🏠 Internal

    • babel-helper-module-transforms

    Committers: 5

  • 7.24.8 - 2024-07-11

    v7.24.8 (2024-07-11)

    Thanks @ H0onnn, @ jkup and @ SreeXD for your first pull requests!

    👓 Spec Compliance

    🐛 Bug Fix

    💅 Polish

    Committers: 9

  • 7.24.7 - 2024-06-05

    v7.24.7 (2024-06-05)

    🐛 Bug Fix

    • babel-node
    • babel-traverse
    • babel-helper-transform-fixture-test-runner, babel-plugin-proposal-explicit-resource-management

    🏠 Internal

    • babel-helpers, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

    Committers: 7

  • 7.24.6 - 2024-05-24

    v7.24.6 (2024-05-24)

    Thanks @ amjed-98, @ blakewilson, @ coelhucas, and @ SukkaW for your first PRs!

    🐛 Bug Fix

    • babel-helper-create-class-features-plugin, babel-plugin-transform-class-properties
    • babel-core, babel-generator, babel-plugin-transform-modules-commonjs
    • babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
    • babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3
      • #16483 Fix: throw TypeError if addInitializer is called after finished (@ JLHwung)
    • babel-parser, babel-plugin-transform-typescript

    🏠 Internal

    • babel-core, babel-helpers, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
    • babel-helpers
    • babel-cli, babel-helpers, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
    • babel-parser, babel-traverse
    • Other

    Committers: 9

  • 7.24.5 - 2024-04-29

    v7.24.5 (2024-04-29)

    Thanks @ romgrk and @ sossost for your first PRs!

    🐛 Bug Fix

    • babel-plugin-transform-classes, babel-traverse
    • babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs3

    💅 Polish

    🏠 Internal

    • Other
    • babel-parser
    • babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-helper-module-transforms, babel-helper-split-export-declaration, babel-helper-wrap-function, babel-helpers, babel-plugin-bugfix-firefox-class-in-computed-class-key, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-block-scoping, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx-self, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-traverse
    • babel-plugin-proposal-partial-application, babel-types
    • babel-plugin-transform-class-properties, babel-preset-env

    🏃‍♀️ Performance

    • babel-helpers, babel-preset-env, babel-runtime-corejs3
      • #16357 Performance: improve objectWithoutPropertiesLoose on V8 (@ romgrk)

    Committers: 6

  • 7.24.4 - 2024-04-03
  • 7.24.3 - 2024-03-20
  • 7.24.1 - 2024-03-19
  • 7.24.0 - 2024-02-28
  • 7.23.9 - 2024-01-25
  • 7.23.7 - 2023-12-29
  • 7.23.6 - 2023-12-11
  • 7.23.5 - 2023-11-29
  • 7.23.3 - 2023-11-09
  • 7.23.2 - 2023-10-12
  • 7.23.0 - 2023-09-25
  • 7.22.20 - 2023-09-16
  • 7.22.19 - 2023-09-14
  • 7.22.18 - 2023-09-14
  • 7.22.17 - 2023-09-08
  • 7.22.15 - 2023-09-04
  • 7.22.11 - 2023-08-24
  • 7.22.10 - 2023-08-07
  • 7.22.9 - 2023-07-12
  • 7.22.8 - 2023-07-06
  • 7.22.7 - 2023-07-06
  • 7.22.6 - 2023-07-04
  • 7.22.5 - 2023-06-08
  • 7.22.1 - 2023-05-26
  • 7.22.0 - 2023-05-26
  • 7.21.8 - 2023-05-02
  • 7.21.5 - 2023-04-28
  • 7.21.4 - 2023-03-31
  • 7.21.4-esm.4 - 2023-04-04
  • 7.21.4-esm.3 - 2023-04-04
  • 7.21.4-esm.2 - 2023-04-04
  • 7.21.4-esm.1 - 2023-04-04
  • 7.21.4-esm - 2023-04-04
  • 7.21.3 - 2023-03-14
  • 7.21.0 - 2023-02-20
  • 7.20.12 - 2023-01-04
  • 7.20.7 - 2022-12-22
  • 7.20.5 - 2022-11-28
  • 7.20.2 - 2022-11-04
  • 7.19.6 - 2022-10-20
  • 7.19.3 - 2022-09-27
  • 7.19.1 - 2022-09-14
  • 7.19.0 - 2022-09-05
  • 7.18.13 - 2022-08-22
  • 7.18.10 - 2022-08-01
  • 7.18.9 - 2022-07-18
  • 7.18.6 - 2022-06-27
  • 7.18.5 - 2022-06-13
  • 7.18.2 - 2022-05-25
  • 7.18.0 - 2022-05-19
  • 7.17.12 - 2022-05-16
  • 7.17.10 - 2022-04-29
  • 7.17.9 - 2022-04-06
  • 7.17.8 - 2022-03-18
  • 7.17.7 - 2022-03-14
  • 7.17.5 - 2022-02-17
  • 7.17.4 - 2022-02-15
  • 7.17.3 - 2022-02-15
  • 7.17.2 - 2022-02-08
  • 7.17.0 - 2022-02-02
  • 7.16.12 - 2022-01-22
  • 7.16.10 - 2022-01-19
  • 7.16.7 - 2021-12-31
  • 7.16.5 - 2021-12-13
  • 7.16.0 - 2021-10-29
  • 7.15.8 - 2021-10-06
  • 7.15.5 - 2021-09-04
  • 7.15.4 - 2021-09-02
  • 7.15.0 - 2021-08-04
  • 7.14.8 - 2021-07-20
  • 7.14.6 - 2021-06-14
  • 7.14.5 - 2021-06-09
  • 7.14.3 - 2021-05-17
  • 7.14.2 - 2021-05-12
  • 7.14.0 - 2021-04-29
  • 7.13.16 - 2021-04-20
  • 7.13.15 - 2021-04-08
  • 7.13.14 - 2021-03-29
  • 7.13.13 - 2021-03-26
  • 7.13.10 - 2021-03-08
  • 7.13.8 - 2021-02-26
  • 7.13.1 - 2021-02-23
  • 7.13.0 - 2021-02-22
  • 7.12.17 - 2021-02-18
  • 7.12.16 - 2021-02-11
  • 7.12.13 - 2021-02-03
  • 7.12.10 - 2020-12-09
  • 7.12.9 - 2020-11-24
  • 7.12.8 - 2020-11-23
  • 7.12.7 - 2020-11-20
  • 7.12.3 - 2020-10-16
  • 7.12.1 - 2020-10-15
  • 7.12.0 - 2020-10-14
  • 7.11.6 - 2020-09-03
  • 7.11.5 - 2020-08-31
  • 7.11.4 - 2020-08-20
  • 7.11.1 - 2020-08-04
  • 7.11.0 - 2020-07-30
  • 7.10.5 - 2020-07-14
  • 7.10.4 - 2020-06-30
  • 7.10.3 - 2020-06-19
  • 7.10.2 - 2020-05-30
  • 7.10.1 - 2020-05-27
  • 7.10.0 - 2020-05-26
  • 7.9.6 - 2020-04-29
  • 7.9.0 - 2020-03-20
  • 7.8.7 - 2020-03-05
  • 7.8.6 - 2020-02-27
  • 7.8.4 - 2020-01-30
  • 7.8.3 - 2020-01-13
  • 7.8.0 - 2020-01-12
  • 7.7.7 - 2019-12-19
  • 7.7.5 - 2019-12-06
  • 7.7.4 - 2019-11-22
  • 7.7.2 - 2019-11-06
  • 7.7.0 - 2019-11-05
  • 7.6.4 - 2019-10-10
  • 7.6.3 - 2019-10-08
  • 7.6.2 - 2019-09-23
  • 7.6.0 - 2019-09-06
  • 7.5.5 - 2019-07-17
  • 7.5.4 - 2019-07-09
  • 7.5.0 - 2019-07-04
  • 7.4.5 - 2019-05-21
from @babel/core GitHub release notes
Package name: @babel/preset-env
  • 7.24.8 - 2024-07-11

    v7.24.8 (2024-07-11)

    Thanks @ H0onnn, @ jkup and @ SreeXD for your first pull requests!

    👓 Spec Compliance

    🐛 Bug Fix

    💅 Polish

    Committers: 9

  • 7.24.7 - 2024-06-05

    v7.24.7 (2024-06-05)

    🐛 Bug Fix

    • babel-node
    • babel-traverse
    • babel-helper-transform-fixture-test-runner, babel-plugin-proposal-explicit-resource-management

    🏠 Internal

    • babel-helpers, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

    Committers: 7

  • 7.24.6 - 2024-05-24

    v7.24.6 (2024-05-24)

    Thanks @ amjed-98, @ blakewilson, @ coelhucas, and @ SukkaW for your first PRs!

    🐛 Bug Fix

    • babel-helper-create-class-features-plugin, babel-plugin-transform-class-properties
    • babel-core, babel-generator, babel-plugin-transform-modules-commonjs
    • babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
    • babel-helpers, babel-plugin-proposal-decorators, babel-runtime-corejs3
      • #16483 Fix: throw TypeError if addInitializer is called after finished (@ JLHwung)
    • babel-parser, babel-plugin-transform-typescript

    🏠 Internal

    • babel-core, babel-helpers, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
    • babel-helpers
    • babel-cli, babel-helpers, babel-plugin-external-helpers, babel-plugin-proposal-decorators, babel-plugin-transform-class-properties, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
    • babel-parser, babel-traverse
    • Other

    Committers: 9

  • 7.24.5 - 2024-04-29

    v7.24.5 (2024-04-29)

    Thanks @ romgrk and @ sossost for your first PRs!

    🐛 Bug Fix

    • babel-plugin-transform-classes, babel-traverse
    • babel-helpers, babel-plugin-proposal-explicit-resource-management, babel-runtime-corejs3

    💅 Polish

    🏠 Internal

    • Other
    • babel-parser
    • babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-helper-module-transforms, babel-helper-split-export-declaration, babel-helper-wrap-function, babel-helpers, babel-plugin-bugfix-firefox-class-in-computed-class-key, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-block-scoping, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-plugin-transform-private-property-in-object, babel-plugin-transform-react-jsx-self, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-traverse
    • babel-plugin-proposal-partial-application, babel-types
    • babel-plugin-transform-class-properties, babel-preset-env

    🏃‍♀️ Performance

    • babel-helpers, babel-preset-env, babel-runtime-corejs3
      • #16357 Performance: improve objectWithoutPropertiesLoose on V8 (@ romgrk)

    Committers: 6

  • 7.24.4 - 2024-04-03
  • 7.24.3 - 2024-03-20
  • 7.24.1 - 2024-03-19
  • 7.24.0 - 2024-02-28
  • 7.23.9 - 2024-01-25
  • 7.23.8 - 2024-01-08
  • 7.23.7 - 2023-12-29
  • 7.23.6 - 2023-12-11
  • 7.23.5 - 2023-11-29
  • 7.23.3 - 2023-11-09
  • 7.23.2 - 2023-10-11
  • 7.22.20 - 2023-09-16
  • 7.22.15 - 2023-09-04
  • 7.22.14 - 2023-08-30
  • 7.22.10 - 2023-08-07
  • 7.22.9 - 2023-07-12
  • 7.22.7 - 2023-07-06
  • 7.22.6 - 2023-07-04
  • 7.22.5 - 2023-06-08
  • 7.22.4 - 2023-05-29
  • 7.22.2 - 2023-05-26
  • 7.22.1 - 2023-05-26
  • 7.22.0 - 2023-05-26
  • 7.21.5 - 2023-04-28
  • 7.21.4 - 2023-03-31
  • 7.21.4-esm.4 - 2023-04-04
  • 7.21.4-esm.3 - 2023-04-04
  • 7.21.4-esm.2 - 2023-04-04
  • 7.21.4-esm.1 - 2023-04-04
  • 7.21.4-esm - 2023-04-04
  • 7.20.2 - 2022-11-04
  • 7.19.4 - 2022-10-10
  • 7.19.3 - 2022-09-27
  • 7.19.1 - 2022-09-14
  • 7.19.0 - 2022-09-05
  • 7.18.10 - 2022-08-01
  • 7.18.9 - 2022-07-18
  • 7.18.6 - 2022-06-27
  • 7.18.2 - 2022-05-25
  • 7.18.0 - 2022-05-19
  • 7.17.12 - 2022-05-16
  • 7.17.10 - 2022-04-29
  • 7.16.11 - 2022-01-20
  • 7.16.10 - 2022-01-19
  • 7.16.8 - 2022-01-10
  • 7.16.7 - 2021-12-31
  • 7.16.5 - 2021-12-13
  • 7.16.4 - 2021-11-16
  • 7.16.0 - 2021-10-29
  • 7.15.8 - 2021-10-06
  • 7.15.6 - 2021-09-09
  • 7.15.4 - 2021-09-02
  • 7.15.0 - 2021-08-04
  • 7.14.9 - 2021-08-01
  • 7.14.8 - 2021-07-20
  • 7.14.7 - 2021-06-21
  • 7.14.5 - 2021-06-09
  • 7.14.4 - 2021-05-28
  • 7.14.2 - 2021-05-12
  • 7.14.1 - 2021-05-04
  • 7.14.0 - 2021-04-29
  • 7.13.15 - 2021-04-08
  • 7.13.12 - 2021-03-22
  • 7.13.10 - 2021-03-08
  • 7.13.9 - 2021-03-01
  • 7.13.8 - 2021-02-26
  • 7.13.5 - 2021-02-23
  • 7.13.0 - 2021-02-22
  • 7.12.17 - 2021-02-18
  • 7.12.16 - 2021-02-11
  • 7.12.13 - 2021-02-03
  • 7.12.11 - 2020-12-15
  • 7.12.10 - 2020-12-09
  • 7.12.7 - 2020-11-20
  • 7.12.1 - 2020-10-15
  • 7.12.0 - 2020-10-14
  • 7.11.5 - 2020-08-31
  • 7.11.0 - 2020-07-30
  • 7.10.4 - 2020-06-30
  • 7.10.3 - 2020-06-19
  • 7.10.2 - 2020-05-30
  • 7.10.1 - 2020-05-27
  • 7.10.0 - 2020-05-26
  • 7.9.6 - 2020-04-29
  • 7.9.5 - 2020-04-07
  • 7.9.0 - 2020-03-20
  • 7.8.7 - 2020-03-05
  • 7.8.6 - 2020-02-27
  • 7.8.4 - 2020-01-30
  • 7.8.3 - 2020-01-13
  • 7.8.2 - 2020-01-12
  • 7.8.0 - 2020-01-12
  • 7.7.7 - 2019-12-19
  • 7.7.6 - 2019-12-07
  • 7.7.5 - 2019-12-06
  • 7.7.4 - 2019-11-22
  • 7.7.1 - 2019-11-05
  • 7.7.0 - 2019-11-05
  • 7.6.3 - 2019-10-08
  • 7.6.2 - 2019-09-23
  • 7.6.0 - 2019-09-06
  • 7.5.5 - 2019-07-17
  • 7.5.4 - 2019-07-09
  • 7.5.3 - 2019-07-09
  • 7.5.2 - 2019-07-08
  • 7.5.0 - 2019-07-04
  • 7.4.5 - 2019-05-21
from @babel/preset-env GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

[//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"","from":"babel/core","to":"babel/core"},{"name":"","from":"babel/preset-env","to":"babel/preset-env"}],"env":"prod","hasFixes":true,"isBreakingChange":false,"isMajorUpgrade":false,"issuesToFix":[{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-608086","issue_id":"SNYK-JS-LODASH-608086","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-6139239","issue_id":"SNYK-JS-LODASH-6139239","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PATHPARSE-1077067","issue_id":"SNYK-JS-PATHPARSE-1077067","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-BABELTRAVERSE-5962462","issue_id":"SNYK-JS-BABELTRAVERSE-5962462","priority_score":572,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"9.3","score":465},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Incomplete List of Disallowed Inputs"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-1040724","issue_id":"SNYK-JS-LODASH-1040724","priority_score":467,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.2","score":360},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Code Injection"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-567746","issue_id":"SNYK-JS-LODASH-567746","priority_score":731,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SEMVER-3247795","issue_id":"SNYK-JS-SEMVER-3247795","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SEMVER-3247795","issue_id":"SNYK-JS-SEMVER-3247795","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-BROWSERSLIST-1090194","issue_id":"SNYK-JS-BROWSERSLIST-1090194","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-JSON5-3182856","issue_id":"SNYK-JS-JSON5-3182856","priority_score":427,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.4","score":320},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-1018905","issue_id":"SNYK-JS-LODASH-1018905","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"}],"prId":"a4e97b22-c819-49c1-85c8-cf0cf7c0e6f8","prPublicId":"a4e97b22-c819-49c1-85c8-cf0cf7c0e6f8","packageManager":"npm","priorityScoreList":[472,482,372,572,467,731,482,372,427,372],"projectPublicId":"6c2d1215-2578-4cce-a886-d5df6e4ff820","projectUrl":"https://app.snyk.io/org/boostinwrx/project/6c2d1215-2578-4cce-a886-d5df6e4ff820?utm_source=github&utm_medium=referral&page=upgrade-pr","prType":"upgrade","templateFieldSources":{"branchN...

@snyk-bot
fix: upgrade multiple dependencies with Snyk
a2836f7 
Snyk has created this PR to upgrade:
  - @babel/core from 7.4.5 to 7.24.9.
    See this package in npm: https://www.npmjs.com/package/@babel/core
  - @babel/preset-env from 7.4.5 to 7.24.8.
    See this package in npm: https://www.npmjs.com/package/@babel/preset-env

See this project in Snyk:
https://app.snyk.io/org/boostinwrx/project/6c2d1215-2578-4cce-a886-d5df6e4ff820?utm_source=github&utm_medium=referral&page=upgrade-pr
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tiff-es @snyk-bot