[Snyk] Upgrade: ,

[Sandani2000]

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

@react-pdf/renderer
from 3.1.13 to 3.4.4 | 20 versions ahead of your current version | 5 months ago
on 2024-04-25
@stripe/react-stripe-js
from 2.3.1 to 2.8.0 | 12 versions ahead of your current version | a month ago
on 2024-08-14

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Use of Weak Hash SNYK-JS-CRYPTOJS-6028119	574	No Known Exploit
	Malicious Package SNYK-JS-LEGACYSWCHELPERS-7647380	574	Mature

Release notes

Package name: @react-pdf/renderer

• 3.4.4 - 2024-04-25
  

  Patch Changes

  • Updated dependencies [22a34a9]:
    • @ react-pdf/[email protected]
    • @ react-pdf/[email protected]
    • @ react-pdf/[email protected]
    • @ react-pdf/[email protected]
• 3.4.3 - 2024-04-23
  

  Patch Changes

  • Updated dependencies [67c265a, 713690c]:
    • @ react-pdf/[email protected]
    • @ react-pdf/[email protected]
    • @ react-pdf/[email protected]
• 3.4.2 - 2024-03-27
• 3.4.1 - 2024-03-25
• 3.4.0 - 2024-03-15
• 3.3.8 - 2024-02-08
• 3.3.7 - 2024-02-06
• 3.3.6 - 2024-02-06
• 3.3.5 - 2024-02-03
• 3.3.4 - 2024-01-23
• 3.3.3 - 2024-01-22
• 3.3.2 - 2024-01-22
• 3.3.1 - 2024-01-20
• 3.3.0 - 2024-01-19
• 3.2.1 - 2024-01-18
• 3.2.0 - 2024-01-18
• 3.1.17 - 2024-01-15
• 3.1.16 - 2024-01-15
• 3.1.15 - 2024-01-11
• 3.1.14 - 2023-10-25
• 3.1.13 - 2023-10-10

from @react-pdf/renderer GitHub release notes

Package name: @stripe/react-stripe-js

• 2.8.0 - 2024-08-14
  

  New features

  • Update EmbeddedCheckoutProvider prop types (#525)

  Fixes

  Changed

• 2.7.3 - 2024-07-02
  

  Fixes

  • Bump ws from 7.4.6 to 7.5.10 (#508)
• 2.7.2 - 2024-06-27
  
  • chore(deps): update @ stripe/stripe-js to support v4 (#513)
  • v2.7.1

  New features

  Fixes

  Changed

• 2.7.1 - 2024-05-06
  

  Fixes

  • Run @ arethetypeswrong/cli in CI + before publish (#493)
  • Bump tar from 6.1.11 to 6.2.1 (#490)
• 2.7.0 - 2024-04-08
  

  New features

  • Add onLoadError to card and cardNumber elements (#488)

  Fixes

  • Remove cart Element (#487)

  Changed

  • Bump express from 4.17.1 to 4.19.2 (#486)
  • Update @ stripe/stripe-js dev dependency (#489)
• 2.6.2 - 2024-03-14
  

  Fixes

  • Fix dependency (#484)
• 2.6.1 - 2024-03-14
  

  Changed

  • Bump es5-ext from 0.10.53 to 0.10.63 (#475)
  • @ stripe/stripe-js 3.0.9 (#483)
• 2.6.0 - 2024-03-11
  

  New features

  • Update stripe-js for Custom Checkout types (#479)
  • upgrade rollup (#480)
  • Add support for fetchClientSecret param to Embedded Checkout (#481)

  Fixes

  Changed

• 2.5.1 - 2024-02-26
  

  New features

  Fixes

  • Remove cyclic dependency (#474)

  • Bump ip from 1.1.5 to 1.1.9 (#473)

  Changed

• 2.5.0 - 2024-02-12
  

  Changed

  • update peer dependency (#471)
• 2.4.0 - 2023-11-21
• 2.3.2 - 2023-11-13
• 2.3.1 - 2023-10-02

from @stripe/react-stripe-js GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs