[Snyk] Upgrade nuxt from 2.15.8 to 2.18.1 #22
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade nuxt from 2.15.8 to 2.18.1. See this package in npm: nuxt See this project in Snyk: https://app.snyk.io/org/priya-varshney08/project/cfb2bc69-7363-46ff-9519-7054bb7f3185?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade nuxt from 2.15.8 to 2.18.1.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 11 versions ahead of your current version.
The recommended version was released on 2 months ago.
Issues fixed by the recommended upgrade:
SNYK-JS-PARSEURL-2942134
SNYK-JS-PARSEURL-3023021
SNYK-JS-TAR-6476909
SNYK-JS-BABELTRAVERSE-5962462
SNYK-JS-NTHCHECK-1586032
SNYK-JS-PARSEPATH-2936439
SNYK-JS-BROWSERIFYSIGN-6037026
SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555
SNYK-JS-WS-7266574
SNYK-JS-PARSEURL-2935944
SNYK-JS-PARSEURL-2935947
SNYK-JS-PARSEURL-2936249
SNYK-JS-IP-6240864
SNYK-JS-JSON5-3182856
SNYK-JS-JSON5-3182856
SNYK-JS-TERSER-2806366
SNYK-JS-TERSER-2806366
SNYK-JS-UAPARSERJS-3244450
SNYK-JS-HTMLMINIFIER-3091181
SNYK-JS-PARSEURL-3024398
Release notes
Package name: nuxt
-
2.18.1 - 2024-06-28
- webpack: Depend on earlier version of
- Daniel Roe (@ danielroe)
-
2.18.0 - 2024-06-27
- webpack: Migrate to
- vue-app: Don't throw if we can't read
- config: Add back md4 monkey-patch for wider ecosystem (#27865)
- Bump internal versions (9e829b59a)
- Add non-applicable advisory GHSA-3h5v-q93c-6h6q (5ef7311f0)
- Daniel Roe (@ danielroe)
-
2.17.4 - 2024-06-14
- types: Bump
- generator: Use maintained
- vue-app: Prevent double page mount (#10874)
- core: Don't skip loading runtime modules if one is improperly resolved (#10193)
- vue-app: Prevent error page mounting twice (#27484)
- Update repository field for
- Mark GHSA-2p57-rm9w-gvfp as not applicable (4782e3c90)
- Update repository urls (07668eafb)
- Mark GHSA-grv7-fg5c-xmjg as not applicable (eeb6207c9)
- Refresh yarn lockfile (#27612)
- Properly close
- Wait for navigation in redirect test (e74715606)
- Don't register promise in external nav (#27468)
- Add label PR workflow (#25580)
- Make edge releases on commit basis (1eb08d1ba)
- Remove ref for release workflows (06f91349f)
- Don't skip tests from branch named
- Update test conditions (940fc7dcb)
- Dmitriy (@ Kolobok12309)
- Ivan Ehreshi (@ IvanEh)
- Daniel Roe (@ danielroe)
- Damian Głowala (@ DamianGlowala)
-
2.17.3 - 2024-01-12
-
2.17.2 - 2023-10-24
-
2.17.1 - 2023-07-14
-
2.17.0 - 2023-06-09
-
2.16.3 - 2023-03-17
-
2.16.2 - 2023-03-01
-
2.16.1 - 2023-02-13
-
2.16.0 - 2023-02-03
-
2.15.8 - 2021-08-11
from nuxt GitHub release notes👉 Changelog
compare changes
🩹 Fixes
mkdirp(f67056b9e)❤️ Contributors
👉 Changelog
compare changes
🚀 Enhancements
memfs(#27652)🩹 Fixes
sessionStorage(#27662)🏡 Chore
❤️ Contributors
👉 Changelog
compare changes
🩹 Fixes
serve-statictypes to v1.15.7 (1c44c376d)html-minifier-terser(#26914)🏡 Chore
@ nuxt/config(c283cc039)✅ Tests
pagein e2e tests (1700aa131)🤖 CI
dev(2a5d05257)❤️ Contributors
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
[//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"nuxt","from":"2.15.8","to":"2.18.1"}],"env":"prod","hasFixes":true,"isBreakingChange":false,"isMajorUpgrade":false,"issuesToFix":[{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-2942134","issue_id":"SNYK-JS-PARSEURL-2942134","priority_score":591,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.4","score":270},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Cross-site Scripting (XSS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-3023021","issue_id":"SNYK-JS-PARSEURL-3023021","priority_score":646,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Server-side Request Forgery (SSRF)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-TAR-6476909","issue_id":"SNYK-JS-TAR-6476909","priority_score":646,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Uncontrolled Resource Consumption ('Resource Exhaustion')"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-BABELTRAVERSE-5962462","issue_id":"SNYK-JS-BABELTRAVERSE-5962462","priority_score":786,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"9.3","score":465},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Incomplete List of Disallowed Inputs"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-NTHCHECK-1586032","issue_id":"SNYK-JS-NTHCHECK-1586032","priority_score":696,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEPATH-2936439","issue_id":"SNYK-JS-PARSEPATH-2936439","priority_score":686,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Authorization Bypass Through User-Controlled Key"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-BROWSERIFYSIGN-6037026","issue_id":"SNYK-JS-BROWSERIFYSIGN-6037026","priority_score":589,"priority_score_factors":[{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555","issue_id":"SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555","priority_score":691,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.4","score":370},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Path Traversal"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WS-7266574","issue_id":"SNYK-JS-WS-7266574","priority_score":696,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-2935944","issue_id":"SNYK-JS-PARSEURL-2935944","priority_score":591,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.4","score":270},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Cross-site Scripting (XSS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-2935947","issue_id":"SNYK-JS-PARSEURL-2935947","priority_score":561,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"4.8","score":240},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Information Exposure"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-2936249","issue_id":"SNYK-JS-PARSEURL-2936249","priority_score":791,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"9.4","score":470},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Server-side Request Forgery (SSRF)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-IP-6240864","issue_id":"SNYK-JS-IP-6240864","priority_score":751,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"8.6","score":430},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Server-side Request Forgery (SSRF)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-JSON5-3182856","issue_id":"SNYK-JS-JSON5-3182856","priority_score":641,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"6.4","score":320},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-JSON5-3182856","issue_id":"SNYK-JS-JSON5-3182856","priority_score":641,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"6.4","score":320},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-TERSER-2806366","issue_id":"SNYK-JS-TERSER-2806366","priority_score":479,"priority_score_factors":[{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-TERSER-2806366","issue_id":"SNYK-JS-TERSER-2806366","priority_score":479,"priority_score_factors":[{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-UAPARSERJS-3244450","issue_id":"SNYK-JS-UAPARSERJS-3244450","priority_score":586,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HTMLMINIFIER-3091181","issue_id":"SNYK-JS-HTMLMINIFIER-3091181","priority_score":586,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PARSEURL-3024398","issue_id":"SNYK-JS-PARSEURL-3024398","priority_score":571,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"5","score":250},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Improper Input Validation"}],"prId":"f0156535-342e-42e2-89fd-66b11edcfd64","prPublicId":"f0156535-342e-42e2-89fd-66b11edcfd64","packageManager":"npm","priorityScoreList":[591,646,646,786,696,686,589,691,696,591,561,791,751,641,479,586,586,571],"projectPublicId":"cfb2bc69-7363-46ff-9519-7054bb7f3185","projectUrl":"https://app.snyk.io/org/priya-varshney08/project/cfb2bc69-7363-46ff-9519-7054bb7f3185?utm_source=github&utm_medium=referral&page=upgrade-pr","prType":"upgrade","templateFieldSources":{"branchName":"default","commitMessage":"default","description":"default","title":"default"},"templateVariants":["priorityScore"],"type":"auto","upgrade":["SNYK-JS-PARSEURL-2942134","SNYK-JS-PARSEURL-3023021","SNYK-JS-TAR-6476909","SNYK-JS-BABELTRAVERSE-5962462","SNYK-JS-NTHCHECK-1586032","SNYK-JS-PARSEPATH-2936439","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555","SNYK-JS-WS-7266574","SNYK-JS-PARSEURL-2935944","SNYK-JS-PARSEURL-2935947","SNYK-JS-PARSEURL-2936249","SNYK-JS-IP-6240864","SNYK-JS-JSON5-3182856","SNYK-JS-JSON5-3182856","SNYK-JS-TERSER-2806366","SNYK-JS-TERSER-2806366","SNYK-JS-UAPARSERJS-3244450","SNYK-JS-HTMLMINIFIER-3091181","SNYK-JS-PARSEURL-3024398"],"upgradeInfo":{"versionsDiff":11,"publishedDate":"2024-06-28T11:35:15.434Z"},"vulns":["SNYK-JS-PARSEURL-2942134","SNYK-JS-PARSEURL-3023021","SNYK-JS-TAR-6476909","SNYK-JS-BABELTRAVERSE-5962462","SNYK-JS-NTHCHECK-1586032","SNYK-JS-PARSEPATH-2936439","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555","SNYK-JS-WS-7266574","SNYK-JS-PARSEURL-2935944","SNYK-JS-PARSEURL-2935947","SNYK-JS-PARSEURL-2936249","SNYK-JS-IP-6240864","SNYK-JS-JSON5-3182856","SNYK-JS-JSON5-3182856","SNYK-JS-TERSER-2806366","SNYK-JS-TERSER-2806366","SNYK-JS-UAPARSERJS-3244450","SNYK-JS-HTMLMINIFIER-3091181","SNYK-JS-PARSEURL-3024398"]}'