[Snyk] Upgrade: , bip39 #673

X-oss-byte · 2024-09-05T22:49:43Z

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

@ganache/utils
from 0.8.0 to 0.9.2 | 3 versions ahead of your current version | 9 months ago
on 2023-12-21
bip39
from 3.0.4 to 3.1.0 | 1 version ahead of your current version | 2 years ago
on 2023-02-25

Issues fixed by the recommended upgrade:

Issue	Score	Exploit Maturity
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577916	634	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577917	634	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577918	634	Proof of Concept

Release notes

Package name: @ganache/utils

0.9.2 - 2023-12-21
0.9.1 - 2023-08-22
0.9.0 - 2023-07-05
0.8.0 - 2023-04-13

from @ganache/utils GitHub release notes

Package name: bip39

3.1.0 - 2023-02-25
3.1.0
3.0.4 - 2021-04-27
3.0.4

from bip39 GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.
Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade: - @ganache/utils from 0.8.0 to 0.9.2. See this package in npm: https://www.npmjs.com/package/@ganache/utils - bip39 from 3.0.4 to 3.1.0. See this package in npm: https://www.npmjs.com/package/bip39 See this project in Snyk: https://app.snyk.io/org/sammyfilly/project/ac32de5b-8265-4bbf-952e-3307b2bb3223?utm_source=github&utm_medium=referral&page=upgrade-pr

stackblitz · 2024-09-05T22:49:46Z

Run & review this pull request in StackBlitz Codeflow.

changeset-bot · 2024-09-05T22:49:46Z

⚠️ No Changeset found

Latest commit: db7694e

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

sourcery-ai

We have skipped reviewing this pull request. Here's why:

It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
We don't review packaging changes - Let us know if you'd like us to change this.

sourcery-ai bot reviewed Sep 5, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade: , bip39 #673

[Snyk] Upgrade: , bip39 #673

X-oss-byte commented Sep 5, 2024

stackblitz bot commented Sep 5, 2024

changeset-bot bot commented Sep 5, 2024

sourcery-ai bot left a comment

[Snyk] Upgrade: , bip39 #673

Are you sure you want to change the base?

[Snyk] Upgrade: , bip39 #673

Conversation

X-oss-byte commented Sep 5, 2024

Snyk has created this PR to upgrade multiple dependencies.

Issues fixed by the recommended upgrade:

stackblitz bot commented Sep 5, 2024

changeset-bot bot commented Sep 5, 2024

⚠️ No Changeset found

sourcery-ai bot left a comment

Choose a reason for hiding this comment