Skip to content
This repository has been archived by the owner on Oct 27, 2022. It is now read-only.

[Snyk] Fix for 1 vulnerabilities #326

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • unbrake-frontend/package.json
    • unbrake-frontend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 591/1000
Why? Recently disclosed, Has a fix available, CVSS 5.9
Denial of Service
SNYK-JS-NODEFETCH-674311
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: react-router The new version differs by 37 commits.
  • 0c9a10d v5.0.1
  • b0bb959 Update package locks
  • 8ed894f add hooks option to scroll restoration docs (#6762)
  • 0f5d701 Small code change in matchPath.md (#6761)
  • caa9950 esModule: false fix read only TypeError in expors (#6758)
  • bd436ce Merge branch 'website'
  • a38ef04 Don't override path in NavLink component. Fixes #6613 (#6623)
  • 97f0eee Removing "update blocking" content (#6652)
  • 56c829b fix(react-router): Allow string and object refs in withRouter (#6680)
  • aeccaeb Updated some devDependencies to fix audit warnings (#6741)
  • 48a97bf Fix build on windows. (#6740)
  • 82ce94c prevent reload of page if an error occurs in onClick event handler (#6711)
  • 7bd1407 matchPath: Fixed exception thrown if `path` is undefined (#6715)
  • 67df646 use huskyrc file (#6706)
  • 29155fc Update matchPath docs (#6703)
  • 3ccbd19 Add a default value for context in StaticRouter.navigateTo (#6698)
  • f7c8e56 Fix website internal links not prepended with public path (#6678)
  • 992af48 Switch to mini-create-router-context (#6692)
  • 2ce1d32 call createLocation on 'to' regardless of type (#6690)
  • 10d78bb withRouter: Directly use RouterContext instead of Route. (#6685)
  • 017f692 Fixed maximum update depth exceeded caused by Redirect. (#6674)
  • f9849c8 Pin create-react-context to 0.2.2 (#6682)
  • 6a99c93 fix: set DisplayName correctly for Named Context (#6677)
  • 13b044a Document Redirect sensitive prop. (#6676)

See the full diff

Package name: react-router-dom The new version differs by 37 commits.
  • 0c9a10d v5.0.1
  • b0bb959 Update package locks
  • 8ed894f add hooks option to scroll restoration docs (#6762)
  • 0f5d701 Small code change in matchPath.md (#6761)
  • caa9950 esModule: false fix read only TypeError in expors (#6758)
  • bd436ce Merge branch 'website'
  • a38ef04 Don't override path in NavLink component. Fixes #6613 (#6623)
  • 97f0eee Removing "update blocking" content (#6652)
  • 56c829b fix(react-router): Allow string and object refs in withRouter (#6680)
  • aeccaeb Updated some devDependencies to fix audit warnings (#6741)
  • 48a97bf Fix build on windows. (#6740)
  • 82ce94c prevent reload of page if an error occurs in onClick event handler (#6711)
  • 7bd1407 matchPath: Fixed exception thrown if `path` is undefined (#6715)
  • 67df646 use huskyrc file (#6706)
  • 29155fc Update matchPath docs (#6703)
  • 3ccbd19 Add a default value for context in StaticRouter.navigateTo (#6698)
  • f7c8e56 Fix website internal links not prepended with public path (#6678)
  • 992af48 Switch to mini-create-router-context (#6692)
  • 2ce1d32 call createLocation on 'to' regardless of type (#6690)
  • 10d78bb withRouter: Directly use RouterContext instead of Route. (#6685)
  • 017f692 Fixed maximum update depth exceeded caused by Redirect. (#6674)
  • f9849c8 Pin create-react-context to 0.2.2 (#6682)
  • 6a99c93 fix: set DisplayName correctly for Named Context (#6677)
  • 13b044a Document Redirect sensitive prop. (#6676)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

…on to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311
@codeclimate
Copy link

codeclimate bot commented Sep 24, 2020

Code Climate has analyzed commit 6c35a93 and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (70% is the threshold).

This pull request will bring the total coverage in the repository to 36.9%.

View more on Code Climate.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant