[Snyk-dev] Fix for 2 vulnerabilities #987

snyk-bot · 2021-08-05T15:20:39Z

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Adding or updating a Snyk policy (.snyk) file; this file is required in order to apply Snyk vulnerability patches.
Find out more.

Vulnerabilities that will be fixed

With a Snyk patch:

Severity	Priority Score (*)	Issue	Exploit Maturity
	399/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	No Known Exploit
	399/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:ms:20170412	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

The following vulnerabilities are fixed with a Snyk patch: - https://dev.snyk.io/vuln/npm:debug:20170905 - https://dev.snyk.io/vuln/npm:ms:20170412

dantarian and others added 6 commits August 5, 2021 15:47

Readd bad package.

4ad642b

Remove bad package.

43b8387

Readd bad package.

9e7718a

Remove bad package.

31ee74b

Regenerate package-lock.json.

77f7c07

fix: package.json, package-lock.json & .snyk to reduce vulnerabilities

949b96a

The following vulnerabilities are fixed with a Snyk patch: - https://dev.snyk.io/vuln/npm:debug:20170905 - https://dev.snyk.io/vuln/npm:ms:20170412

dantarian force-pushed the master branch from 9de099c to 0e11662 Compare August 5, 2021 15:30

FauxFaux closed this Aug 17, 2021

agatakrajewska mentioned this pull request Jun 23, 2022

[Snyk-dev] Security upgrade snyk from 1.275.0 to 1.290.1 agatakrajewska/goof#44

Open

mtyates mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 mtyates/goof#93

Open

TalShar mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.227.0 to 1.290.1 TalShar/goof#45

Open

lewksanders mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.251.0 to 1.290.1 lewksanders/goof#70

Open

snyk-bot mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 EC-Snyk/goof#70

Open

aboulmagSnyk mentioned this pull request Jun 23, 2022

[Snyk] Fix for 1 vulnerabilities aboulmagSnyk/goof#55

Open

snyk-bot mentioned this pull request Jun 23, 2022

[Snyk] Fix for 1 vulnerabilities Omrisnyk/goof#104

Open

danielle-snyk mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 danielle-snyk/goof#44

Open

Tatianamsnyk mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.242.2 to 1.290.1 Tatianamsnyk/goof#52

Open

EitanGayor mentioned this pull request Jun 23, 2022

[Snyk] Fix for 1 vulnerabilities EitanGayor/goof#72

Open

lizadavidov mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.234.2 to 1.290.1 lizadavidov/FitMit#43

Open

snyk-bot mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 EricFernandezDC/goof#80

Open

sungsoyeon mentioned this pull request Jun 23, 2022

[Snyk] Fix for 1 vulnerabilities sungsoyeon/nodejs-goof#17

Open

andrewsouthard1 mentioned this pull request Jun 23, 2022

[Snyk] Fix for 1 vulnerabilities andrewsouthard1/goof#57

Open

jonboysalter mentioned this pull request Jun 23, 2022

[Snyk] Security upgrade snyk from 1.228.5 to 1.290.1 jonboysalter/goof#39

Open

jasiskis mentioned this pull request Jun 23, 2022

[Snyk-dev] Security upgrade snyk from 1.277.1 to 1.290.1 jasiskis/goof#39

Open

kremerok mentioned this pull request Jun 24, 2022

[Snyk] Security upgrade snyk from 1.189.0 to 1.290.1 kremerok/goof#48

Open

cliveanderson mentioned this pull request Jun 24, 2022

[Snyk] Security upgrade snyk from 1.240.0 to 1.290.1 cliveanderson/goof#29

Open

This was referenced Jun 24, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 snyk123/goof#72

Open

[Snyk] Security upgrade snyk from 1.228.2 to 1.290.1 TurnerBroadcast/goof#42

Open

FaithTarbert mentioned this pull request Jun 24, 2022

[Snyk] Fix for 1 vulnerabilities FaithTarbert/nodejs-goof#31

Open

SnykyBill mentioned this pull request Jun 24, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 SnykyBill/goof#40

Open

elson-snyk mentioned this pull request Jun 24, 2022

[Snyk] Security upgrade snyk from 1.260.0 to 1.290.1 elson-snyk/goof#32

Open

This was referenced Jun 24, 2022

[Snyk] Security upgrade snyk from 1.278.1 to 1.290.1 subsy/goof#33

Open

[Snyk] Security upgrade snyk from 1.228.2 to 1.290.1 GitReadysoft/goof#40

Open

SonyaMoisset deleted the snyk-fix-a193d836b2219f149ec62abb926257f9 branch July 11, 2022 21:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk-dev] Fix for 2 vulnerabilities #987

[Snyk-dev] Fix for 2 vulnerabilities #987

snyk-bot commented Aug 5, 2021

[Snyk-dev] Fix for 2 vulnerabilities #987

[Snyk-dev] Fix for 2 vulnerabilities #987

Conversation

snyk-bot commented Aug 5, 2021

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With a Snyk patch: