Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade swagger-ui from 5.10.5 to 5.11.0 #45

Merged
merged 1 commit into from
Jan 30, 2024

Conversation

dooman87
Copy link
Collaborator

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade swagger-ui from 5.10.5 to 5.11.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 21 days ago, on 2024-01-08.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-AXIOS-6144788
375/1000
Why? CVSS 7.5
No Known Exploit
Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137
375/1000
Why? CVSS 7.5
Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: swagger-ui
  • 5.11.0 - 2024-01-08

    5.11.0 (2024-01-08)

    Bug Fixes

    • swagger-ui-react: align React versions with swagger-ui (#9465) (532f8de)
    • use JavaScript default parameters instead React's defaultProps (#9453) (d5a5146)

    Features


    Important

    For those looking to integrate SwaggerUI with older versions of React, we have provided a comprehensive guide to assist you in this process. Please refer to our dedicated wiki page for detailed instructions and tips to ensure a smooth integration.

    Visit the guide here: Integrating SwaggerUI with Older Versions of React.

    This resource is tailored to help you navigate any compatibility issues and make the most out of SwaggerUI with earlier React versions. We encourage you to explore this guide and reach out to us if you need further assistance.

  • 5.10.5 - 2023-12-14

    5.10.5 (2023-12-14)

    Bug Fixes

from swagger-ui GitHub release notes
Commit messages
Package name: swagger-ui
  • da0c095 chore(deps-dev): update release-it to latest version (#9470)
  • e720988 chore(deps): bump @ babel/runtime-corejs3 from 7.23.6 to 7.23.7 (#9468)
  • 1f427a8 chore(deps-dev): bump postcss from 8.4.32 to 8.4.33 (#9467)
  • 532f8de fix(swagger-ui-react): align React versions with swagger-ui (#9465)
  • 252c81a refactor: replace defaultProps with JavaScript default parameters (#9464)
  • 15fb960 chore(deps-dev): bump sass from 1.69.6 to 1.69.7 (#9461)
  • 4588e49 chore(deps): bump classnames from 2.3.2 to 2.5.1 (#9460)
  • 1b6b4f3 chore(deps-dev): bump cssnano from 6.0.2 to 6.0.3 (#9459)
  • aeea11d chore(deps-dev): bump cypress from 13.6.1 to 13.6.2 (#9458)
  • faba3cb chore(deps-dev): bump @ commitlint/cli from 18.4.3 to 18.4.4 (#9457)
  • d5a5146 fix: use JavaScript default parameters instead React's defaultProps (#9453)
  • f7bd96f chore(deps): bump swagger-client from v3.24.6 to v3.25.0 (#9454)
  • 1981f58 chore(deps-dev): bump @ babel/core from 7.23.5 to 7.23.7 (#9452)
  • 432cd8b chore(deps): bump react-redux from 8.1.3 to 9.0.4 (#9436)
  • 45948a5 chore(deps): bump @ braintree/sanitize-url from 6.0.4 to 7.0.0 (#9450)
  • c13388b chore(deps-dev): bump sass-loader from 13.3.2 to 13.3.3 (#9451)
  • 0bdd560 chore(deps-dev): bump sass from 1.69.5 to 1.69.6 (#9449)
  • e9eee6f chore(deps-dev): bump terser-webpack-plugin from 5.3.9 to 5.3.10 (#9448)
  • c65690b chore(deps-dev): bump @ babel/preset-env from 7.23.5 to 7.23.7 (#9447)
  • 7d2fc52 chore(deps-dev): bump open from 9.1.0 to 10.0.2 (#9445)
  • f846f8f chore(deps-dev): bump cssnano from 6.0.1 to 6.0.2 (#9437)
  • 98b5309 feat: add support for React@18 in backward compatible way (#9435)
  • 08fe66b chore(deps-dev): bump @ babel/plugin-transform-runtime (#9434)
  • cf994f5 chore(deps-dev): bump cypress from 13.6.0 to 13.6.1 (#9433)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@dooman87 dooman87 merged commit 22e32a3 into main Jan 30, 2024
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants