Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @snyk/protect from 1.1200.0 to 1.1292.0 #95

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

X-oss-byte
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade @snyk/protect from 1.1200.0 to 1.1292.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 102 versions ahead of your current version.

  • The recommended version was released on 22 days ago.

Release notes
Package name: @snyk/protect
  • 1.1292.0 - 2024-06-26

    1.1292.0 (2024-06-26)

    The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

    News

    This Snyk CLI release delivers an assortment of bug fixes and improvements.

    • We've added support for pnpm, giving you more flexibility in your project setup.
    • You can now scan npm/yarn projects even without lockfiles, ensuring comprehensive vulnerability detection regardless of your dependency management approach.
    • We're committed to strengthening security. This release includes redaction of additional sensitive data in debug logs, minimizing potential risks.

    Complete changelog

    Features

    • test: Added pnpm support under 'enablePnpmCli' feature flag (#5181) (46769cc)
    • test: Support scan of npm/yarn projects without lockfiles (e2d77a9)
    • monitor: Set target-reference in the monitor request (51ed8f5)
    • code: Centrally check if code test is enabled (#5239) (e5a00e2)
    • sbom: Improve depgraph for Maven projects (fbb33d7)
    • sbom: Use RFC 3339 for all timestamps in sbom test result (#5204) (91bf191)
    • language-server: Add --all-projects flag scans by default IDE-318 (fdcf30e)
    • language-server: Enable incremental scanning IDE-275 (d198685)
    • language-server: Add support for IDE themes (c1c4d08)
    • language-server: Consistent styling across intellij and vscode (#5282) (9aa6f76)
    • logging: Redact additional types of sensitive data from debug logs (#5254) (056cdab)

    Bug Fixes

    • auth: Autodetect IDE usage and fallback to API token based authentication (#5241) (4c795e0)
    • iac: Upgrade iac custom rules to address Vulnerabilities IAC-2944 (453db24)
    • language-server: Caching problem when no vulnerabilities in the IDE (#5223) (89c9491)
    • language-server: Remove incorrect /v1 path (#5214) (cf16470)
    • dependencies: Update dependencies to reduce vulnerabilities (#5131) (4c7cb3c)
    • sbom: sbom test output padding (e3b7cac)
    • sbom: Fix container purl generation for apt and rpm (#5207) (fa9d512)
    • sbom: Retain error code during SBOM generation (#5202) (5e98aaa)
    • test: support cyclic dependencies in maven with dverbose (#5208) (fb24c02)
    • test: Add tool version and informationUri to sarif output (#5203) (b899fd3)
    • test: fixing several .NET bugs (#5217) (c27d767)
    • test: fixing a bug causing .NET beta scanning to fail on older versions of .NET (#5228) (5fdecf7)
    • test: .NET runtime resolution testing now supports projects targeting .NET Standard frameworks (#5169) (44d0861)
    • test: fix issues of type 'Cannot find module ...' in snyk-docker-plugin (#5301) (88efd54)
    • monitor: fix project name when using assets-project-name flag (#5077) (57dc718)
  • 1.1291.1 - 2024-05-27

    1.1291.1 (2024-05-27)

    The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

    Bug Fixes

    • dependencies: Upgrade go-getter to v1.7.4 to fix vulnerabilities (#5252)
  • 1.1291.0 - 2024-04-30

    1.1291.0 (2024-04-30)

    The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

    News

    • This is the first stable release of the CLI
    • It makes use of semantic versioning and is the successor of 1.1290.0

    Bug Fixes

    • test: Fix support of cyclic dependencies in maven with dverbose #5208
  • 1.1290.0 - 2024-04-19

    1.1290.0 (2024-04-18)

    Bug Fixes

    • code: Fix error handling for experimental go native code client (#5170) (5400c69)

    Features

    • code: introduce human readable formatting for experimental test mechanism (#5174) (34bbc95)
    • sbom: Introduce experimental sbom test command (#5176) (ea6293b)
    • snyk woof ro language support and tests (#5166) (ed2e754)
  • 1.1289.0 - 2024-04-16

    1.1289.0 (2024-04-16)

    Bug Fixes

    • ls: Trigger re-analysis after fixing interfile issues (#5163) (05cb9f5)

    Features

    • code: Integrate experimental go native code client [CLI-224] (#5164) (5bd898e)
    • include additional policy properties, when provided, in plain text output (#5142) (a8be764)
    • use workflow data to determine exit code errors (51c717b)
  • 1.1288.1 - 2024-04-15

    1.1288.1 (2024-04-15)

    Bug Fixes

    • iac: Fix Issue Path in human readable and json output [IAC-2935] (#5159) (5fc3d59)
  • 1.1288.0 - 2024-04-09

    1.1288.0 (2024-04-09)

    Bug Fixes

    • add --experimental flag for snyk code test (#5151) (08647f2)
    • make download of CLI in language server more resilient under windows [IDE-90] (#5155) (1e51948)

    Features

    • bump language server protocol version to 11 [IDE-236] (#5156) (fc41937)
  • 1.1287.0 - 2024-04-04

    1.1287.0 (2024-04-04)

    Features

  • 1.1286.4 - 2024-04-04

    1.1286.4 (2024-04-04)

    Bug Fixes

    • upgrade iac custom rules extension to address vulns [IAC-2921] (#5149) (6b96473)
  • 1.1286.3 - 2024-04-03

    1.1286.3 (2024-04-03)

    Bug Fixes

    • always finish progress when auto-fixing in language server (#5145) (f645bbe)
    • avoid potentially outputting very large JSON objects (#5147) (84b5e8b)
  • 1.1286.2 - 2024-03-29
  • 1.1286.1 - 2024-03-26
  • 1.1286.0 - 2024-03-25
  • 1.1285.1 - 2024-03-25
  • 1.1285.0 - 2024-03-18
  • 1.1284.0 - 2024-03-14
  • 1.1283.1 - 2024-03-13
  • 1.1283.0 - 2024-03-06
  • 1.1282.1 - 2024-03-05
  • 1.1282.0 - 2024-03-05
  • 1.1281.0 - 2024-02-28
  • 1.1280.1 - 2024-02-20
  • 1.1280.0 - 2024-02-15
  • 1.1279.0 - 2024-02-12
  • 1.1278.0 - 2024-02-06
  • 1.1277.0 - 2024-02-05
  • 1.1276.0 - 2024-01-30
  • 1.1275.0 - 2024-01-26
  • 1.1274.0 - 2024-01-23
  • 1.1273.0 - 2024-01-23
  • 1.1272.0 - 2024-01-22
  • 1.1271.0 - 2024-01-19
  • 1.1270.0 - 2024-01-18
  • 1.1269.0 - 2024-01-10
  • 1.1268.0 - 2024-01-08
  • 1.1267.0 - 2024-01-02
  • 1.1266.0 - 2023-12-20
  • 1.1265.0 - 2023-12-20
  • 1.1264.0 - 2023-12-14
  • 1.1263.0 - 2023-12-14
  • 1.1262.0 - 2023-12-13
  • 1.1261.0 - 2023-12-12
  • 1.1260.0 - 2023-12-04
  • 1.1259.0 - 2023-11-30
  • 1.1258.0 - 2023-11-29
  • 1.1257.0 - 2023-11-28
  • 1.1256.0 - 2023-11-27
  • 1.1255.0 - 2023-11-27
  • 1.1254.0 - 2023-11-27
  • 1.1253.0 - 2023-11-24
  • 1.1252.0 - 2023-11-22
  • 1.1251.0 - 2023-11-21
  • 1.1250.0 - 2023-11-20
  • 1.1249.0 - 2023-11-20
  • 1.1248.0 - 2023-11-16
  • 1.1247.0 - 2023-11-16
  • 1.1246.0 - 2023-11-15
  • 1.1245.0 - 2023-11-14
  • 1.1244.0 - 2023-11-13
  • 1.1243.0 - 2023-11-09
  • 1.1242.0 - 2023-11-08
  • 1.1241.0 - 2023-11-08
  • 1.1240.0 - 2023-11-07
  • 1.1239.0 - 2023-11-07
  • 1.1238.0 - 2023-10-31
  • 1.1237.0 - 2023-10-24
  • 1.1236.0 - 2023-10-18
  • 1.1235.0 - 2023-10-16
  • 1.1234.0 - 2023-10-11
  • 1.1233.0 - 2023-10-09
  • 1.1232.0 - 2023-10-05
  • 1.1231.0 - 2023-10-05
  • 1.1230.0 - 2023-10-04
  • 1.1229.0 - 2023-10-03
  • 1.1228.0 - 2023-09-28
  • 1.1227.0 - 2023-09-25
  • 1.1226.0 - 2023-09-21
  • 1.1225.0 - 2023-09-19
  • 1.1224.0 - 2023-09-19
  • 1.1223.0 - 2023-09-19
  • 1.1222.0 - 2023-09-19
  • 1.1221.0 - 2023-09-18
  • 1.1220.0 - 2023-09-14
  • 1.1219.0 - 2023-09-14
  • 1.1218.0 - 2023-09-14
  • 1.1217.0 - 2023-09-12
  • 1.1216.0 - 2023-09-11
  • 1.1215.0 - 2023-09-08
  • 1.1214.0 - 2023-09-07
  • 1.1213.0 - 2023-09-06
  • 1.1212.0 - 2023-09-05
  • 1.1211.0 - 2023-09-04
  • 1.1210.0 - 2023-09-04
  • 1.1209.0 - 2023-08-31
  • 1.1208.0 - 2023-08-31
  • 1.1207.0 - 2023-08-28
  • 1.1206.0 - 2023-08-23
  • 1.1205.0 - 2023-08-21
  • 1.1204.0 - 2023-08-21
  • 1.1203.0 - 2023-08-17
  • 1.1202.0 - 2023-08-15
  • 1.1201.0 - 2023-08-15
  • 1.1200.0 - 2023-08-03
from @snyk/protect GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade @snyk/protect from 1.1200.0 to 1.1292.0.

See this package in npm:
@snyk/protect

See this project in Snyk:
https://app.snyk.io/org/sammytezzy/project/f75cad3f-5626-485f-85c3-08909612c405?utm_source=github&utm_medium=referral&page=upgrade-pr
Copy link

stackblitz bot commented Jul 18, 2024

Review PR in StackBlitz Codeflow Run & review this pull request in StackBlitz Codeflow.

Copy link

changeset-bot bot commented Jul 18, 2024

⚠️ No Changeset found

Latest commit: 9aba676

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. Here's why:

  • It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
  • We don't review packaging changes - Let us know if you'd like us to change this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants