Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade @adastradev/aws-api-gateway-client from 1.0.1 to 1.0.4 #23

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade @adastradev/aws-api-gateway-client from 1.0.1 to 1.0.4 #23

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Sep 5, 2021

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 768/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-AXIOS-1579269		 No Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @adastradev/aws-api-gateway-client The new version differs by 25 commits.
  • 5a2b1c0 Merge pull request Add tenantID to response model聽#6 from adastradev/feature/updateAxios
  • 8c8ba86 Updated axios
  • ef88399 Merge pull request Feature/bw13聽#4 from adastradev/lsanders/merge-102
  • 41905c8 bump version
  • 758a1ba Merge remote-tracking branch 'willvincent/master' into lsanders/merge-102
  • 055ac16 Include updated dist build. (These really probably don't belong in git..)
  • 1a2f530 Fixes Signing issue when using retries.
  • 84548ab Add retry condition fallback to v4client
  • 9631f5b remove excess whitespace.
  • 35c2549 fix: Retry fails if retry condition not explicitly defined, should fall back to axiosRetry default if undefined or not a function.
  • 3781338 Merge pull request #99 from kndt84/dependabot/npm_and_yarn/lodash-4.17.19
  • e811c60 Bump lodash from 4.17.15 to 4.17.19
  • a2d8881 Merge branch 'master' of https://github.com/kndt84/aws-api-gateway-client
  • 61aa7cd Merge pull request #98 from kndt84/package-update
  • 1f4cadc update package-lock
  • ffb2682 downgrade eslint version
  • 40bdf96 update version
  • f41d546 update packages
  • e1ff0db Merge pull request #95 from medington/babel-runtime-fix
  • e9dad93 Merge branch 'master' into babel-runtime-fix
  • 031891b Merge pull request #97 from adastradev/upstream-fix-issue-88
  • 8c3895b fixes "POST body payload" issue聽kndt84/aws-api-gateway-client#88
  • 5020461 Correct issue #90 - missing @ babel/runtime dep
  • 44c3c1b Merge pull request #93 from kndt84/dependabot/npm_and_yarn/acorn-7.1.1

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
馃 View latest project report

馃洜 Adjust project settings

馃摎 Read more about Snyk's upgrade and patch logic

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

"POST body payload" issue
1 participant
@snyk-bot