Skip to content

[Snyk-dev] Upgrade antd from 3.26.2 to 3.26.20 #30

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk-dev] Upgrade antd from 3.26.2 to 3.26.20 #30

wants to merge 1 commit into from

Conversation

@snyk-bot
Copy link

Snyk has created this PR to upgrade antd from 3.26.2 to 3.26.20.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 18 versions ahead of your current version.
  • The recommended version was released 2 years ago, on 2020-10-27.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1023599		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept
Directory Traversal
SNYK-JS-MOMENT-2440688		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1072471		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: antd
  • 3.26.20 - 2020-10-27
  • 3.26.19 - 2020-10-25
  • 3.26.18 - 2020-06-14
  • 3.26.17 - 2020-05-16
  • 3.26.16 - 2020-04-26
  • 3.26.15 - 2020-04-03
  • 3.26.14 - 2020-03-23
  • 3.26.13 - 2020-03-07
  • 3.26.12 - 2020-02-24
  • 3.26.11 - 2020-02-17
  • 3.26.10 - 2020-02-17
  • 3.26.9 - 2020-02-08
  • 3.26.8 - 2020-02-03
  • 3.26.7 - 2020-01-14
  • 3.26.6 - 2020-01-03
  • 3.26.5 - 2019-12-29
  • 3.26.4 - 2019-12-23
  • 3.26.3 - 2019-12-14
  • 3.26.2 - 2019-12-10
from antd GitHub release notes
Commit messages
Package name: antd
  • bc0f0b6 chore: resolutions fixed typescript version (#27407)
  • b5d3a90 docs: ✨ release 3.26.19
  • 8184702 fix: package.json import for webpack@5 compatibility (#27314)
  • 0a1ba7c fix: snap (#27342)
  • 34ba35e docs: update gitee (#25699)
  • e13bb39 docs: fix the wrong way to import react-dnd-html5-backend (#25151)
  • bf4b72a ✅ fix snapshot
  • 9838fc5 docs: changelog 3.26.18 (#24982)
  • b30ebb7 feat: add ga_IE locale (#24849)
  • 37e9c6b fix: paramter type error (#24429)
  • 8e00e59 updater antd-tools (#24756)
  • 285068c snap (#24731)
  • 8256b3c 🚀 release 3.26.17 (#24204)
  • 9504f5b fix: fix loading Button in Badge style (#23691)
  • 88d3f34 fix: Upload.Dragger triggered by label when disabled (#24202)
  • 97f4bab fix: tabs_animation_bug (#23151) (#24167)
  • fa899ff Fix form input shaking (#23924)
  • 30c702b ✅ fix snapshot
  • 0b00640 test: fix 3.x snapshot (#23852)
  • 44d3448 chore: Rollback of test
  • aa971b6 chore: Clean up
  • 29b98ea test: Fix focus test
  • d3e6fd8 test: Fix test case
  • 79821db chore: Update jest version

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@snyk-bot