[Snyk] Security upgrade liquidjs from 9.22.1 to 10.0.0

[dotam99]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-LIQUIDJS-2952868	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: liquidjs

The new version differs by 250 commits.

• 9b9ef37 chore(release): 10.0.0 [skip ci]
• 5bbdc08 chore(deps): bump minimatch from 3.0.4 to 3.1.2
• 1380ac9 refactor: more consistent tags to make it easier to iterate over, link "markup reference guide" is broken or missing github/docs#524
• 4e1a30a refactor: `_evalToken` renamed to `evalToken`
• 9299268 refactor: Tag class support in registerTag()
• 1f6ce7c perf: target Node.js 14 for cjs bundle (main entry)
• 7eb6216 refactor: change `ownPropertyOnly` default value to `true`
• ffefd91 refactor: remove `toThenable` export
• b115077 refactor: remove use of internal `Context` class in `evalValue` argument
• bb58d3e refactor: delay creation of `operatorsTrie` and hide this implementation
• ff112a4 chore: rename filters to snake style, docs: add Protectator as a contributor github/docs#487
• 907c4de chore(release): 9.43.0 [skip ci]
• 7a71485 feat: support timezone offset argument for date filter, Update https-cloning-errors.md github/docs#553
• cd918cc chore(deps): bump minimatch from 3.0.4 to 3.1.2 in /docs
• 8061e55 docs: fix tags sidebar translation
• 33e97db docs: update .all-contributorsrc [skip ci]
• 9cfc8fd docs: update README.md [skip ci]
• f62b210 docs: add echo and liquid tags Chinese translation (Incorrect type for labels parameter: "array of undefineds" github/docs#549)
• bf6b5c7 chore(release): 9.42.1 [skip ci]
• a58fe44 chore(deps): bump minimist and hexo-renderer-swig in /docs
• 99516cb chore(deps): bump semver-regex from 2.0.0 to 3.1.4
• 850ab0c chore(deps): bump ansi-regex from 3.0.0 to 3.0.1
• 33c7c8f docs: demo for using LiquidJS with webpack
• 32f613f fix: truncatewords should use at least one word, update github/docs#537

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[guardrails]

⚠️ We detected 973 security issues in this pull request:

Mode: paranoid | Total findings: 973 | Considered vulnerability: 973

Insecure File Management (206)

Docs	Details
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/all-products.js Line 9 in c35357d const { data } = frontmatter(fs.readFileSync(homepage, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/all-products.js Line 20 in c35357d if (!fs.existsSync(dir)) return
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/all-products.js Line 23 in c35357d const { data } = frontmatter(fs.readFileSync(toc, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/built-asset-urls.js Line 7 in c35357d const buffer = fs.readFileSync(absFilePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/data-directory.js Line 44 in c35357d filename => [filename, fs.readFileSync(filename, 'utf8')]
💡	Title: Use of non-literal require, Severity: High docs/lib/instrument-middleware.js Line 8 in c35357d const middleware = require(path.resolve(__dirname, '../middleware', relativePath))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/layouts.js Line 14 in c35357d const content = fs.readFileSync(fullPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/react/engine.js Line 19 in c35357d if (!fs.existsSync(path.join(dist, 'react'))) {
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/react/engine.js Line 20 in c35357d fs.mkdirSync(path.join(dist, 'react'), { recursive: true })
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/react/engine.js Line 22 in c35357d const content = transform(fs.readFileSync(file.path, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/react/engine.js Line 23 in c35357d fs.writeFileSync(path.join(dist, file.path), content)
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/readfile-async.js Line 6 in c35357d module.exports = util.promisify(fs.readFile)
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/rest/index.js Line 6 in c35357d fs.readdirSync(schemasPath)
💡	Title: Use of non-literal require, Severity: High docs/lib/rest/index.js Line 9 in c35357d const value = require(path.join(schemasPath, filename))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/search/lunr-get-index-names.js Line 5 in c35357d return await fs.readdir(path.join(__dirname, 'indexes'))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/search/lunr-search-index.js Line 78 in c35357d .then(content => fs.writeFile(
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/search/lunr-search-index.js Line 88 in c35357d .then(content => fs.writeFile(
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/search/sync.js Line 80 in c35357d fs.writeFileSync(cacheFile, JSON.stringify(index, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/search/sync.js Line 100 in c35357d fs.writeFileSync(
💡	Title: Use of non-literal fs filename, Severity: High docs/lib/webhooks/index.js Line 11 in c35357d const versions = fs.readdirSync(staticDir)
💡	Title: Use of non-literal require, Severity: High docs/lib/webhooks/index.js Line 22 in c35357d set(payloadsPerVersion, payloadPath, formatAsJsonCodeBlock(require(payloadFile)))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/clone-for-build.js Line 123 in c35357d if (fs.existsSync(destDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 41 in c35357d dirStats = fs.statSync(earlyAccessLocalRepoDir)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 86 in c35357d if (!fs.existsSync(sourceDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 92 in c35357d fs.symlinkSync(sourceDir, destDir, 'junction')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 95 in c35357d if (!fs.existsSync(destDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 98 in c35357d if (!fs.lstatSync(destDir).isSymbolicLink()) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/symlink-from-local-repo.js Line 101 in c35357d if (!fs.statSync(destDir).isDirectory()) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 37 in c35357d if (!fs.existsSync(earlyAccessContentAndDataFiles)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 51 in c35357d const oldContents = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 111 in c35357d fs.writeFileSync(file, newContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 131 in c35357d if (!fs.existsSync(variablePath)) return false
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 134 in c35357d const variableFileContent = yaml.safeLoad(fs.readFileSync(variablePath, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 148 in c35357d return fs.existsSync(`${path.posix.join(earlyAccessData, reusablePath)}.md`)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/update-data-and-image-paths.js Line 158 in c35357d return fs.existsSync(path.posix.join(earlyAccessImages, imagePath))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/archive-version.js Line 89 in c35357d await fs
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/archive-version.js Line 115 in c35357d if (!fs.existsSync(fullPathToArchivalRepo)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/archive-version.js Line 143 in c35357d fs.mkdirSync(finalDirectory, { recursive: true })
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/archive-version.js Line 166 in c35357d fs.renameSync(
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/archive-version.js Line 200 in c35357d fs.writeFileSync(path.posix.join(finalDirectory, 'redirects.json'), JSON.stringify(redirectsPerVersion, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/remove-static-files.js Line 41 in c35357d fs.readdirSync(dir)
💡	Title: Use of non-literal require, Severity: High docs/script/enterprise-server-deprecations/remove-version-markup.js Line 65 in c35357d require(path.join(process.cwd(), removeUnusedAssetsScript))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/remove-version-markup.js Line 73 in c35357d const oldContents = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-deprecations/remove-version-markup.js Line 103 in c35357d fs.writeFileSync(file, newContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 45 in c35357d if (!fs.existsSync(newSchemaFile)) {
💡	Title: Use of non-literal require, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 55 in c35357d const previews = require(previewsFile)
💡	Title: Use of non-literal require, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 56 in c35357d const changes = require(changesFile)
💡	Title: Use of non-literal require, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 57 in c35357d const objects = require(objectsFile)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 85 in c35357d fs.writeFileSync(previewsFile, JSON.stringify(previews, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 86 in c35357d fs.writeFileSync(changesFile, JSON.stringify(changes, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 87 in c35357d fs.writeFileSync(objectsFile, JSON.stringify(objects, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 95 in c35357d fs.readdirSync(srcDir).forEach(file => {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 102 in c35357d if (!fs.existsSync(destDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-graphql-files.js Line 107 in c35357d if (!fs.readdirSync(destDir).length) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-rest-files.js Line 50 in c35357d if (!fs.existsSync(oldDereferencedFile)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-rest-files.js Line 55 in c35357d const oldDereferencedContent = fs.readFileSync(oldDereferencedFile, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-rest-files.js Line 63 in c35357d fs.writeFileSync(newDereferencedFile, newDereferenceContent)
💡	Title: Use of non-literal require, Severity: High docs/script/enterprise-server-releases/create-rest-files.js Line 66 in c35357d const dereferencedSchema = require(path.join(process.cwd(), newDereferencedFile))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-rest-files.js Line 75 in c35357d fs.writeFileSync(newDecoratedFile, JSON.stringify(operations, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-webhook-files.js Line 45 in c35357d fs.readdirSync(srcDir).forEach(file => {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-webhook-files.js Line 52 in c35357d if (!fs.existsSync(destDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/create-webhook-files.js Line 57 in c35357d if (!fs.readdirSync(destDir).length) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/ghes-to-ghae-versioning.js Line 99 in c35357d const dataContent = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/ghes-to-ghae-versioning.js Line 107 in c35357d fs.writeFileSync(file, newDataContent)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/ghes-to-ghae-versioning.js Line 113 in c35357d const { data, content } = frontmatter(fs.readFileSync(file, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/ghes-to-ghae-versioning.js Line 136 in c35357d fs.writeFileSync(file, frontmatter.stringify(newContent, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/release-banner.js Line 41 in c35357d const releaseCandidateData = yaml.safeLoad(fs.readFileSync(releaseCandidateYaml, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/enterprise-server-releases/release-banner.js Line 53 in c35357d fs.writeFileSync(releaseCandidateYaml, yaml.safeDump(releaseCandidateData))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/fix-translation-errors.js Line 94 in c35357d fs.writeFileSync(localisedAbsPath, toWrite)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/get-new-dotcom-path.js Line 30 in c35357d if (fs.existsSync(categoryDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/build-changelog.js Line 18 in c35357d const previousChangelogString = fs.readFileSync(targetPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/build-changelog.js Line 23 in c35357d fs.writeFileSync(targetPath, JSON.stringify(previousChangelog, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/update-files.js Line 74 in c35357d const previousUpcomingChanges = yaml.safeLoad(fs.readFileSync(upcomingChangesPath, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/update-files.js Line 82 in c35357d const previousSchemaString = fs.readFileSync(schemaPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/update-files.js Line 192 in c35357d fs.writeFileSync(filepath, content, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/update-files.js Line 204 in c35357d fs.writeFileSync(tempSchemaFilePath, latestSchema)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/update-files.js Line 206 in c35357d fs.unlinkSync(tempSchemaFilePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/utils/prerender-input-objects.js Line 8 in c35357d const inputObjectIncludeFile = fs.readFileSync(path.join(includes, 'graphql-input-object.html'), 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/graphql/utils/prerender-objects.js Line 8 in c35357d const objectIncludeFile = fs.readFileSync(path.join(includes, 'graphql-object.html'), 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 30 in c35357d assert(fs.existsSync(oldCategoryDir), `directory does not exist: ${oldCategoryDir}`)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 50 in c35357d if (!fs.existsSync(productDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 67 in c35357d fs.writeFileSync(productTocPath, matter.stringify(content, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 72 in c35357d const tocContents = fs.readFileSync(oldProductTocPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 79 in c35357d fs.writeFileSync(oldProductTocPath, matter.stringify(newContent, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 87 in c35357d const articleContents = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-category-to-product.js Line 99 in c35357d fs.writeFileSync(file, newContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-reusables-to-markdown.js Line 28 in c35357d const fileContent = fs.readFileSync(fullPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/move-reusables-to-markdown.js Line 35 in c35357d fs.writeFileSync(markdownFilename, value)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/purge-fastly-by-url.js Line 43 in c35357d if (batchFile && !fs.existsSync(batchFile)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/purge-fastly-by-url.js Line 54 in c35357d fs.readFileSync(batchFile, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 44 in c35357d const contents = fs.readFileSync(categoryIndex, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 81 in c35357d fs.writeFileSync(categoryIndex, frontmatter.stringify(content, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 84 in c35357d for (const articleFileName of fs.readdirSync(categoryDirPath)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 101 in c35357d const articleContents = fs.readFileSync(articlePath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 111 in c35357d fs.writeFileSync(articlePath, frontmatter.stringify(articleContent, articleData, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 119 in c35357d const productIndexContents = fs.readFileSync(productIndexPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 122 in c35357d fs.writeFileSync(productIndexPath, frontmatter.stringify(revisedProductIndex, productIndexData, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-category-dirs-with-ids.js Line 127 in c35357d fs.renameSync(categoryDirPath, newPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-filenames-with-ids.js Line 37 in c35357d const { data, content } = frontmatter(fs.readFileSync(oldFullPath, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reconcile-filenames-with-ids.js Line 77 in c35357d fs.writeFileSync(newFullPath, frontmatter.stringify(content, data))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/remove-extraneous-translation-files.js Line 21 in c35357d fs.unlinkSync(file)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/remove-unused-assets.js Line 39 in c35357d : fs.unlinkSync(reusablePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/remove-unused-assets.js Line 50 in c35357d : fs.unlinkSync(imagePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-enterprise-dates.js Line 7 in c35357d const enterpriseDatesString = fs.readFileSync(enterpriseDatesFile, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-enterprise-dates.js Line 41 in c35357d fs.writeFileSync(enterpriseDatesFile, formattedDatesString)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-internal-links.js Line 66 in c35357d const { data, content } = frontmatter(fs.readFileSync(file, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-internal-links.js Line 177 in c35357d fs.writeFileSync(file, frontmatter.stringify(newContent, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-readme.js Line 43 in c35357d const readmeComment = fs.readFileSync(fullPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-readme.js Line 78 in c35357d if (template === fs.readFileSync(readme, 'utf8')) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-readme.js Line 81 in c35357d fs.writeFileSync(readme, template)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-versioning-in-files.js Line 20 in c35357d const content = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-versioning-in-files.js Line 25 in c35357d fs.writeFileSync(file, newContent)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-versioning-in-files.js Line 30 in c35357d const { data, content } = frontmatter(fs.readFileSync(file, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/update-versioning-in-files.js Line 62 in c35357d fs.writeFileSync(file, frontmatter.stringify(newContent, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/category-pages.js Line 47 in c35357d const contents = fs.readFileSync(productIndex, 'utf8') // TODO move to async
💡	Title: Use of non-literal require, Severity: High docs/middleware/contextualizers/graphql.js Line 26 in c35357d schemaForCurrentVersion: require(`../../lib/graphql/static/schema-${graphqlVersion}`),
💡	Title: Use of non-literal require, Severity: High docs/middleware/contextualizers/webhooks.js Line 3 in c35357d const webhookPayloads = require(path.join(process.cwd(), 'lib/webhooks'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/backfill-missing-localizations.js Line 30 in c35357d if (!fs.existsSync(fullPath)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/backfill-missing-localizations.js Line 34 in c35357d fs.writeFileSync(fullPath, fs.readFileSync(englishFullPath))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/check-english-links.js Line 76 in c35357d fs.appendFileSync(logFile, JSON.stringify(result) + '\n')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/add-tags-to-articles.js Line 42 in c35357d const articleContents = fs.readFileSync(filePath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/add-tags-to-articles.js Line 61 in c35357d fs.writeFileSync(filePath, newContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/deduplicate-enterprise-assets.js Line 40 in c35357d if (fs.existsSync(existingFileToCompare)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/deduplicate-enterprise-assets.js Line 54 in c35357d const existingImageToCompare = await fs.readFileSync(existingFileToCompare)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/deduplicate-enterprise-assets.js Line 55 in c35357d const enterpriseImage = await fs.readFileSync(file)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/deduplicate-enterprise-assets.js Line 63 in c35357d if (compareResult === 0) fs.unlinkSync(file)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/move-unique-image-assets.js Line 29 in c35357d if (!fs.existsSync(existingFileToCompare)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/move-unique-image-assets.js Line 31 in c35357d if (!fs.existsSync(newDirectoryName)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/move-unique-image-assets.js Line 32 in c35357d fs.mkdirSync(newDirectoryName, { recursive: true })
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/move-unique-image-assets.js Line 34 in c35357d fs.renameSync(file, existingFileToCompare)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-html-comments-from-index-files.js Line 12 in c35357d const newContents = fs.readFileSync(file, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-html-comments-from-index-files.js Line 14 in c35357d fs.writeFileSync(file, newContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 27 in c35357d let categoryIndexContent = fs.readFileSync(categoryIndexFile, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 55 in c35357d if (!fs.existsSync(oldTopicFile)) continue
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 57 in c35357d if (!fs.existsSync(newTopicDirectory)) fs.mkdirSync(newTopicDirectory)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 59 in c35357d const { data, content } = frontmatter(fs.readFileSync(oldTopicFile, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 74 in c35357d if (!fs.existsSync(`${oldTopicDirectory}/${article}.md`)) return
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 78 in c35357d fs.renameSync(`${oldTopicDirectory}/${article}.md`, newArticlePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 81 in c35357d const articleContents = frontmatter(fs.readFileSync(newArticlePath, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 85 in c35357d fs.writeFileSync(newArticlePath, frontmatter.stringify(articleContents.content.trim(), articleContents.data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 89 in c35357d fs.writeFileSync(`${newTopicDirectory}/index.md`, frontmatter.stringify(topicContent.trim(), data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 92 in c35357d fs.writeFileSync(categoryIndexFile, categoryIndexContent)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-map-topics.js Line 95 in c35357d fs.unlinkSync(oldTopicFile)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 160 in c35357d if (fs.existsSync(imagePath)) fs.unlinkSync(imagePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 165 in c35357d if (fs.existsSync(imagePath)) fs.unlinkSync(imagePath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 188 in c35357d fs.unlinkSync(imageFullPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 195 in c35357d fs.unlinkSync(imageFullPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 202 in c35357d fs.unlinkSync(imageFullPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 208 in c35357d fs.unlinkSync(imageFullPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/remove-unused-assets.js Line 223 in c35357d fs.unlinkSync(path.join(process.cwd(), directoryImage))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/update-developer-site-links.js Line 30 in c35357d const { data, content } = frontmatter(fs.readFileSync(file, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/update-developer-site-links.js Line 72 in c35357d fs.writeFileSync(file, frontmatter.stringify(newContent, data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/update-tocs.js Line 39 in c35357d const { data, content } = frontmatter(fs.readFileSync(indexFile, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/content-migrations/update-tocs.js Line 76 in c35357d fs.writeFileSync(indexFile, frontmatter.stringify('', data, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/create-glossary-from-spreadsheet.js Line 14 in c35357d const glossary = yaml.safeLoad(fs.readFileSync(inputFile, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/create-glossary-from-spreadsheet.js Line 28 in c35357d fs.writeFileSync(
💡	Title: Use of non-literal fs filename, Severity: High docs/script/create-glossary-from-spreadsheet.js Line 33 in c35357d fs.writeFileSync(
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/clone-for-build.js Line 114 in c35357d if (!fs.existsSync(sourceDir)) {
💡	Title: Use of non-literal fs filename, Severity: High docs/script/early-access/clone-for-build.js Line 120 in c35357d fs.renameSync(sourceDir, destDir)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reset-translated-file.js Line 34 in c35357d assert(fs.existsSync(translationFilePath), `file does not exist: ${translationFilePath}`)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reset-translated-file.js Line 38 in c35357d assert(fs.existsSync(englishFile), `file does not exist: ${englishFile}`)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reset-translated-file.js Line 41 in c35357d const englishContent = fs.readFileSync(englishFile, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reset-translated-file.js Line 42 in c35357d fs.writeFileSync(translationFilePath, englishContent)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/reset-translated-file.js Line 50 in c35357d const relativePath = fs.existsSync(pathArg)
💡	Title: Use of non-literal require, Severity: High docs/script/rest/openapi-check.js Line 24 in c35357d const schemas = files.map(filename => require(filename))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/rest/update-files.js Line 11 in c35357d const schemas = fs.readdirSync(dereferencedPath)
💡	Title: Use of non-literal fs filename, Severity: High docs/script/rest/update-files.js Line 33 in c35357d if (!fs.existsSync(githubRepoDir)) {
💡	Title: Use of non-literal require, Severity: High docs/script/rest/update-files.js Line 78 in c35357d const schema = require(path.join(dereferencedPath, filename))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/rest/update-files.js Line 80 in c35357d fs.writeFileSync(path.join(dereferencedPath, filename), JSON.stringify(schema, null, 2))
💡	Title: Use of non-literal require, Severity: High docs/script/rest/update-files.js Line 88 in c35357d const schema = require(path.join(dereferencedPath, filename))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/rest/update-files.js Line 104 in c35357d fs.writeFileSync(filename, JSON.stringify(operations, null, 2))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/standardize-frontmatter-order.js Line 30 in c35357d const { content, data } = matter(fs.readFileSync(fullPath, 'utf8'))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/standardize-frontmatter-order.js Line 36 in c35357d fs.writeFileSync(fullPath, matter.stringify(content, newData, { lineWidth: 10000 }))
💡	Title: Use of non-literal fs filename, Severity: High docs/script/test-render-translation.js Line 54 in c35357d const fileContents = await fs.promises.readFile(fullPath, 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/category-pages.js Line 54 in c35357d .filter(link => fs.existsSync(getPath(productDir, link, 'index')))
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/category-pages.js Line 99 in c35357d const childEntries = await fs.promises.readdir(categoryDir, { withFileTypes: true })
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/gitignore.js Line 4 in c35357d const gitignore = fs.readFileSync(gitignorePath, 'utf8')
💡	Title: Use of non-literal require, Severity: High docs/tests/content/graphql.js Line 23 in c35357d const schemaJsonPerVersion = require(`../../lib/graphql/static/schema-${version}`)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/site-data-references.js Line 110 in c35357d await fs.stat(filepath)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/site-data.js Line 48 in c35357d await fs.writeFile(newFile, 'newvalue: bar')
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/content/site-data.js Line 52 in c35357d await fs.unlink(newFile)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/graphql/build-changelog-test.js Line 126 in c35357d await fs.writeFile(testTargetPath, previousContents)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/helpers/crowdin-config.js Line 7 in c35357d return yaml.load(fs.readFileSync(filename, 'utf8'), { filename })
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/meta/orphan-tests.js Line 12 in c35357d const testDirectory = await fs.readdir(pathToTests)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/meta/orphan-tests.js Line 21 in c35357d await fs.stat(
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/rendering/rest.js Line 20 in c35357d const filenames = (await fs.readdir(referenceDir))
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/actions-workflows.js Line 7 in c35357d const workflows = fs.readdirSync(workflowsDir)
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/actions-workflows.js Line 11 in c35357d const data = yaml.load(fs.readFileSync(fullpath, 'utf8'), { fullpath })
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/early-access.js Line 8 in c35357d expect(await fs.stat(eaDir)).toBeTruthy()
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/early-access.js Line 13 in c35357d expect(await fs.stat(eaDir)).toBeTruthy()
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/early-access.js Line 18 in c35357d expect(await fs.stat(eaDir)).toBeTruthy()
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/get-rss-feeds.js Line 6 in c35357d const rssFeedContent = fs.readFileSync(path.join(process.cwd(), 'tests/fixtures/rss-feed.xml'), 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/search/parse-page-sections-into-records.js Line 6 in c35357d pageWithSections: fs.readFileSync(path.join(__dirname, 'fixtures/page-with-sections.html'), 'utf8'),
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/search/parse-page-sections-into-records.js Line 7 in c35357d pageWithoutSections: fs.readFileSync(path.join(__dirname, 'fixtures/page-without-sections.html'), 'utf8')
💡	Title: Use of non-literal fs filename, Severity: High docs/tests/unit/search/topics.js Line 12 in c35357d const fileContent = fs.readFileSync(filename, 'utf8')
💡	Title: Path Traversal from user input, Severity: High docs/middleware/contextualizers/rest.js Line 14 in c35357d '/developers/apps'
💡	Title: Path Traversal from user input, Severity: High docs/lib/rewrite-local-links.js Line 40 in c35357d newHref = path.join('/', languageCode, href)
💡	Title: Path Traversal from user input, Severity: High docs/lib/rewrite-local-links.js Line 47 in c35357d newHref = path.join('/', languageCode, href)
💡	Title: Path Traversal from user input, Severity: High docs/middleware/early-access-breadcrumbs.js Line 63 in c35357d const mapTopicOrArticlePath = path.posix.join(categoryPath, pathParts[2])
💡	Title: Path Traversal from user input, Severity: High docs/middleware/early-access-breadcrumbs.js Line 50 in c35357d const categoryPath = removeFPTFromPath(path.posix.join('/', 'en', req.context.currentVersion, 'early-access', pathParts[0], pathParts[1]))
💡	Title: Path Traversal from user input, Severity: High docs/middleware/breadcrumbs.js Line 35 in c35357d title: product.title
💡	Title: Path Traversal from user input, Severity: High docs/middleware/breadcrumbs.js Line 49 in c35357d const categoryPath = removeFPTFromPath(path.posix.join('/', req.context.currentLanguage, req.context.currentVersion, productPath, pathParts[1]))
💡	Title: Path Traversal from user input, Severity: High docs/middleware/breadcrumbs.js Line 21 in c35357d const productPath = path.posix.join('/', req.context.currentProduct)
💡	Title: Path Traversal from user input, Severity: High docs/middleware/breadcrumbs.js Line 34 in c35357d href: removeFPTFromPath(path.posix.join('/', req.context.currentLanguage, req.context.currentVersion, productPath)),
💡	Title: Path Traversal from user input, Severity: High docs/middleware/archived-enterprise-versions-assets.js Line 22 in c35357d const proxyPath = path.join('/', requestedVersion, assetPath)
💡	Title: Path Traversal from user input, Severity: High docs/lib/get-link-data.js Line 37 in c35357d const href = removeFPTFromPath(path.join('/', context.currentLanguage, version, linkPath))

More info on how to fix Insecure File Management in JavaScript.

---

Insecure Use of Regular Expressions (34)

Docs	Details
💡	Title: Regex DOS (ReDOS), Severity: Medium docs/lib/patterns.js Line 12 in c35357d enterprise: /\/enterprise(?:\/|$|\?)(\d+\.\d+)?/,
💡	Title: Regex DOS (ReDOS), Severity: Medium docs/lib/patterns.js Line 13 in c35357d admin: /enterprise\/(\d+\.\d+\/)?admin\/?/,
💡	Title: Regex DOS (ReDOS), Severity: Medium docs/lib/patterns.js Line 14 in c35357d gheUser: /enterprise\/(\d+\.\d+\/)?user(\/|$|\?)/,
💡	Title: Regex DOS (ReDOS), Severity: Medium docs/lib/patterns.js Line 15 in c35357d enterpriseHomepage: /\/enterprise\/?(\d+\.\d+)?$/,

---

This comment has been truncated due to comment length limitations, please go to the dashboard for further details.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.