[Snyk] Upgrade knex from 0.20.15 to 0.95.11 #123

snyk-bot · 2021-09-25T06:01:50Z

Snyk has created this PR to upgrade knex from 0.20.15 to 0.95.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 39 versions ahead of your current version.
The recommended version was released 21 days ago, on 2021-09-03.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-SETVALUE-1540541	436/1000 Why? Recently disclosed, CVSS 7.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: knex

0.95.11 - 2021-09-03
0.95.11 - 03 September, 2021

New features:
- Add support for nullability modification via schema builder (table.setNullable() and table.dropNullable()) #4657
- MySQL: Add support for mysql/mariadb-client JSON parameters in connectionURIs #4629
- MSSQL: Support comments as MS_Description properties #4632
Bug fixes:
- Fix Analytic orderBy and partitionBy to follow the SQL documentation #4602
- CLI: fix migrate:up for migrations disabling transactions #4550
- SQLite: Fix adding a column with a foreign key constraint in SQLite #4649
- MSSQL: columnInfo() support case-sensitive database collations #4633
- MSSQL: Generate valid SQL for withRecursive() #4514
- Oracle: withRecursive: omit invalid RECURSIVE keyword, include column list #4514
Improvements:
- Add .mjs migration and seed stubs #4631
- SQLite: Clean up DDL handling and move all operations to the parser-based approach #4648
0.95.10 - 2021-08-20
Improvements:
- Use sys info function instead of connection db name #4623
Typings:
- Deferrable and withkeyName should not be in ColumnBuilder #4600
- Add TypeScript support for deferrable, new Primary/Unique syntax #4589
New features:
- Oracle: support specifying schema for dropTable and dropSequence #4596
- Oracle: support specifying schema for autoincrement #4594
0.95.9 - 2021-07-31
0.95.8 - 2021-07-25
New features:
- Add deferrable support for constraint #4584
- Implement delete with join #4568
- Add DPI error codes for Oracle #4536
Bug fixes:
- Fixing PostgreSQL datetime and timestamp column created with wrong format #4578
Typings:
- Improve analytic types #4576
- MSSQL: Add trustServerCertificate option #4500
0.95.7 - 2021-07-10
0.95.6 - 2021-05-17
0.95.5 - 2021-05-11
New features:
- SQLite: Add support for file open flags #4446
- Add .cjs extension to Seeder.js to support Node ESM #4381 #4382
Bug fixes:
- Remove peerDependencies to avoid auto-install on npm 7 #4480
Typings:
- Fix typing for increments and bigIncrements #4406
- Add typings for on JoinClause for onVal #4436
- Adding Type Definition for isTransaction #4418
- Export client class from knex namespace #4479
0.95.4 - 2021-03-26
0.95.3 - 2021-03-25
New features:
- PostgreSQL: Add "same" as operator #4372
- MSSQL: Improve an estimate of the max comment length #4362
- Throw an error if negative offset is provided #4361
Bug fixes:
- Fix timeout method #4324
- SQLite: prevent dropForeign from being silently ignored #4376
Typings:
- Allow config.client to be non-client instance #4367
- Add dropForeign arg type for single column #4363
- Update typings for TypePreservingAggregation and stream #4377
0.95.2 - 2021-03-11
0.95.2 - 11 March, 2021

New features:
- Improve ESM import support #4350
Bug fixes:
- CLI: update ts.stub files to new TypeScript namespace #4344
- CLI: fix TypeScript migration stub after 0.95.0 changes #4366
Typings:
- Move QueryBuilder and KnexTimeoutError into knex namespace #4358
Test / internal changes:
- Unify db test helpers #4356
0.95.1 - 04 March, 2021

Bug fixes:
- CLI: fix knex init not finding default knexfile #4339
0.95.1 - 2021-03-04
0.95.0 - 2021-03-03
Read more
0.95.0-next3 - 2021-02-18
0.95.0-next2 - 2021-02-15
0.95.0-next1 - 2021-02-08
0.21.21 - 2021-08-10
0.21.20 - 2021-08-07
0.21.19 - 2021-03-02
0.21.18 - 2021-02-22
0.21.17 - 2021-01-30
0.21.17 - 30 January, 2021

Bug fixes:
- SQLite: Fix SQLite foreign on delete when altering a table #4261
New features:
- Add support for optimizer hints (see knex/documentation#306 for documentation) #4243
0.21.16 - 17 January, 2021

Bug fixes:
- MSSQL: Avoid passing unsupported pool param. Fixes node-mssql 7+ support #4236
0.21.16 - 2021-01-17
0.21.15 - 2020-12-26
No content.
0.21.14 - 2020-12-18
No content.
0.21.13 - 2020-12-11
0.21.12 - 2020-11-02
0.21.11 - 2020-11-01
0.21.10 - 2020-10-31
0.21.9 - 2020-10-29
0.21.8 - 2020-10-27
0.21.7 - 2020-10-25
0.21.6 - 2020-09-27
0.21.5 - 2020-08-17
0.21.5-next2 - 2020-08-16
0.21.5-next1 - 2020-08-15
0.21.4 - 2020-08-10
0.21.3 - 2020-08-08
0.21.2 - 2020-07-09
0.21.1 - 2020-04-27
0.21.0 - 2020-04-18
0.20.15 - 2020-04-15

from knex GitHub release notes

Commit messages

Package name: knex

f3de47d Fix method signature
58e441d Prepare to release
a933820 fix(oracledb): withRecursive: omit invalid RECURSIVE keyword, include column list [initial commit DefinitelyTyped/DefinitelyTyped#4514] (crossroads: specify return types explicitly. DefinitelyTyped/DefinitelyTyped#4652)
ce35bd6 fix(oracledb): Support setNullable, dropNullable (Added a lot of missing types from angular2/* modules DefinitelyTyped/DefinitelyTyped#4659)
b522517 fix migrate:up for migrations disabling transactions (added new pickers interface / methods to WinRT DefinitelyTyped/DefinitelyTyped#4550)
49b05b5 Add support for mysql/mariadb-client JSON parameters in connectionURIs (added definitely typed for quixote library DefinitelyTyped/DefinitelyTyped#4629)
4c79ac1 Fix Analytic orderBy and partitionBy to follow the SQL documentation (when.js - Add definition with test for when.settle, add a test for when.all DefinitelyTyped/DefinitelyTyped#4602)
9573fd0 Update ECOSYSTEM.md (Add in _.mapValues definitions for use in chains DefinitelyTyped/DefinitelyTyped#4494)
ef64625 Bump dtslint from 4.1.4 to 4.1.6 (Add jasmine.stringMatching() function DefinitelyTyped/DefinitelyTyped#4653)
f119029 Bump typescript from 4.3.5 to 4.4.2 (Add to async: forEachOf, forEachOfSeries, forEachOfLimit definitions DefinitelyTyped/DefinitelyTyped#4654)
8d75615 Implement nullability modification via schema builder (Added MousetrapInstance Interface. DefinitelyTyped/DefinitelyTyped#4657)
153d0fb Fix adding a column with a foreign key constraint in SQLite (PolylineOptions should extend PathOption DefinitelyTyped/DefinitelyTyped#4649)
00cbd00 Clean up SQLite DDL handling and move all operations to the parser-based approach (Update keypress.d.ts DefinitelyTyped/DefinitelyTyped#4648)
40576ce fix(mssql): Generate valid SQL for withRecursive() [initial commit DefinitelyTyped/DefinitelyTyped#4514] (Definition Request: Bootstrap Switch DefinitelyTyped/DefinitelyTyped#4639)
e469766 adding .mjs migration and seed stubs (Improve the documentation for users DefinitelyTyped/DefinitelyTyped#4631)
5ac4224 feat(mssql): Support comments as MS_Description properties (express DefinitelyTyped/DefinitelyTyped#4632)
52950c6 fix(mssql): columnInfo() support case-sensitive database collations (update parse/parse.d.ts DefinitelyTyped/DefinitelyTyped#4633)
cafc101 Prepare to release 0.95.10
3a083d9 fix: use sys info function instead of connection db name (Liberalize type of d3.event DefinitelyTyped/DefinitelyTyped#4623)
e7e906f Updated ECOSYSTEM.md to add sqlcommenter-knex (Update google.maps definitions for custom map types DefinitelyTyped/DefinitelyTyped#4624)
c7d8c81 Bump dtslint from 4.1.3 to 4.1.4 (angular-ui-bootstrap modal backdropClass DefinitelyTyped/DefinitelyTyped#4618)
4ff3a92 fix typing deferrable and withkeyName should not be in ColumnBuilder (Update chrome.identity with new API version 29 DefinitelyTyped/DefinitelyTyped#4600)
a74dc16 Bump dtslint from 4.1.2 to 4.1.3 (Add a Gitter chat badge to README.md DefinitelyTyped/DefinitelyTyped#4601)
571b2bf Bump actions/setup-node from 2.3.0 to 2.4.0 (Update Kendo UI headers and definitions DefinitelyTyped/DefinitelyTyped#4607)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade knex from 0.20.15 to 0.95.11. See this package in npm: https://www.npmjs.com/package/knex See this project in Snyk: https://app.snyk.io/org/hafixo/project/c509a902-dcef-462f-aed1-8fb662036f14?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade knex from 0.20.15 to 0.95.11 #123

[Snyk] Upgrade knex from 0.20.15 to 0.95.11 #123

snyk-bot commented Sep 25, 2021

0.95.11 - 03 September, 2021

New features:

Bug fixes:

Improvements:

Improvements:

Typings:

New features:

New features:

Bug fixes:

Typings:

New features:

Bug fixes:

Typings:

New features:

Bug fixes:

Typings:

0.95.2 - 11 March, 2021

New features:

Bug fixes:

Typings:

Test / internal changes:

0.95.1 - 04 March, 2021

Bug fixes:

0.21.17 - 30 January, 2021

Bug fixes:

New features:

0.21.16 - 17 January, 2021

Bug fixes:

[Snyk] Upgrade knex from 0.20.15 to 0.95.11 #123

Are you sure you want to change the base?

[Snyk] Upgrade knex from 0.20.15 to 0.95.11 #123

Conversation

snyk-bot commented Sep 25, 2021

Snyk has created this PR to upgrade knex from 0.20.15 to 0.95.11.

0.95.11 - 03 September, 2021

New features:

Bug fixes:

Improvements:

Improvements:

Typings:

New features:

New features:

Bug fixes:

Typings:

New features:

Bug fixes:

Typings:

New features:

Bug fixes:

Typings:

0.95.2 - 11 March, 2021

New features:

Bug fixes:

Typings:

Test / internal changes:

0.95.1 - 04 March, 2021

Bug fixes:

0.21.17 - 30 January, 2021

Bug fixes:

New features:

0.21.16 - 17 January, 2021

Bug fixes: