Skip to content
This repository has been archived by the owner on Jul 16, 2024. It is now read-only.

[Snyk] Security upgrade antd from 4.10.3 to 4.17.0 #282

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade antd from 4.10.3 to 4.17.0 #282

wants to merge 1 commit into from

Conversation

m-ajay
Copy link
Owner

@m-ajay m-ajay commented Apr 4, 2024

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • superset-frontend/packages/superset-ui-demo/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ASYNCVALIDATOR-2311201		 No Proof of Concept
Commit messages
Package name: antd The new version differs by 250 commits.
  • 870b72a docs: 4.17.0 changelog (#32859)
  • 3a5b6b8 chore(deps-dev): bump stylelint-config-standard from 23.0.0 to 24.0.0 (#32866)
  • 7e2dc80 chore(.gitignore):add ignore for pnpm (#32860)
  • 491cc4f fix: borderLeftRadius error for Input.Search #32808 (#32812)
  • 958df3d docs: add demo for Input.Group (#32837)
  • ce006bd docs: Version Robin (#32830)
  • 3f495bb chore: Upgrade react router v6 (#32821)
  • 43569b9 docs: update customize-theme-variable.zh-CN.md
  • 7ed7c60 style: fix Tree icon align bug (#32822)
  • 01887b4 fix: if breadcrumbRender return false, breadcrumb will hidden (#32738)
  • 5f642cb fix: tag animation demo (#32804)
  • 852a451 chore(Tag): update tween-one (#32800)
  • 90aff3a docs: fix Spin API ts description (#32786)
  • 8a3b5d9 fix: Form horizontal broken style when select item is too long (#32778)
  • a73f4a3 docs: Fix the link in Table's API doc (#32779)
  • ecc54dd fix: codepen demo error using hooks (#32766)
  • cf15379 docs: add 4.17.0-alpha.10 changelog (#32775)
  • f7380b7 chore(deps-dev): bump eslint-plugin-unicorn from 37.0.1 to 38.0.0 (#32765)
  • b1ea2e4 fix: opening animation of the bottom drawer (#32761)
  • 10a8578 fix: Spin tip can be react node (#32733)
  • fa65cd3 chore(deps-dev): bump @ types/gtag.js from 0.0.7 to 0.0.8 (#32746)
  • f88bd4d refactor: Move part mixins less to theme instead (#32763)
  • 5360722 chore: update form demo
  • ea52572 chore(💄): fix issue template

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

@snyk-bot
fix: superset-frontend/packages/superset-ui-demo/package.json to redu…
3d0aa61 
…ce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ASYNCVALIDATOR-2311201
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies:npm packages
Projects
None yet
Milestone
No milestone
2 participants
@m-ajay @snyk-bot