[Snyk] Upgrade grunt from 1.4.1 to 1.5.3 #24
Merged
+10
−10
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade grunt from 1.4.1 to 1.5.3. See this package in npm: https://www.npmjs.com/package/grunt See this project in Snyk: https://app.snyk.io/org/mnuma/project/9ccfe284-c27c-42f1-8ae1-ec6340fa244a?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade grunt from 1.4.1 to 1.5.3.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-GRUNT-2813632
Why? Proof of Concept exploit, Has a fix available, CVSS 6.5
SNYK-JS-GRUNT-2635969
Why? Proof of Concept exploit, Has a fix available, CVSS 6.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: grunt
-
1.5.3 - 2022-05-10
- Merge pull request #1745 from gruntjs/fix-copy-op 572d79b
- Patch up race condition in symlink copying. 58016ff
- Merge pull request #1746 from JamieSlome/patch-1 0749e1d
- Create SECURITY.md 69b7c50
-
1.5.2 - 2022-04-12
- Update Changelog 7f15fd5
- Merge pull request #1743 from gruntjs/cleanup-link b0ec6e1
- Clean up link handling 433f91b
-
1.5.1 - 2022-04-11
- Merge pull request #1742 from gruntjs/update-symlink-test ad22608
- Fix symlink test 0652305
-
1.5.0 - 2022-04-11
- Updated changelog b2b2c2b
- Merge pull request #1740 from gruntjs/update-deps-22-10 3eda6ae
- Update testing matrix 47d32de
- More updates 2e9161c
- Remove console log 04b960e
- Update dependencies, tests... aad3d45
- Merge pull request #1736 from justlep/main fdc7056
- support .cjs extension e35fe54
-
1.4.1 - 2021-05-24
- Update Changelog e7625e5
- Merge pull request #1731 from gruntjs/update-options 5d67e34
- Fix ci install d13bf88
- Switch to Actions 08896ae
- Update grunt-known-options eee0673
- Add note about a breaking change 1b6e288
from grunt GitHub release notesv1.5.2...v1.5.3
v1.5.1...v1.5.2
v1.5.0...v1.5.1
v1.4.1...v1.5.0
v1.4.0...v1.4.1
Commit messages
Package name: grunt
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs