Chore: fixes npm audit vulnerabilities - autoclosed #99

lalaps · 2022-09-06T00:14:33Z

This PR fixes all found vulnerabilities.

Fixed 5 of 5 npm vulnerabilities.
0 issues left.
Success Rate: 100%

Vulnerabilities:

Authorization Bypass in parse-path
Library: parse-path
Affected versions: <5.0.0
Severity: high
Fix: ✔️ true
Root Libraries:

parse-url parses http URLs incorrectly, making it vulnerable to host name spoofing
Library: parse-url
Affected versions: <8.1.0
Severity: moderate
Fix: ✔️ true
Root Libraries:

In case of closing this PR, it will be recreated. If that's undesired, modify config.

This change is

All vulnerabilities fixed in default branch.

pustovitDmytro · 2022-09-06T00:15:05Z

	Warnings
⚠️	Only owner can change system files [package-lock.json], please provide issue instead

	Messages
📖	lalaps[bot] login already contributed 5 times
📖	Changed Files in this PR: package-lock.json

Generated by 🚫 dangerJS against e48a2ab

sonarcloud · 2022-09-20T00:12:09Z

Kudos, SonarCloud Quality Gate passed!

No Coverage information
No Duplication information

lalaps bot requested a review from pustovitDmytro as a code owner September 6, 2022 00:14

lalaps bot added the dependencies label Sep 6, 2022

lalaps bot assigned pustovitDmytro Sep 6, 2022

lalaps bot added the security label Sep 6, 2022

lalaps bot mentioned this pull request Sep 6, 2022

Lalaps Dashboard #66

Open

lalaps bot force-pushed the lalaps/npm-fix branch from 8b94abd to b681fd9 Compare September 16, 2022 00:17

Chore: fixes npm audit vulnerabilities

e48a2ab

lalaps bot force-pushed the lalaps/npm-fix branch from b681fd9 to e48a2ab Compare September 20, 2022 00:11

lalaps bot changed the title ~~Chore: fixes npm audit vulnerabilities~~ Chore: fixes npm audit vulnerabilities - autoclosed Oct 3, 2022

lalaps bot closed this Oct 3, 2022

lalaps bot deleted the lalaps/npm-fix branch October 3, 2022 00:15

Provide feedback