Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade snyk from 1.369.2 to 1.369.3 #134

Closed
wants to merge 1 commit into from
Closed

[Snyk] Upgrade snyk from 1.369.2 to 1.369.3 #134

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Aug 6, 2020

Snyk has created this PR to upgrade snyk from 1.369.2 to 1.369.3.

merge advice

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 2 days ago, on 2020-08-04.

The recommended version fixes:

Severity Issue Exploit Maturity
Arbitrary Code Injection
SNYK-JS-SERIALIZEJAVASCRIPT-570062		 Proof of Concept
Cryptographic Issues
SNYK-JS-ELLIPTIC-571484		 Proof of Concept
Prototype Pollution
SNYK-JS-AJV-584908		 No Known Exploit
Insertion of Sensitive Information into Log File
SNYK-JS-NPMREGISTRYFETCH-575432		 No Known Exploit
Insertion of Sensitive Information into Log File
SNYK-JS-NPM-575435		 No Known Exploit
Regular Expression Denial of Service (ReDoS )
SNYK-JS-MARKED-584281		 No Known Exploit
Prototype Pollution
SNYK-JS-LODASH-567746		 Proof of Concept
Remote Code Execution (RCE)
SNYK-JS-BUNYAN-573166		 No Known Exploit
Release notes
Package name: snyk
  • 1.369.3 - 2020-08-04

    1.369.3 (2020-08-04)

    Bug Fixes

    • propagate failed monitor scans all the way to the user (7ef59ed)
    • when using --all-projects for test & monitor generating dependencies was failing silently and only visible with -d.
      Propagate a smaller summary message to the user letting them know some scans failed.
  • 1.369.2 - 2020-07-30

    1.369.2 (2020-07-30)

    Bug Fixes

    • command too long in reachable vulns flow (8ac28cd)
from snyk GitHub release notes
Commit messages
Package name: snyk
  • 5ad17d8 Merge pull request #1301 from snyk/fix/throw-erorr-if-all-tests-failed
  • 59591bf Merge pull request #1294 from snyk/chore/update-run-test-exports
  • 7ef59ed fix: propagate failed monitor scans all the way to the user
  • f90157d Merge pull request #1302 from snyk/chore/ignore-node-diagnostic-report
  • 2a204e2 chore: ignore node diagnostic report
  • af94836 Merge pull request #1300 from snyk/chore/flaky-test
  • 6d2d76a chore(test): disably flaky Windows tests
  • 11155ec Merge pull request #1290 from snyk/chore/remove-irrelevant-comment
  • d538039 chore: update run test exports to modules syntax
  • 7d8dccc chore: remove irrelevant comment

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@pull-assistant
Copy link

pull-assistant bot commented Aug 6, 2020

Score: 1.00

Best reviewed: commit by commit

Optimal code review plan

     fix: upgrade snyk from 1.369.2 to 1.369.3

Powered by Pull Assistant. Last update 21045ea ... 21045ea. Read the comment docs.

@codeclimate
Copy link

codeclimate bot commented Aug 6, 2020

Code Climate has analyzed commit 21045ea and detected 0 issues on this pull request.

View more on Code Climate.

randytarampi added a commit to randytarampi/pseudoimage that referenced this pull request Aug 29, 2020
@randytarampi
fix(package): Bump packages for security updates (2020-08-29)
4a7b43f 
Looking at a few of these Snyk issues:

- close randytarampi/slamscan#131 (comment)
- close randytarampi/lwip#47 (comment)
- close randytarampi/lwip#46 (comment)
- close randytarampi/pseudolocalize#43 (comment)
- close randytarampi/pseudolocalize#44 (comment)
- close #60 (comment)
- close randytarampi/slamscan#132 (comment)
- close randytarampi/slamscan#134 (comment)
- close randytarampi/slamscan#133 (comment)
- close #61 (comment)
- close randytarampi/slamscan#135 (comment)
- close randytarampi/pseudolocalize#45 (comment)
- close #62 (comment)
- close randytarampi/lwip#48 (comment)
- close randytarampi/me#748 (comment)
randytarampi added a commit that referenced this pull request Aug 29, 2020
@randytarampi
fix(package): Bump packages for security updates (2020-08-29)
c1fba6d 
Looking at a few of these Snyk issues:

- close #131 (comment)
- close randytarampi/lwip#47 (comment)
- close randytarampi/lwip#46 (comment)
- close randytarampi/pseudolocalize#43 (comment)
- close randytarampi/pseudolocalize#44 (comment)
- close randytarampi/pseudoimage#60 (comment)
- close #132 (comment)
- close #134 (comment)
- close #133 (comment)
- close randytarampi/pseudoimage#61 (comment)
- close #135 (comment)
- close randytarampi/pseudolocalize#45 (comment)
- close randytarampi/pseudoimage#62 (comment)
- close randytarampi/lwip#48 (comment)
- close randytarampi/me#748 (comment)
randytarampi added a commit to randytarampi/lwip that referenced this pull request Aug 29, 2020
@randytarampi
fix(package): Bump packages for security updates (2020-08-29)
fb1fa8e 
Looking at a few of these Snyk issues:

- close randytarampi/slamscan#131 (comment)
- close #47 (comment)
- close #46 (comment)
- close randytarampi/pseudolocalize#43 (comment)
- close randytarampi/pseudolocalize#44 (comment)
- close randytarampi/pseudoimage#60 (comment)
- close randytarampi/slamscan#132 (comment)
- close randytarampi/slamscan#134 (comment)
- close randytarampi/slamscan#133 (comment)
- close randytarampi/pseudoimage#61 (comment)
- close randytarampi/slamscan#135 (comment)
- close randytarampi/pseudolocalize#45 (comment)
- close randytarampi/pseudoimage#62 (comment)
- close #48 (comment)
- close randytarampi/me#748 (comment)
randytarampi added a commit to randytarampi/pwa that referenced this pull request Aug 29, 2020
@randytarampi
fix(package): Bump packages for security updates (2020-08-29)
647c4f8 
Looking at a few of these Snyk issues:

- close randytarampi/slamscan#131 (comment)
- close randytarampi/lwip#47 (comment)
- close randytarampi/lwip#46 (comment)
- close randytarampi/pseudolocalize#43 (comment)
- close randytarampi/pseudolocalize#44 (comment)
- close randytarampi/pseudoimage#60 (comment)
- close randytarampi/slamscan#132 (comment)
- close randytarampi/slamscan#134 (comment)
- close randytarampi/slamscan#133 (comment)
- close randytarampi/pseudoimage#61 (comment)
- close randytarampi/slamscan#135 (comment)
- close randytarampi/pseudolocalize#45 (comment)
- close randytarampi/pseudoimage#62 (comment)
- close randytarampi/lwip#48 (comment)
- close randytarampi/me#748 (comment)
randytarampi added a commit to randytarampi/me that referenced this pull request Aug 29, 2020
@randytarampi
fix(package): Bump packages for security updates (2020-08-29)
ed0ea39 
Looking at a few of these Snyk issues:

- close randytarampi/slamscan#131 (comment)
- close randytarampi/lwip#47 (comment)
- close randytarampi/lwip#46 (comment)
- close randytarampi/pseudolocalize#43 (comment)
- close randytarampi/pseudolocalize#44 (comment)
- close randytarampi/pseudoimage#60 (comment)
- close randytarampi/slamscan#132 (comment)
- close randytarampi/slamscan#134 (comment)
- close randytarampi/slamscan#133 (comment)
- close randytarampi/pseudoimage#61 (comment)
- close randytarampi/slamscan#135 (comment)
- close randytarampi/pseudolocalize#45 (comment)
- close randytarampi/pseudoimage#62 (comment)
- close randytarampi/lwip#48 (comment)
- close #748 (comment)
randytarampi pushed a commit to randytarampi/pseudolocalize that referenced this pull request Aug 29, 2020
@semantic-release-bot
release(travis): Release 2.13.4
debe9e0 
[skip ci]

## [2.13.4](v2.13.3...v2.13.4) (2020-08-29)

### Bug Fixes

* **package:** Bump packages for security updates (2020-08-29) ([d260d09](d260d09)), closes [/github.com/randytarampi/slamscan/pull/131#issuecomment-669014514](https://github.com//github.com/randytarampi/slamscan/pull/131/issues/issuecomment-669014514) [/github.com/randytarampi/lwip/pull/47#issuecomment-669576137](https://github.com//github.com/randytarampi/lwip/pull/47/issues/issuecomment-669576137) [/github.com/randytarampi/lwip/pull/46#issuecomment-669587798](https://github.com//github.com/randytarampi/lwip/pull/46/issues/issuecomment-669587798) [/github.com//pull/43#issuecomment-669639431](https://github.com//github.com/randytarampi/pseudolocalize/pull/43/issues/issuecomment-669639431) [/github.com//pull/44#issuecomment-669640745](https://github.com//github.com/randytarampi/pseudolocalize/pull/44/issues/issuecomment-669640745) [/github.com/randytarampi/pseudoimage/pull/60#issuecomment-669730376](https://github.com//github.com/randytarampi/pseudoimage/pull/60/issues/issuecomment-669730376) [/github.com/randytarampi/slamscan/pull/132#issuecomment-669738806](https://github.com//github.com/randytarampi/slamscan/pull/132/issues/issuecomment-669738806) [/github.com/randytarampi/slamscan/pull/134#issuecomment-669738983](https://github.com//github.com/randytarampi/slamscan/pull/134/issues/issuecomment-669738983) [/github.com/randytarampi/slamscan/pull/133#issuecomment-669739016](https://github.com//github.com/randytarampi/slamscan/pull/133/issues/issuecomment-669739016) [/github.com/randytarampi/pseudoimage/pull/61#issuecomment-669743569](https://github.com//github.com/randytarampi/pseudoimage/pull/61/issues/issuecomment-669743569) [/github.com/randytarampi/slamscan/pull/135#issuecomment-671014646](https://github.com//github.com/randytarampi/slamscan/pull/135/issues/issuecomment-671014646) [/github.com//pull/45#issuecomment-673205158](https://github.com//github.com/randytarampi/pseudolocalize/pull/45/issues/issuecomment-673205158) [/github.com/randytarampi/pseudoimage/pull/62#issuecomment-673288919](https://github.com//github.com/randytarampi/pseudoimage/pull/62/issues/issuecomment-673288919) [/github.com/randytarampi/lwip/pull/48#issuecomment-674452146](https://github.com//github.com/randytarampi/lwip/pull/48/issues/issuecomment-674452146) [/github.com/randytarampi/me/pull/748#issuecomment-674633206](https://github.com//github.com/randytarampi/me/pull/748/issues/issuecomment-674633206)
randytarampi pushed a commit to randytarampi/pseudoimage that referenced this pull request Aug 29, 2020
@semantic-release-bot
release(travis): Release 3.1.6
aa2277b 
[skip ci]

## [3.1.6](v3.1.5...v3.1.6) (2020-08-29)

### Bug Fixes

* **package:** Bump packages for security updates (2020-08-29) ([4a7b43f](4a7b43f)), closes [/github.com/randytarampi/slamscan/pull/131#issuecomment-669014514](https://github.com//github.com/randytarampi/slamscan/pull/131/issues/issuecomment-669014514) [/github.com/randytarampi/lwip/pull/47#issuecomment-669576137](https://github.com//github.com/randytarampi/lwip/pull/47/issues/issuecomment-669576137) [/github.com/randytarampi/lwip/pull/46#issuecomment-669587798](https://github.com//github.com/randytarampi/lwip/pull/46/issues/issuecomment-669587798) [/github.com/randytarampi/pseudolocalize/pull/43#issuecomment-669639431](https://github.com//github.com/randytarampi/pseudolocalize/pull/43/issues/issuecomment-669639431) [/github.com/randytarampi/pseudolocalize/pull/44#issuecomment-669640745](https://github.com//github.com/randytarampi/pseudolocalize/pull/44/issues/issuecomment-669640745) [/github.com//pull/60#issuecomment-669730376](https://github.com//github.com/randytarampi/pseudoimage/pull/60/issues/issuecomment-669730376) [/github.com/randytarampi/slamscan/pull/132#issuecomment-669738806](https://github.com//github.com/randytarampi/slamscan/pull/132/issues/issuecomment-669738806) [/github.com/randytarampi/slamscan/pull/134#issuecomment-669738983](https://github.com//github.com/randytarampi/slamscan/pull/134/issues/issuecomment-669738983) [/github.com/randytarampi/slamscan/pull/133#issuecomment-669739016](https://github.com//github.com/randytarampi/slamscan/pull/133/issues/issuecomment-669739016) [/github.com//pull/61#issuecomment-669743569](https://github.com//github.com/randytarampi/pseudoimage/pull/61/issues/issuecomment-669743569) [/github.com/randytarampi/slamscan/pull/135#issuecomment-671014646](https://github.com//github.com/randytarampi/slamscan/pull/135/issues/issuecomment-671014646) [/github.com/randytarampi/pseudolocalize/pull/45#issuecomment-673205158](https://github.com//github.com/randytarampi/pseudolocalize/pull/45/issues/issuecomment-673205158) [/github.com//pull/62#issuecomment-673288919](https://github.com//github.com/randytarampi/pseudoimage/pull/62/issues/issuecomment-673288919) [/github.com/randytarampi/lwip/pull/48#issuecomment-674452146](https://github.com//github.com/randytarampi/lwip/pull/48/issues/issuecomment-674452146) [/github.com/randytarampi/me/pull/748#issuecomment-674633206](https://github.com//github.com/randytarampi/me/pull/748/issues/issuecomment-674633206)
randytarampi pushed a commit that referenced this pull request Aug 29, 2020
@semantic-release-bot
release(travis): Release 3.0.7
f206dc0 
[skip ci]

## [3.0.7](v3.0.6...v3.0.7) (2020-08-29)

### Bug Fixes

* **package:** Bump packages for security updates (2020-08-29) ([c1fba6d](c1fba6d)), closes [/github.com//pull/131#issuecomment-669014514](https://github.com//github.com/randytarampi/slamscan/pull/131/issues/issuecomment-669014514) [/github.com/randytarampi/lwip/pull/47#issuecomment-669576137](https://github.com//github.com/randytarampi/lwip/pull/47/issues/issuecomment-669576137) [/github.com/randytarampi/lwip/pull/46#issuecomment-669587798](https://github.com//github.com/randytarampi/lwip/pull/46/issues/issuecomment-669587798) [/github.com/randytarampi/pseudolocalize/pull/43#issuecomment-669639431](https://github.com//github.com/randytarampi/pseudolocalize/pull/43/issues/issuecomment-669639431) [/github.com/randytarampi/pseudolocalize/pull/44#issuecomment-669640745](https://github.com//github.com/randytarampi/pseudolocalize/pull/44/issues/issuecomment-669640745) [/github.com/randytarampi/pseudoimage/pull/60#issuecomment-669730376](https://github.com//github.com/randytarampi/pseudoimage/pull/60/issues/issuecomment-669730376) [/github.com//pull/132#issuecomment-669738806](https://github.com//github.com/randytarampi/slamscan/pull/132/issues/issuecomment-669738806) [/github.com//pull/134#issuecomment-669738983](https://github.com//github.com/randytarampi/slamscan/pull/134/issues/issuecomment-669738983) [/github.com//pull/133#issuecomment-669739016](https://github.com//github.com/randytarampi/slamscan/pull/133/issues/issuecomment-669739016) [/github.com/randytarampi/pseudoimage/pull/61#issuecomment-669743569](https://github.com//github.com/randytarampi/pseudoimage/pull/61/issues/issuecomment-669743569) [/github.com//pull/135#issuecomment-671014646](https://github.com//github.com/randytarampi/slamscan/pull/135/issues/issuecomment-671014646) [/github.com/randytarampi/pseudolocalize/pull/45#issuecomment-673205158](https://github.com//github.com/randytarampi/pseudolocalize/pull/45/issues/issuecomment-673205158) [/github.com/randytarampi/pseudoimage/pull/62#issuecomment-673288919](https://github.com//github.com/randytarampi/pseudoimage/pull/62/issues/issuecomment-673288919) [/github.com/randytarampi/lwip/pull/48#issuecomment-674452146](https://github.com//github.com/randytarampi/lwip/pull/48/issues/issuecomment-674452146) [/github.com/randytarampi/me/pull/748#issuecomment-674633206](https://github.com//github.com/randytarampi/me/pull/748/issues/issuecomment-674633206)
@randytarampi
Copy link
Owner

🎉 This issue has been resolved in version 3.0.7 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

randytarampi pushed a commit to randytarampi/lwip that referenced this pull request Aug 29, 2020
@semantic-release-bot
release(travis): Release 3.0.1
1d20825 
[skip ci]

## [3.0.1](v3.0.0...v3.0.1) (2020-08-29)

### Bug Fixes

* **package:** Bump packages for security updates (2020-08-29) ([fb1fa8e](fb1fa8e)), closes [/github.com/randytarampi/slamscan/pull/131#issuecomment-669014514](https://github.com//github.com/randytarampi/slamscan/pull/131/issues/issuecomment-669014514) [/github.com//pull/47#issuecomment-669576137](https://github.com//github.com/randytarampi/lwip/pull/47/issues/issuecomment-669576137) [/github.com//pull/46#issuecomment-669587798](https://github.com//github.com/randytarampi/lwip/pull/46/issues/issuecomment-669587798) [/github.com/randytarampi/pseudolocalize/pull/43#issuecomment-669639431](https://github.com//github.com/randytarampi/pseudolocalize/pull/43/issues/issuecomment-669639431) [/github.com/randytarampi/pseudolocalize/pull/44#issuecomment-669640745](https://github.com//github.com/randytarampi/pseudolocalize/pull/44/issues/issuecomment-669640745) [/github.com/randytarampi/pseudoimage/pull/60#issuecomment-669730376](https://github.com//github.com/randytarampi/pseudoimage/pull/60/issues/issuecomment-669730376) [/github.com/randytarampi/slamscan/pull/132#issuecomment-669738806](https://github.com//github.com/randytarampi/slamscan/pull/132/issues/issuecomment-669738806) [/github.com/randytarampi/slamscan/pull/134#issuecomment-669738983](https://github.com//github.com/randytarampi/slamscan/pull/134/issues/issuecomment-669738983) [/github.com/randytarampi/slamscan/pull/133#issuecomment-669739016](https://github.com//github.com/randytarampi/slamscan/pull/133/issues/issuecomment-669739016) [/github.com/randytarampi/pseudoimage/pull/61#issuecomment-669743569](https://github.com//github.com/randytarampi/pseudoimage/pull/61/issues/issuecomment-669743569) [/github.com/randytarampi/slamscan/pull/135#issuecomment-671014646](https://github.com//github.com/randytarampi/slamscan/pull/135/issues/issuecomment-671014646) [/github.com/randytarampi/pseudolocalize/pull/45#issuecomment-673205158](https://github.com//github.com/randytarampi/pseudolocalize/pull/45/issues/issuecomment-673205158) [/github.com/randytarampi/pseudoimage/pull/62#issuecomment-673288919](https://github.com//github.com/randytarampi/pseudoimage/pull/62/issues/issuecomment-673288919) [/github.com//pull/48#issuecomment-674452146](https://github.com//github.com/randytarampi/lwip/pull/48/issues/issuecomment-674452146) [/github.com/randytarampi/me/pull/748#issuecomment-674633206](https://github.com//github.com/randytarampi/me/pull/748/issues/issuecomment-674633206)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@snyk-bot @randytarampi