New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Fix for 17 vulnerabilities #41

Open

shaffiqv wants to merge 1 commit into main from snyk-fix-1d08a72f8a1955b45733bcf878e8a845

Owner

shaffiqv commented Oct 6, 2022

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- client/package.json
- client/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	No	Proof of Concept
	484/1000 Why? Has a fix available, CVSS 5.4	Open Redirect SNYK-JS-GOT-2932019	Yes	No Known Exploit
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-IMMER-1540542	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	521/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4	Information Exposure SNYK-JS-NANOID-2332193	No	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-PARSEURL-3023021	Yes	Proof of Concept
	571/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5	Improper Input Validation SNYK-JS-PARSEURL-3024398	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-PRISMJS-1585202	No	Proof of Concept
	484/1000 Why? Has a fix available, CVSS 5.4	Cross-site Scripting (XSS) SNYK-JS-PRISMJS-2404333	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-PROMPTS-1729737	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SANITIZEHTML-2957526	No	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Remote Code Execution (RCE) SNYK-JS-SHARP-2848109	Yes	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: gatsby

The new version differs by 250 commits.

2c324f6 chore(release): Publish
55c7183 feat(contentful): add support for tables in Rich Text (Changed sentences freeCodeCamp/freeCodeCamp#33870)
053180a fix(gatsby): Better TS compilation error (Missing Project Euler Challenges freeCodeCamp/freeCodeCamp#35594)
0cf0bd9 chore(release): Publish next
9a91295 fix(gatsby-plugin-image): fix image flickers (Rocks: Buttons not redirecting properly freeCodeCamp/freeCodeCamp#35226)
f358dc3 chore(release): Publish next
966aca8 feat(gatsby): Improvements to GraphQL TypeScript Generation (Added the Introduction to the Coding Interview Take Home Projects freeCodeCamp/freeCodeCamp#35581)
8bad9b3 perf(gatsby): Minify page-data (Fixed Typographical Error in guide/english/git/index.md freeCodeCamp/freeCodeCamp#35578)
39e9840 chore(gatsby): Expose `serverDataStatus` field in SSR type declaration file (Remove stub text from filled guide articles freeCodeCamp/freeCodeCamp#35505)
ebd63b2 feat(gatsby-source-wordpress): use image cdn for non-resizable images in html (svgs/gifs mainly) (The advice in 'How to work on coding challenges' could use fleshing out freeCodeCamp/freeCodeCamp#35529)
5e51519 fix(gatsby-source-wordpress): update test deps and fix int tests (Solution not working - "Truncate A String" freeCodeCamp/freeCodeCamp#35582)
128c7bb feat(gatsby-source-wordpress): always include draft slugs (fix(challenge): add support for IIFE arrow function freeCodeCamp/freeCodeCamp#35573)
abc6dca feat(gatsby-plugin-image): add check for node.gatsbyImage in the getImage helper (Fixed Typographical Error in guide/english/accessibility/index.md freeCodeCamp/freeCodeCamp#35507)
e51c3a3 chore(release): Publish next
c9d98a4 feat(gatsby): Initial GraphQL Typegen Implementation (feat(interview-prep): Converting and transferring Rosetta problems freeCodeCamp/freeCodeCamp#35487)
17cbc7c fix(deps): update minor and patch dependencies for gatsby-source-graphql (fix: update sass challenge - russian description freeCodeCamp/freeCodeCamp#35545)
10752ed fix(deps): update dependency fs-extra to ^10.1.0 (Deleted an unneccessary comma freeCodeCamp/freeCodeCamp#34976)
0abdcd6 fix(deps): update dependency coffeescript to ^2.7.0 for gatsby-plugin-coffeescript (Fill in introduction sections freeCodeCamp/freeCodeCamp#35550)
7cda002 fix(deps): update dependency eslint-plugin-import to ^2.26.0 (fix: landing page image css fix freeCodeCamp/freeCodeCamp#35551)
3e74a9f fix(deps): update dependency eslint-plugin-react-hooks to ^4.5.0 (A solution was missing for Data Structures: Use Breadth First Search in a Binary Search Tree freeCodeCamp/freeCodeCamp#35552)
fb98116 fix(deps): update minor and patch dependencies for gatsby-source-drupal (Broken Tests in Add Axes to a Visualization challenge in D3 freeCodeCamp/freeCodeCamp#35554)
c09287a chore(deps): update starters and examples ([NEW] A clearer, more readable return statement freeCodeCamp/freeCodeCamp#35565)
bf854ca fix(deps): update dependency prop-types to ^15.8.1 for gatsby-link (fix: normalize font weights globally and font hierarchy on map freeCodeCamp/freeCodeCamp#35291)
71eb414 chore(deps): update dependency typescript to ^4.6.4 (Donate page freeCodeCamp/freeCodeCamp#34984)

See the full diff

Package name: gatsby-cli

The new version differs by 250 commits.

8d07242 chore(release): Publish
0790895 chore(gatsby): Update README (Agile/index.md - correct spelling of "Português" freeCodeCamp/freeCodeCamp#33615)
06760d7 chore(gatsby): Change comment format in actions/public (Full translation freeCodeCamp/freeCodeCamp#33592)
7d66a23 feat(gatsby): capture number of ssg,dsg,ssr pages in telemetry (Production freeCodeCamp/freeCodeCamp#33337)
98a843c fix(gatsby): use lmdb.removeSync so getNode can't return deleted nodes (my change freeCodeCamp/freeCodeCamp#33554)
4d8e40b fix(gatsby-source-wordpress): Add steps for `refetch_ALL` (Added links to each CSS framework and updated index.md freeCodeCamp/freeCodeCamp#33264)
4761dc3 fix(gatsby): restore onPreBuild to being called right after bootstrap finishes (Add WebAIM Color Contrast Checker freeCodeCamp/freeCodeCamp#33591)
1cdbab6 fix(deps): update starters and examples gatsby packages to ^3.14.3 (UX reasons for dropdowns freeCodeCamp/freeCodeCamp#33553)
0f421db chore(release): Publish next
7d6a0aa fix(gatsby): fix page-tree in ink-cli (Update the full form of gcc freeCodeCamp/freeCodeCamp#33579)
3993819 chore(gatsby): Add `assetPrefix` to `IGatsbyConfig` (Improved readability freeCodeCamp/freeCodeCamp#33575)
6cc964a fix(gatsby-source-wordpress): restore PQR support (Corrected the order of words freeCodeCamp/freeCodeCamp#33590)
9eef270 specifying what actually changed (fixed spelling errors freeCodeCamp/freeCodeCamp#33452)
2975c4d feat(gatsby,gatsby-link): add queue to prefetch (Correcting grammatical errors freeCodeCamp/freeCodeCamp#33530)
68fe836 fix(gatsby): temporary workaround for stale jobs cache (Fixing inline code indentation CSS Coments freeCodeCamp/freeCodeCamp#33586)
a800d9d fix(gatsby): Update internal usage of .runQuery (Add Accessible Header Example freeCodeCamp/freeCodeCamp#33571)
677760c chore(docs): Clarify SEO component guide (Update index.md freeCodeCamp/freeCodeCamp#33451)
ccca4b3 fix(gatsby): only remove unused code when apis got removed (Added words "my changes" to the article freeCodeCamp/freeCodeCamp#33527)
8dbf550 fix(gatsby): assign correct parentSpans to PQR activities (Ant Colony Optimization freeCodeCamp/freeCodeCamp#33568)
31d5a5e fix(gatsby-dev-cli): resolve correct versions of packages with unpkg (Added CPU relationship diagram. freeCodeCamp/freeCodeCamp#33551)
5110074 fix(gatsby-plugin-gatsby-cloud): emit file nodes after source updates (order point included freeCodeCamp/freeCodeCamp#33548)
d2329df fix(gatsby): make sure 404 and 500 page inherit stateful status from original page (Update add-columns-with-grid-template-columns.english.md (Wording order) freeCodeCamp/freeCodeCamp#33544)
68e5b90 chore(docs): Update query var in part-7 tutorial (Improve Russian translation of Python pow guide freeCodeCamp/freeCodeCamp#33559)
a8cab55 chore(gatsby-plugin-react-helmet): Update Examples (Introduction to Design Patterns freeCodeCamp/freeCodeCamp#33552)

See the full diff

Package name: gatsby-plugin-manifest

The new version differs by 250 commits.

f6734b9 chore(release): Publish
9a616c0 fix(gatsby): wait for LMDB upserts to finish before emitting ENGINES_READY (Production freeCodeCamp/freeCodeCamp#34853) ([PRODUCTION]chore: Update gulp to support node 10 freeCodeCamp/freeCodeCamp#34896)
f5705b9 fix(create-gatsby): Add required deps for theme-ui option (Added solution. freeCodeCamp/freeCodeCamp#34885) (Fixed bad redireccion of the link with "Storing Values with the Equal Operator" freeCodeCamp/freeCodeCamp#34897)
9a579f1 fix(gatsby-core-utils): fix 304 when file does not exists (Bank of Scotland Job Vacancies And Opportunities freeCodeCamp/freeCodeCamp#34842) (ES6 Challenge requiring const does not require the variable to be in all caps freeCodeCamp/freeCodeCamp#34888)
148d016 fix(gatsby): Remove double enhanced-resolve dep (Intermediate explanation number two freeCodeCamp/freeCodeCamp#34854) (decodeHTMLEntities causes build failure freeCodeCamp/freeCodeCamp#34889)
19b0304 feat(gatsby-core-utils): improve fetch-remote-file (Solution to check-for-all-or-none.english.md javascript challenge freeCodeCamp/freeCodeCamp#34758)
ac1d777 fix(gatsby-source-contentful): avoid confusion of Gatsby node and Contentful node count in logs (fix: bump donor no as of Jan 8, 2019 freeCodeCamp/freeCodeCamp#34830)
ee8c874 refactor(gatsby-source-contentful): remove unnecessary check for existing node (Metro Bank Job Vacancies And Opportunities For Freshers & Experienced freeCodeCamp/freeCodeCamp#34829)
056b48e test(gatsby): Add a memory test suite command to the memory benchmark (changes to no validate comment freeCodeCamp/freeCodeCamp#34810)
45cb1f1 chore(release): Publish next
4c832bf documentation: Add Third Party Schema (Fixed typo in JavaScript curriculum freeCodeCamp/freeCodeCamp#34820)
9f23dec chore(gatsby): cache shouldn't reference nodes strongly (fix: the guide for header tag is not well fromatted freeCodeCamp/freeCodeCamp#34821)
f2d4830 feat(gatsby-core-utils): create proper mutex (Intermediate Algorithm Search And Replace needs to have solution replaced freeCodeCamp/freeCodeCamp#34761)
21ef185 chore(changelogs): update changelogs (Feature request: Redesigning the curriculum UI freeCodeCamp/freeCodeCamp#34826)
a2f99af fix(deps): update starters and examples gatsby packages to ^4.7.2 (feat(interview-prep): Transfering Rosetta problems from Curriculum freeCodeCamp/freeCodeCamp#34822)
76c89d8 chore(release): Publish next
54d29c4 chore(gatsby): upgrade from lmdb-store to lmdb (fix(client): wait for async tests to finish freeCodeCamp/freeCodeCamp#34576)
3df8583 fix(core): Make filter/sort query only hold onto node properties it needs (fix(client): formatting challenge descriptions and instructions freeCodeCamp/freeCodeCamp#34747)
3c3362b refactor(core): Make load plugins modular, prepare for TS (Added a solution to fix stub freeCodeCamp/freeCodeCamp#34813)
3d74584 feat(gatsby): allow referencing derived types in schema customization (Minor rephrasing of the lesson's description freeCodeCamp/freeCodeCamp#34787)
bfd04d3 fix(gatsby): Content Sync DSG bug (Replace stub page with new hints freeCodeCamp/freeCodeCamp#34799)
326a483 fix(deps): update dependency sharp to ^0.30.1 (Pig Latin Chllenge - Test for vowel at end of the word. freeCodeCamp/freeCodeCamp#34755)
7b958f9 docs: update typo Forestry (Peninsula HOTEL Job Application Form 2019 freeCodeCamp/freeCodeCamp#34805)
ba8e21c feat(gatsby): Match node manifest pages by page context slug (Adjusted Copyright to 2019 freeCodeCamp/freeCodeCamp#34790)

See the full diff

Package name: gatsby-source-filesystem

The new version differs by 250 commits.

b8eac2d chore(release): Publish
3253a38 fix(gatsby-plugin-mdx): Hashing and pluginOptions (update translation gcd-euclidean freeCodeCamp/freeCodeCamp#36387) (Fixed typos in description of challenge: "Use a Template Engine's Powers" freeCodeCamp/freeCodeCamp#36395)
1880491 fix(gatsby-script): Reach router import (fix: Remove non-functional css freeCodeCamp/freeCodeCamp#36385) (Removed erroneous apostrophes from test line 3 - create-a-controlled-input freeCodeCamp/freeCodeCamp#36394)
f664ad2 feat(gatsby): Telemetry tracking for Head API (fix: Update docs, recommending install all packages freeCodeCamp/freeCodeCamp#36352)
ab55e4e chore: Update `got` (Update to "Search and Replace" intermediate solution freeCodeCamp/freeCodeCamp#36366)
2b4ff76 fix(gatsby): Make runtime error overlay work in non-v8 browsers (Final Projects Accept Any Link as a Solution freeCodeCamp/freeCodeCamp#36365)
f990e08 fix(test): clear and close lmdb after each test suite (Why use mlab in "Implement the Serialization of a Passport User"? freeCodeCamp/freeCodeCamp#36343)
7fcf580 fix(gatsby): e.remove() is not a function when using Gatsby Head API (fix(challenge): rename challenge, change fields to properties, fix test freeCodeCamp/freeCodeCamp#36338)
25fb9d1 chore: Fix pipeline tests ( update translation graph-algorithms freeCodeCamp/freeCodeCamp#36363)
a9132a5 chore(deps): update sharp (Update challenge descriptions with code tags freeCodeCamp/freeCodeCamp#35539)
bc80c23 chore: Add note about rehype-slug-custom-id
5b6f1f6 chore(gatsby): upgrade multer (Bump normalizr from 2.3.1 to 3.4.0 freeCodeCamp/freeCodeCamp#36359)
f2f0acf chore(gatsby-telemetry): upgrade git-up (Bump remark-parse from 5.0.0 to 6.0.3 freeCodeCamp/freeCodeCamp#36358)
86a8efc chore(release): Publish next
0705ac7 chore(gatsby-plugin-mdx): Update .gitignore
c92db36 BREAKING CHANGE(gatsby-plugin-mdx): MDX v2 (fix: add solution to Bootstrap challenge freeCodeCamp/freeCodeCamp#35650)
3c0dd6d chore(release): Publish next
86b6ee9 Revert "chore(gatsby): Make `plugins` in `PluginOptions` type optional (Get a hint link broken for "Basic CSS: Improve Compatibility with Browser Fallbacks" freeCodeCamp/freeCodeCamp#36351)"
a2fa5a2 chore(gatsby): Make `plugins` in `PluginOptions` type optional (Get a hint link broken for "Basic CSS: Improve Compatibility with Browser Fallbacks" freeCodeCamp/freeCodeCamp#36351)
6ecfe4a fix(gatsby-source-contentful): Correctly overwrite field type on Assets (update translation flood-fill freeCodeCamp/freeCodeCamp#36337)
0ed362c chore(docs): Pre-encoded unicode characters can't be used in paths (ES6: Write Concise Object Literal Declarations Using Simple Fields freeCodeCamp/freeCodeCamp#36325)
2bbe96d fix(deps): update dependency file-type to ^16.5.4 for gatsby-source-filesystem (chore: bump eslint-config-prettier from 4.1.0 to 4.3.0 freeCodeCamp/freeCodeCamp#36276)
2be3fa7 chore(docs): Add first batch of Cloud docs (fix(server): Update donor num - June 9, 2019 freeCodeCamp/freeCodeCamp#36218)
4238142 chore(docs): Remove outdated examples and recipes (Empty white space between the navbar and main content under dark theme. freeCodeCamp/freeCodeCamp#36335)

See the full diff

Package name: prismjs

The new version differs by 243 commits.

703881e 1.27.0
7ac1373 Updated changelog for v1.27.0 (Fixes "Javascript uses use" typos freeCodeCamp/freeCodeCamp#3342)
e002e78 Command Line: Escape markup in command line output (make "basejump" singular instead of plural on the map freeCodeCamp/freeCodeCamp#3341)
13b56a9 Bump follow-redirects from 1.14.7 to 1.14.8 (Test cases need to be extended freeCodeCamp/freeCodeCamp#3338)
f094c4a Bump yargs-parser from 5.0.0 to 5.0.1 (Fix typo in bonfire test case freeCodeCamp/freeCodeCamp#3334)
9fd4c74 Bump ajv from 6.10.0 to 6.12.6 (Cannot seed database on OS X freeCodeCamp/freeCodeCamp#3333)
3fcca6b Bump pathval from 1.1.0 to 1.1.1 (Error: "You should have made use of the reduce/filter method" freeCodeCamp/freeCodeCamp#3331)
1784b17 Command Line: Add support for line continuation and improved colors (changed user-named function: replace to myReplace freeCodeCamp/freeCodeCamp#3326)
f545843 ESLint: Allow `Map` and `Set` in ES5 code (Run Tests is not working freeCodeCamp/freeCodeCamp#3328)
d6c5372 PureBasic: Added missing keyword and fixed constants ending with `$` (changed test from expect to assert style, Advanced-Bonfires freeCodeCamp/freeCodeCamp#3320)
82d0ca1 Command Line: Added span around command and output (bug report: remove checkmark, always include user code freeCodeCamp/freeCodeCamp#3312)
2cc4660 Core: Added better error message for missing grammars (add google font into codebase freeCodeCamp/freeCodeCamp#3311)
3f8cc5a Added UO Razor Script (Chrome 45 on a surface... the code lines dont all show up freeCodeCamp/freeCodeCamp#3309)
bcb2e2c AutoIt: Allow hyphen in directive (Changed 'background color of blue' to 'color of blue' freeCodeCamp/freeCodeCamp#3308)
deb3a97 INI: Swap out `header` for `section` (Refactor basic bonfire tests to use assert instead of expect freeCodeCamp/freeCodeCamp#3304)
e46501b editorconfig: Change alias of `section` from `keyword` to `selector` (Fix description Bonfire: Arguments Optional freeCodeCamp/freeCodeCamp#3305)
2eb89e1 Swap out `operator` for `punctuation` ("Target the Children of an Element Using jQuery" example "background color of blue" freeCodeCamp/freeCodeCamp#3306)
3a20bdc Bump node-fetch from 2.6.1 to 3.1.1 (Nth to last character in a String freeCodeCamp/freeCodeCamp#3307)
081d515 Bump copy-props from 2.0.4 to 2.0.5 (Adds ability to 1-click expand images freeCodeCamp/freeCodeCamp#3300)
b90e97c Bump follow-redirects from 1.13.1 to 1.14.7 (Paragraph framed incorrectly freeCodeCamp/freeCodeCamp#3299)
8458c41 MongoDB: Added v5 support (test freeCodeCamp/freeCodeCamp#3297)
441a142 Scala: Added support for interpolated strings (Issue: Saved code no longer matches updated problems freeCodeCamp/freeCodeCamp#3293)
0b6b1e2 1.26.0
3ae61a8 Updated changelog for v1.26.0 (adjust map font size and simplify Facebook share call to action freeCodeCamp/freeCodeCamp#3292)

See the full diff

Package name: sanitize-html

The new version differs by 59 commits.

b4682c1 Merge pull request Challenge http://www.freecodecamp.com/challenges/waypoint-create-a-text-field has an issue freeCodeCamp/freeCodeCamp#557 from apostrophecms/release-2.7.1
b6c4971 release 2.7.1 (with security fix previously tested and approved by Miro)
6683aad remove DoS vulnerability
7c7ccb4 credit
994f962 Merge pull request Challenge http://www.freecodecamp.com/challenges/waypoint-create-a-text-field has an issue freeCodeCamp/freeCodeCamp#555 from paweljq/fix_protocol_relative_script_tag
3c3f075 Merge pull request Challenge http://www.freecodecamp.com/challenges/waypoint-wrap-an-anchor-element-within-a-paragraph has an issue freeCodeCamp/freeCodeCamp#556 from cha147/patch-1
8e3b00f fix typos in readme
329dae7 Fix protocol relative url in scripts tags Challenge http://www.freecodecamp.com/challenges/waypoint-add-font-awesome-icons-all-of-our-buttons has an issue freeCodeCamp/freeCodeCamp#531
3cdc262 release 2.7.0 (Challenge http://www.freecodecamp.com/challenges/waypoint-wrap-an-anchor-element-within-a-paragraph has an issue freeCodeCamp/freeCodeCamp#534)
72989f1 Merge pull request css/html waypoints freeCodeCamp/freeCodeCamp#530 from apostrophecms/zade-credit
208cdb4 zade credit
7338f8b Merge pull request Challenge http://www.freecodecamp.com/challenges/waypoint-adjust-the-margin-of-an-element has an issue freeCodeCamp/freeCodeCamp#529 from zadeviggers/patch-1
1971a57 Update defaults in readme
43f28f3 Update changelog
5fccedb Allow srcset
be9c90d Add common image attributes
379b55b Bumps version (Challenge http://www.freecodecamp.com/challenges/waypoint-turn-an-image-into-a-link has an issue freeCodeCamp/freeCodeCamp#523)
da9767f Fixes important stripping (Challenge http://www.freecodecamp.com/challenges/waypoint-link-to-external-pages-with-anchor-elements has an issue freeCodeCamp/freeCodeCamp#522)
d077c9f Merge pull request The #help channel on Slack has become useless freeCodeCamp/freeCodeCamp#521 from alex-rantos/fix-trailing-text
d905b3b typo on changelog
836c5ab add CHANGELOG entry
c1112fb fix trailing text issue
d737f39 Bumps version (Challenge http://www.freecodecamp.com/challenges/bonfire-return-largest-numbers-in-arrays has an issue freeCodeCamp/freeCodeCamp#520)
e5027ef Merge pull request Challenge http://www.freecodecamp.com/challenges/waypoint-inform-with-the-paragraph-element has an issue freeCodeCamp/freeCodeCamp#515 from apostrophecms/revert-505-504-whatwg-url

See the full diff

Package name: validator

The new version differs by 69 commits.

47ee5ad 13.7.0
496fc8b fix(rtrim): remove regex to prevent ReDOS attack (Bonfire: Check for Palindromes freeCodeCamp/freeCodeCamp#1738)
45901ec Merge pull request Fixed #1848 freeCodeCamp/freeCodeCamp#1851 from validatorjs/chore/fix-merge-conflicts
83cb7f8 chore: merge conflict clean-up
f17e220 feat(isMobilePhone): add El Salvador es-SV locale
5b06703 feat(isMobilePhone): add Palestine ar-PS locale
a3faa83 feat(isMobilePhone): add Botswana en-BW locale
26605f9 feat(isMobilePhone): add Turkmenistan tk-TM
0e5d5d4 feat(isMobilePhone): add Guyana en-GY locale
f7ff349 feat(isMobilePhone): add Frech Polynesia fr-PF locale
8627e48 feat(isMobilePhone): add Kiribati en-KI locale
ed60123 feat(isMobilePhone): add Tajikistan tg-TJ locale (misleading comments freeCodeCamp/freeCodeCamp#1846)
c96d805 feat(isMobilePhone): add Maldives dv-MV locale
5c2d69e feat(isMobilePhone): regex for Burkina Faso fr-BF and Namibia en-NA locales
fc0fefc feat(isMobilePhone): add Bhutan dz-BT locale (News item missing and yet not mising freeCodeCamp/freeCodeCamp#1770)
01d3da3 feat(isMobilePhone): add Tajikistan tg-TJ locale (misleading comments freeCodeCamp/freeCodeCamp#1846)
af2b43c feat(isUUID): add support for validation of version v1 and v2 (Extra ">" at end of example freeCodeCamp/freeCodeCamp#1848)
769f6d5 feat(contains): add possibility to check that string contains seed multiple times (adds projecttalk messageboard freeCodeCamp/freeCodeCamp#1836)
f2381e0 feat: (isMobilePhone): add Cameroon fr-CM locale (Bonfire: Meet Bonefire - Unable to run code to submit freeCodeCamp/freeCodeCamp#1772)
5773869 feat(isVAT): add dutch NL locale (can't go to next challenge freeCodeCamp/freeCodeCamp#1825)
de1cb29 fix: Russian passport number regex (Had already solved this challenge before update and now same answer won't work freeCodeCamp/freeCodeCamp#1810)
7bee611 add CDN use option with unpkg (Incorrect text freeCodeCamp/freeCodeCamp#1844)
57cc14e feat(isIdentityCard): add finnish locale (Filter Arrays with filter - contradicting assignment and assert freeCodeCamp/freeCodeCamp#1838)
2201869 feat: added finnish locale to isAlpha and isAlphanumeric (Hex code is wrong freeCodeCamp/freeCodeCamp#1837)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 More lessons are available in Snyk Learn


          fix: client/package.json & client/package-lock.json to reduce vulnera…

da127c2

…bilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
- https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194
- https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905
- https://snyk.io/vuln/SNYK-JS-GOT-2932019
- https://snyk.io/vuln/SNYK-JS-IMMER-1540542
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-NANOID-2332193
- https://snyk.io/vuln/SNYK-JS-PARSEURL-3023021
- https://snyk.io/vuln/SNYK-JS-PARSEURL-3024398
- https://snyk.io/vuln/SNYK-JS-PRISMJS-1585202
- https://snyk.io/vuln/SNYK-JS-PRISMJS-2404333
- https://snyk.io/vuln/SNYK-JS-PROMPTS-1729737
- https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-2957526
- https://snyk.io/vuln/SNYK-JS-SHARP-2848109
- https://snyk.io/vuln/SNYK-JS-SHELLQUOTE-1766506
- https://snyk.io/vuln/SNYK-JS-VALIDATOR-1090600

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet