Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Restyle [Snyk] Security upgrade simple-git from 3.14.1 to 3.15.0 #348

Open
wants to merge 1 commit into
base: snyk-fix-295ee39456b098a698c7b12d5a00d0e1
Choose a base branch
from
Open

Restyle [Snyk] Security upgrade simple-git from 3.14.1 to 3.15.0 #348

wants to merge 1 commit into from

Conversation

restyled-io[bot]
Copy link

@restyled-io restyled-io bot commented Dec 19, 2022

Automated style fixes for #347, created by Restyled.

The following restylers made fixes:

To incorporate these changes, merge this Pull Request into the original. We
recommend using the Squash or Rebase strategies.

NOTE: As work continues on the original Pull Request, this process will
re-run and update (force-push) this Pull Request with updated style fixes as
necessary. If the style is fixed manually at any point (i.e. this process finds
no fixes to make), this Pull Request will be closed automatically.

Sorry if this was unexpected. To disable it, see our documentation.

@guardrails
Copy link

guardrails bot commented Dec 19, 2022

⚠️ We detected 21 security issues in this pull request:

Mode: paranoid | Total findings: 21 | Considered vulnerability: 21

Vulnerable Libraries (21)
Severity Details
High glob-watcher@5.0.3 (t) upgrade to: >=3.0.0
High gulp@4.0.2 (t) upgrade to: >=3.9.1
Medium gulp-jsdoc3@3.0.0 (t) - no patch available
Critical jsdoc@3.6.4 (t) upgrade to: >3.6.7
High minimatch@3.0.4 (t) upgrade to: >=3.0.5
Medium mkdirp@0.5.1 (t) upgrade to: >0.5.1
Medium yargs-parser@5.0.0 (t) upgrade to: >5.0.0
High pkg:npm/taffydb@2.6.2@2.6.2 (t) - no patch available
High pkg:npm/sanitize-html@1.27.0@1.27.0 (t) - no patch available
High pkg:npm/underscore@1.10.2@1.10.2 (t) - no patch available
High pkg:npm/glob-parent@3.1.0@3.1.0 (t) upgrade to: 5.1.2
High pkg:npm/flat@5.0.2@5.0.2 (t) - no patch available
N/A pkg:npm/decode-uri-component@0.2.0@0.2.0 (t) - no patch available
High pkg:npm/yargs-parser@5.0.0@5.0.0 (t) - no patch available
High pkg:npm/marked@0.8.2@0.8.2 (t) upgrade to: 4.0.10
High pkg:npm/minimatch@3.0.4@3.0.4 (t) upgrade to: 3.0.5
Medium pkg:npm/postcss@7.0.36@7.0.36 (t) - no patch available
High pkg:npm/markdown-it@10.0.0@10.0.0 (t) - no patch available
High pkg:npm/lodash.template@4.5.0@4.5.0 (t) - no patch available
Critical pkg:npm/set-value@2.0.1@2.0.1 (t) - no patch available
Critical pkg:npm/unset-value@1.0.0@1.0.0 (t) - no patch available

More info on how to fix Vulnerable Libraries in JavaScript.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@restyled-commits