Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade reload from 1.1.7 to 2.3.0 #30

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade reload from 1.1.7 to 2.3.0 #30

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • docs/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
critical severity 704/1000
Why? Has a fix available, CVSS 9.8		 Arbitrary Code Injection
SNYK-JS-OPEN-174041		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: reload The new version differs by 113 commits.
  • 58cc9ae 2.3.0
  • da402ce Revert semvar to minor
  • e08180d Merge pull request #155 from Jezzamonn/watch-dir
  • 4efbb14 Fix indentation problem
  • cf38c3c Update dependencies in sample app due to security vulnerabilities
  • 3310a66 Updated ws from `~3.0.0` to `~5.2.0` due to security concerns
  • 073e91b Upgrading standard from `^10.0.2` to `^11.0.1` due to security warnings
  • 4079aa7 Merge pull request #154 from Jezzamonn/update-deps
  • 5562655 Documentation tweak
  • f12cc4c Merge pull request #148 from valango/by-valango
  • dbb936c Style fixes
  • 5af625a Update README with --watch-dir command line arg
  • 19b79db Replace unmaintained open package with opn.
  • 0973dbb Update dependencies with npm audit fix
  • 1bcecbc Add extra watch-dir argument.
  • 70ad783 added: 'wss' to reloadReturn
  • 1f4f7ae 2.2.2
  • d0d6c87 Merge pull request #139 from alallier/fixDirectoryIssue
  • 1bf1b15 Fix bug when using dir flag on command line.
  • 02cf45a 2.2.1
  • 65be95a Merge pull request #134 from alallier/fixReloadCommandLine
  • 37a1c03 Fixed reload command line regression
  • bc3ef5a 2.2.0
  • 943dd41 Merge pull request #132 from alallier/dropExpress

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
馃 View latest project report

馃洜 Adjust project settings

馃摎 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

馃 Arbitrary Code Injection

@snyk-bot
fix: docs/package.json to reduce vulnerabilities
7344788 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-OPEN-174041
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@snyk-bot