Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade license-reporter from 1.2.2 to 1.3.0 #180

Merged
merged 1 commit into from
Jul 13, 2020
Merged

[Snyk] Security upgrade license-reporter from 1.2.2 to 1.3.0 #180

merged 1 commit into from
Jul 13, 2020

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
medium severity Prototype Pollution
SNYK-JS-YARGSPARSER-560381		 No Proof of Concept
Commit messages
Package name: license-reporter The new version differs by 22 commits.
  • e551f57 1.3.0
  • 78721e6 moving promises to async-await style
  • e543b39 chore: Update badge on README.md
  • f7d3e58 chore: updating github-actions conf and removing ISSUE_TEMPLATE dir
  • 41d6b6e chore: removing .travis.yml
  • 0d5b9f3 chore: settng up github actions #358 #359
  • 5fa8999 chore: removing issue template #356
  • d912dee chore: removing .package.json.swp
  • 3212418 chore: Update dependencies
  • 450b84c chore: fix vulnerabilities with npm audit fix (#345)
  • c289c3b chore: removing redundant entries (#344)
  • 50a0605 chore(package): Engine parameter targets node 10+ (#343)
  • 18c2142 feat: Replacing graceful-fs with the native fs module
  • 40f8536 feat(build): Following CI baseline practice from PM-WG
  • 37f0987 chore: fix vulnerabilities with npm audit fix
  • b599c24 src: refactor to use jest and semistandard (#337)
  • 280f0e4 Delete PULL_REQUEST_TEMPLATE.md
  • e336170 Update README.md
  • 232f3aa doc: more clean version of the readme examples
  • fb0acfe Update CONTRIBUTING.md (#335)
  • d56e5be test: only (#334)
  • 9c9c224 fix typo in README.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

@coveralls
Copy link

Pull Request Test Coverage Report for Build 639

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 96.774%
Totals Coverage Status
Change from base Build 634: 0.0%
Covered Lines: 23
Relevant Lines: 23
💛 - Coveralls

@aalykiot aalykiot merged commit 6b7ce31 into master Jul 13, 2020
@aalykiot aalykiot deleted the snyk-fix-f0068d203b3d66cc948d5832cf85469f branch August 6, 2020 12:00
@snyk-bot snyk-bot mentioned this pull request Jul 18, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@snyk-bot @coveralls @aalykiot