Open snyk-bot opened 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-ECSTATIC-540354
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: http-server
The new version differs by 71 commits.- 77243e7 0.13.0
- a845834 Update dependency tree
- f2c0dfb update milestone
- aec3911 update security for release
- 1f994c0 Merge pull request #591 from http-party/no_server_headers
- c57654d Merge branch 'master' into no_server_headers
- a4ec10b Merge pull request #713 from http-party/codeql-bye-bye
- 6b87653 drop codeql
- a7fdf0f remove server header
- cd1afb7 Merge pull request #706 from zbynek/no-charset-binary
- 46c0ce7 Merge pull request #705 from zbynek/patch-1
- 9c51cb2 Merge branch 'master' into no_server_headers
- cd84a85 revert
- 7830ac2 Remove charset from header of binary files
- b4991b8 Remove line break from LICENSE
- fab3248 Merge pull request #704 from zbynek/patch-1
- e9716d1 Account for CRLF in a test
- 0f3e241 Merge pull request #642 from skyward-luke/master
- 33fe714 Merge pull request #702 from http-party/replace-travis
- e9ad269 Replace travis badge
- f09c821 Update node.js.yml
- 2c2ad02 Update node.js.yml
- dad375d Update node.js.yml
- 133a64c Update node.js.yml
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic