search

BiancoRoyal / node-red-contrib-iiot-opcua

deprecated - very new developed by PLUS for Node-RED - https://plus4nodered.com
https://www.npmjs.com/package/node-red-contrib-iiot-opcua
BSD 3-Clause "New" or "Revised" License
34 stars 8 forks source link

[Snyk] Security upgrade vm2 from 3.9.10 to 3.9.11 #198

Closed snyk-bot closed 1 year ago

snyk-bot commented 2 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
critical severity Sandbox Bypass
SNYK-JS-VM2-3018201		 No No Known Exploit
Commit messages
Package name: vm2 The new version differs by 10 commits.
  • 392f126 Merge pull request #469 from XmiliaH/release-3.9.11
  • d6379e1 Merge pull request #468 from XmiliaH/fix-467
  • 58478a5 Merge pull request #448 from XmiliaH/fix-442
  • 6b0b71a Merge pull request #457 from XmiliaH/fix-456
  • 06f8ef0 Finish release 3.9.11
  • d9a7f3c Fix 467
  • b8314b0 Allow false for require option
  • cb647c0 Clear up wording
  • a34b167 Add documentation
  • 67c3fd4 Allow to override strict mode setting for modules
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

github-actions[bot] commented 2 years ago

Greet Contributors Bot
Thank you for taking your time and effort for your contribution, we truly value it. :tada:

The amazing contributor in this pull request is @snyk-bot