This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade node-opcua from 2.81.0 to 2.116.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **41 versions** ahead of your current version.
- The recommended version was released **a month ago**, on 2023-11-03.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Regular Expression Denial of Service (ReDoS) [SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: node-opcua
NodeOPCUA thrives because of supporters like YOU! π
As we passionately improve and broaden the scope of node-opcua, we're reaching out for your generous support. Join us in making a difference through our membership program at Sterfive or directly on OpenCollective. π€
Your contribution paves the way for innovation and nurtures a community built on collaboration and shared insights. π
π Let's shape the future of node-opcua together! π
Thank you for being a pivotal part of our journey! ππ
this version introduces a new way of creating privateKeys and Certificate that do not relies on openssl any more but on the newly introduce WebCrypto API in nodeJS , when it's availbalbe or fall back to a polyfill @ pecular/X509 when the suble api is not available.
( see #1289 )
we recommand you use node-opcua@2.110.0 instead
</li>
<li>
<b>2.108.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.108.0">2023-07-18</a></br><a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.108.0"> Read more </a>
</li>
<li>
<b>2.107.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.107.0">2023-07-11</a></br><p>This version brings significant improvements on the server side with a better handling of StateMachine object;</p>
StateMachine internals are now fully handled by node-opcua ;
the AvailableStates and AvailableTransitions variables are automatically populated if they exist on the model.
TransitionTime, EffectiveDisplayName are now automatically update if present in the model , when the state changes.
On StateMachine with SubState, the EffectiveTransitionTime variable of the parent state is automatically updated when the stat of the substate machine changes.
π enhancements
server: implement automatic support for EffectiveTransitionTime on FiniteStateMachine d5493c1
server : StateMachine setState and lastUpdateDate implemened fba2813
π bug fixes
server: handle with a warning instead of throwing in a error for case where a Variable refers to a TypeDefinition being a ObjectType instead of a VariableType f6831cc
server: fix potential crashes in deactivateAlarm bade5e2
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade node-opcua from 2.81.0 to 2.116.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **41 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2023-11-03. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: node-opcua
π Bug Fixes
π Maintenance
β¨ Enhancements
π Security
π§ͺ Tests
π bug fixing
π enhancement
πͺ± chore
π‘ Sponsorship Call! π‘
NodeOPCUA thrives because of supporters like YOU! π
As we passionately improve and broaden the scope of node-opcua, we're reaching out for your generous support. Join us in making a difference through our membership program at Sterfive or directly on OpenCollective. π€
Your contribution paves the way for innovation and nurtures a community built on collaboration and shared insights. π
π Let's shape the future of node-opcua together! π
Thank you for being a pivotal part of our journey! ππ
π bug fixes
π§ maintenance
π¬π½ contributors
π bug fixes:
π bug fixing
π¬π½ contributors:
π§ maintenance
π bug fixes
π¬π½ contributors
𧨠known issues:
( see #1289 )
we recommand you use node-opcua@2.110.0 instead
StateMachine internals are now fully handled by node-opcua ;
On StateMachine with SubState, the EffectiveTransitionTime variable of the parent state is automatically updated when the stat of the substate machine changes.
π enhancements
π bug fixes
Commit messages
Package name: node-opcua
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
π§ View latest project report
π Adjust upgrade PR settings
π Ignore this dependency or unsubscribe from future upgrade PRs