search

Dougley / MegaBot

Discord bot that interacts with Zendesk Community
GNU Affero General Public License v3.0
1 stars 0 forks source link

[Snyk] Upgrade eris from 0.9.0 to 0.16.1 #196

Open Dougley opened 2 years ago

Dougley commented 2 years ago

Snyk has created this PR to upgrade eris from 0.9.0 to 0.16.1.

merge advice As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:sparkles: Snyk has automatically assigned this pull request, set who gets assigned.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-WS-1296835		 372/1000
Why? Proof of Concept exploit, CVSS 5.3		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: eris
  • 0.16.1 - 2021-11-17

    Additions

    • Exposed methods for directly sending voice packets (dcf8ff1, 7c39e1a)

    Fixes

    • Fixed reconnect handling (4ac1103)
    • Fixed voice receive errors (56e37c0, fa36f0b)
    • Fixed incorrect thread method references in Guild#getActiveThreads() and Message#createThreadWithMessage() (87473ba)
    • Improved ratelimit handling for deleting messages <=10s old (0f3ebc8)
    • Improved ratelimit handling for getRESTGuildChannels() (7743366)
    • Fixed docs (9dd304b), typings (a4023da, 0bc76c9, 67b28a2)

    Contributors

  • 0.16.0 - 2021-11-15
    Read more
  • 0.15.1 - 2021-05-03

    Deprecations

    • Discord has seemingly never supported the before parameter of getMessageReaction(), so that has been removed but is not considered a breaking change (3e86cd7)
    • createMessage() now uses content.messageReference for referencing messages. The content.messageReferenceID parameter is deprecated (c3d491d)
    • Some requests with paginated responses now use an options object for parameters. The old call style is deprecated (ec777a1)
      • e.g. getMessages(channelID, limit, before, after, ...) => getMessages(channelID, { limit, before, after, ... })
      • Includes: getMessageReaction(), getMessages(), getGuildAuditLogs(), getRESTGuildMembers(), getRESTGuilds(), and purgeChannel()
    • getGuildAuditLogs() was renamed to getGuildAuditLog(). The old name is deprecated (ec777a1)

    Additions

    • Added support for editGuildVanity() (c152aac)
    • Exposed Message#interaction (5837a31)
    • Exposed Guild#nsfw (9223266)
    • Added support for stage channel REST methods (b6d51ee)
    • Added support for getWebhookMessage() (2a840a0)
    • Added support for Guild welcome screen endpoints (fba1f7c)
    • Exposed Role#tags (824ccf7)

    Fixes

    Contributors

  • 0.15.0 - 2021-04-05
    Read more
  • 0.14.1 - 2021-04-02

    Fixes:

    • Fixed errors from handling unrecognized voice channels (e.g. stage channels) (21154bb)
  • 0.14.0 - 2020-11-05
    Read more
  • 0.13.4 - 2020-11-05

    Additions:

    • API requests now use discord.com instead of discordapp.com (8b5643e)
  • 0.13.3 - 2020-06-18
  • 0.13.2 - 2020-06-16
  • 0.13.1 - 2020-05-13
  • 0.13.0 - 2020-05-12
  • 0.12.1 - 2020-11-05

    Additions:

    • API requests now use discord.com instead of discordapp.com (4b68474)
  • 0.12.0 - 2020-04-14
  • 0.11.3 - 2020-11-05

    Additions:

    • API requests now use discord.com instead of discordapp.com (9e7e85f)
  • 0.11.2 - 2020-01-01
  • 0.11.1 - 2019-11-17
  • 0.11.0 - 2019-10-15
  • 0.10.1 - 2019-07-17
  • 0.10.0 - 2019-06-10
  • 0.9.0 - 2018-08-08
from eris GitHub release notes
Commit messages
Package name: eris
  • fb1d33d 0.16.1
  • 7743366 fix(rest): combine routes for GET /guilds/:id/channels (#1287)
  • 67b28a2 fix(typings): add missing Interaction#from() type
  • 0f3ebc8 fix(rest): add separate ratelimit for messages <=10s old (#1267)
  • bc8245c feat(voice): reduce branching in send path
  • fa36f0b fix(voice): properly ignore non-voice packets (#1302)
  • 7c39e1a fix(voice): remove this.current dep in sendAudioFrame
  • 87473ba fix(structs): fix incorrect thread method references (#1301)
  • 0bc76c9 fix(typings): PartialActivity#type is nullable (#1300)
  • a4023da fix(typings): normalize Textable, fix deprecations (#1299)
  • 9dd304b fix(docs): fix JSDoc complaints (#1297)
  • 4ac1103 fix(gateway): fix reconnect handling with ws@8
  • 56e37c0 fix(voice): properly initialize UDP socket for receive
  • dcf8ff1 feat(voice): expose methods to directly send packets
  • 470ca79 chore: bump dev version
  • 2d8d18d 0.16.0
  • 7c53aeb Make shard ID optional for some events (#1277)
  • 1a8ee35 Fix interactions typings (#1292)
  • dc72ad9 Normalize interaction response/message creating/editing
  • a365531 Make Client options nullable in typings
  • 117de32 Add target options for createInvite (#1205)
  • 2d317cf Add, update, reorganize Constants (#1271)
  • e8b819a Fix CommandInteraction and rawWS deep reference editing (#1295)
  • 0ae09f1 Add Intent groups, default to non-privileged intents
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs