Snyk has created this PR to upgrade gulp-connect from 5.0.0 to 5.7.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 6 versions ahead of your current version.
The recommended version was released 2 years ago, on 2018-12-06.
Snyk has created this PR to upgrade gulp-connect from 5.0.0 to 5.7.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
npm:qs:20170213
Why? Has a fix available, CVSS 7.5
npm:qs:20170213
Why? Has a fix available, CVSS 7.5
npm:qs:20170213
Why? Has a fix available, CVSS 7.5
npm:negotiator:20160616
Why? Has a fix available, CVSS 7.5
npm:fresh:20170908
Why? Has a fix available, CVSS 7.5
npm:base64-url:20180512
Why? Has a fix available, CVSS 7.5
SNYK-JS-WEBSOCKETEXTENSIONS-570623
Why? Has a fix available, CVSS 7.5
SNYK-JS-MORGAN-72579
Why? Has a fix available, CVSS 7.5
npm:ms:20170412
Why? Has a fix available, CVSS 7.5
npm:ms:20170412
Why? Has a fix available, CVSS 7.5
npm:mime:20170907
Why? Has a fix available, CVSS 7.5
npm:debug:20170905
Why? Has a fix available, CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: gulp-connect
Merge pull request #240 from zbennett10/master
removed deprecated gulp-util
Test
Commit messages
Package name: gulp-connect
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
π§ View latest project report
π Adjust upgrade PR settings
π Ignore this dependency or unsubscribe from future upgrade PRs