[Snyk] Security upgrade next from 11.1.2 to 12.0.2 - Githubissues

Howard86 / next-api-handler

lightweight nextjs api handler wrapper, portable & configurable for serverless environment

https://next-api-handler.vercel.app

Other

50 stars 1 forks source link

[Snyk] Security upgrade next from 11.1.2 to 12.0.2 #10

Closed snyk-bot closed 2 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

merge advice

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- example/package.json
- example/yarn.lock

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	691/1000 Why? Recently disclosed, Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

vercel[bot] commented 3 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/howard86/next-api-handler/3YKoLuwUbxCR52FuRUPaqyKTLT1J
✅ Preview: https://next-api-handler-git-snyk-fix-600ecd59685850997-33d4e9-howard86.vercel.app