search

LeoPlatform / cli

MIT License
2 stars 13 forks source link

[Snyk] Upgrade js-beautify from 1.10.1 to 1.14.11 #89

Open ch-snyk-sa opened 10 months ago

ch-snyk-sa commented 10 months ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade js-beautify from 1.10.1 to 1.14.11.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **27 versions** ahead of your current version. - The recommended version was released **2 months ago**, on 2023-11-07. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-JSBEAUTIFY-2311652](https://snyk.io/vuln/SNYK-JS-JSBEAUTIFY-2311652) | **479/1000**
**Why?** Has a fix available, CVSS 5.3 | No Known Exploit (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: js-beautify
  • 1.14.11 - 2023-11-07
    No content.
  • 1.14.10 - 2023-11-07

    Release: 1.14.10

      </li>
  <li>
    <b>1.14.9</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.9">2023-07-20</a></br>No content.
  </li>
  <li>
    <b>1.14.8</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.8">2023-06-01</a></br>No content.
  </li>
  <li>
    <b>1.14.7</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.7">2022-10-21</a></br><p>Release: 1.14.7</p>
  </li>
  <li>
    <b>1.14.6</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.6">2022-08-21</a></br>No content.
  </li>
  <li>
    <b>1.14.5</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.5">2022-08-07</a></br>No content.
  </li>
  <li>
    <b>1.14.4</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.4">2022-06-20</a></br>No content.
  </li>
  <li>
    <b>1.14.3</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.3">2022-04-09</a></br>No content.
  </li>
  <li>
    <b>1.14.2</b> - <a href="https://snyk.io/redirect/github/beautifier/js-beautify/releases/tag/v1.14.2">2022-03-29</a></br>No content.
  </li>
  <li>
    <b>1.14.1</b> - 2022-03-28
  </li>
  <li>
    <b>1.14.0</b> - 2021-06-14
  </li>
  <li>
    <b>1.13.13</b> - 2021-04-16
  </li>
  <li>
    <b>1.13.11</b> - 2021-04-13
  </li>
  <li>
    <b>1.13.8</b> - 2021-04-13
  </li>
  <li>
    <b>1.13.7</b> - 2021-04-13
  </li>
  <li>
    <b>1.13.6</b> - 2021-04-13
  </li>
  <li>
    <b>1.13.5</b> - 2021-01-26
  </li>
  <li>
    <b>1.13.4</b> - 2021-01-12
  </li>
  <li>
    <b>1.13.3</b> - 2021-01-12
  </li>
  <li>
    <b>1.13.2</b> - 2021-01-12
  </li>
  <li>
    <b>1.13.1</b> - 2021-01-09
  </li>
  <li>
    <b>1.13.0</b> - 2020-08-20
  </li>
  <li>
    <b>1.12.0</b> - 2020-08-13
  </li>
  <li>
    <b>1.11.0</b> - 2020-04-05
  </li>
  <li>
    <b>1.10.3</b> - 2020-01-14
  </li>
  <li>
    <b>1.10.2</b> - 2019-08-06
  </li>
  <li>
    <b>1.10.1</b> - 2019-07-17
  </li>
</ul>
from <a href="https://snyk.io/redirect/github/beautify-web/js-beautify/releases">js-beautify GitHub release notes</a>

Commit messages
Package name: js-beautify
  • 53e3f9a Merge remote-tracking branch 'origin/staging/main' into staging/release
  • dd95b10 Bump version numbers for 1.14.11
  • 631a82c Update Changelog
  • 60b7c93 Add one missed integrity hash
  • 60b4759 Merge pull request #2216 from beautify-web/staging/release
  • 6f3e5fe Merge pull request #2215 from beautify-web/staging/main
  • 340b577 Release: 1.14.10
  • 13bb155 Merge remote-tracking branch 'origin/staging/main' into staging/release
  • 4944f58 Bump version numbers for 1.14.10
  • 5a27c90 Update Changelog
  • a6698f0 Update milestone-publish.yml
  • 425755f Merge pull request #2195 from sobolevn/patch-1
  • 99347ac Merge pull request #2209 from likendev/fix/sri-hash-update
  • 8feaca4 fix: replace dracula to darcula
  • 9d638cb fix: updated SRI hash to sha512
  • cb270b3 fix: update SRI verification hash
  • 8314a12 Merge pull request #2203 from beautify-web/dependabot/npm_and_yarn/webpack-5.89.0
  • 48c8ef4 Merge pull request #2206 from beautify-web/dependabot/github_actions/actions/setup-node-4
  • f176cec Bump actions/setup-node from 3 to 4
  • 5674bd8 Bump webpack from 5.88.2 to 5.89.0
  • a101b70 Merge pull request #2200 from beautify-web/dependabot/npm_and_yarn/glob-10.3.10
  • d5c8e9c Bump glob from 10.3.4 to 10.3.10
  • 33d9bf2 Use raw strings to define a regex in `packer.py`
  • 6cf6782 Merge pull request #2192 from beautify-web/dependabot/github_actions/actions/checkout-4
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs