Snyk has created this PR to upgrade resolve from 1.4.0 to 1.12.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 14 versions ahead of your current version.
The recommended version was released 10 days ago, on 2019-11-22.
Snyk has created this PR to upgrade resolve from 1.4.0 to 1.12.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-LODASH-450202
SNYK-JS-LODASH-73638
SNYK-JS-LODASH-73639
npm:lodash:20180130
npm:debug:20170905
Release notes
sync
/async
: pass a dir intomaybeUnwrapSymlink
sync
:packageFilter
: whenpreserveSymlinks
isfalse
, realpath thepkgfile
option (#201)funding
fieldeslint
,@ljharb/eslint-config
,safe-publish-latest
core
: add_debug_agent
core module, in node 1 through 7preserveSymlinks: false
ensure that files are realpathed (#197, #195)maybeUnwrapSymlink
tape
node
v12.7
,v10.16
,v8.16
node-modules-paths
: correctly resolve paths that are on Windows networked drives (#156)isDirectory
; use to speed upnode_modules
lookups (#192, #191, #190)node
v12.2
,v11.15
,v6.17
v1.10.1
core
: addworker_threads
in v11.7+sync
/async
: when package.jsonmain
is not a string, throw an error (#178)v11.6
,v10.15
,v8.15
,v6.16
eslint
,@ljharb/eslint-config
,tape
async
/sync
/node-modules-paths
: Adds support for “paths” being a function (#172, #173)sync
/async
: fixpreserveSymlinks
option (#177)sync
/async
: when package.jsonmain
is not a string, throw an error (#178)path-parse
eslint
,@ljharb/eslint-config
,object-keys
,safe-publish-latest
,tape
node
v11.4
,v10.14
,v8.14
,v6.15
filename
option is passed (#167, #162)node
v10.4
trace_events
,v8/tools/arguments
_tls_legacy
is removed in node 10node
v10.1
,v9.11
,v8.11
,v6.14
,4.9
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs