[Snyk] Upgrade ripple-lib from 0.17.9 to 1.9.2

[snyk-bot]

Snyk has created this PR to upgrade ripple-lib from 0.17.9 to 1.9.2.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 58 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2021-03-13.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Uninitialized Memory Exposure npm:https-proxy-agent:20180402	796/1000 Why? Mature exploit, Has a fix available, CVSS 8.2	Mature
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	796/1000 Why? Mature exploit, Has a fix available, CVSS 8.2	Proof of Concept
	Man-in-the-Middle (MitM) SNYK-JS-HTTPSPROXYAGENT-469131	796/1000 Why? Mature exploit, Has a fix available, CVSS 8.2	Proof of Concept
	Timing Attack SNYK-JS-ELLIPTIC-511941	796/1000 Why? Mature exploit, Has a fix available, CVSS 8.2	No Known Exploit
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	796/1000 Why? Mature exploit, Has a fix available, CVSS 8.2	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: ripple-lib

• 1.9.2 - 2021-03-13
  

  For release notes see HISTORY.md

• 1.9.1 - 2021-02-26
  

  For release notes see HISTORY.md

• 1.9.0 - 2020-12-07
  

  For release notes see HISTORY.md

• 1.8.2 - 2020-10-23
  

  For release notes see HISTORY.md

• 1.8.2-beta.1 - 2020-10-22
• 1.8.2-beta.0 - 2020-09-28
• 1.8.1 - 2020-09-28
  

  For release notes see HISTORY.md

• 1.8.1-beta.0 - 2020-09-11
• 1.8.0 - 2020-07-07
  
  • Document request('submit', ...) method, which includes additional useful information in the response
  • Update list of applications using ripple-lib
• 1.7.1 - 2020-05-26
  
  • Fix preparePayment when using source.amount/destination.minAmount (#1295) (Fix #1237) (Thanks to @ leobel)
  • Docs
    • Fix generateXAddress example (#1286)
    • Update Transaction Streams link (#1278)
  • Dependencies
    • Update assert-diff, mocha, webpack-bundle-analyzer, @ typescript-eslint/parser, @ typescript-eslint/eslint-plugin, @ types/ws, @ types/node, ws, ts-node, eventemitter2
• 1.7.0 - 2020-04-28
  
  • Export hashing functions (#1275)
  • Add failHard (fail_hard) option in submit method (#1029)
  • Add type for parseAccountFlags (#1258)
  • Add api.connection.getReserveBase() (#1259)
  • Travis: remove node 8 (#1257)
  • Dependencies
    • Update ripple-address-codec, @ types/ws, @ types/lodash, https-proxy-agent
    • Update devDependencies: eventemitter2, nyc, ejs, @ types/node, webpack, ts-node, prettier, @ typescript-eslint/eslint-plugin
• 1.6.6-beta.2 - 2020-04-13
• 1.6.6-beta.1 - 2020-04-08
• 1.6.5 - 2020-03-23
  
  • APPLICATIONS.md: Add xrplorer.com
  • Internal: Fix typos
  • Dependencies
    • Update @ types/ws, @ types/node, @ typescript-eslint/eslint-plugin, @ types/mocha, webpack, typescript, mocha, assert-diff
    • Remove mocha-junit-reporter
• 1.6.4 - 2020-02-18
• 1.6.3 - 2020-02-06
• 1.6.3-beta.1 - 2020-01-30
• 1.6.3-beta.0 - 2020-01-30
• 1.6.2 - 2020-01-17
• 1.6.1 - 2020-01-14
• 1.6.0 - 2020-01-06
• 1.5.1 - 2019-12-28
• 1.5.0 - 2019-12-15
• 1.4.2 - 2019-11-15
• 1.4.1 - 2019-11-07
• 1.4.0 - 2019-10-29
• 1.4.0-b2 - 2019-10-09
• 1.4.0-b1 - 2019-09-28
• 1.3.4 - 2019-10-18
• 1.3.3 - 2019-09-11
• 1.3.2 - 2019-09-03
• 1.3.1 - 2019-08-26
• 1.3.0 - 2019-08-17
• 1.2.5 - 2019-08-17
• 1.2.4 - 2019-06-06
• 1.2.3 - 2019-04-30
• 1.2.1 - 2019-03-23
• 1.2.0 - 2019-03-19
• 1.1.2 - 2018-12-12
• 1.1.1 - 2018-11-27
• 1.1.0 - 2018-10-31
• 1.0.2 - 2018-10-16
• 1.0.1 - 2018-09-28
• 1.0.0 - 2018-09-10
• 1.0.0-beta.5 - 2018-08-11
• 1.0.0-beta.4 - 2018-08-10
• 1.0.0-beta.3 - 2018-07-18
• 1.0.0-beta.2 - 2018-06-08
• 1.0.0-beta.1 - 2018-05-25
• 1.0.0-beta.0 - 2018-05-10
• 0.22.0 - 2018-05-10
• 0.21.0 - 2018-04-12
• 0.20.0 - 2018-04-09
• 0.19.1 - 2018-03-22
• 0.19.0 - 2018-03-02
• 0.18.2 - 2018-02-13
• 0.18.1 - 2018-01-27
• 0.18.0 - 2018-01-25
• 0.17.9 - 2017-11-14

from ripple-lib GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs