sonarcloud[bot]
commented
3 months ago 
Quality Gate passed
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code
SuperITMan
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - packages/stark-build/package.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **763/1000****Why?** Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.4 | Path Traversal
[SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555](https://snyk.io/vuln/SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555) | Yes | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @angular-builders/custom-webpack
The new version differs by 21 commits.- 88f230d ci(release): publish
- 51d0c9b ci(release): publish
- bc19a54 feat(jest): support Jest config in different formats (#1325)
- 8124f33 ci(release): publish
- e6af6c4 chore(deps): update dependency jest-preset-angular to v12.2.3
- 2d342fd ci(release): publish
- 8dcd612 chore(deps): update dependency puppeteer to v19.3.0
- cc7eb27 ci(release): publish
- 7330758 chore(deps): update dependency ng-packagr to v15.0.1
- a7a3c6f ci(release): publish
- 95692bf chore(deps): update angular-cli monorepo to v15.0.1
- 64da4e7 ci(release): publish
- c6991f3 chore(deps): update angular monorepo
- bfab72d ci(release): publish
- dd47762 chore(deps)!: update to Angular 15, tsconfig-paths 4 (#1319)
- 60fc5f2 docs: add lme-agicap as a contributor for code (#1316)
- 4ef4758 ci(release): publish
- 193dbb7 test(jest): add test shard 1/2 and 2/2 and suites skipped (#1317)
- 18f3352 ci(release): publish
- 68577a9 ci(release): publish
- 7ddad99 feat(jest): support shard CLI options (#1314) (#1315)
See the full diffPackage name: @angular-devkit/build-angular
The new version differs by 250 commits.- 7a901a6 release: cut the v15.2.11 release
- 61f92fd build: update ng-dev config to work with Node.js 18.19
- a398d2f test: disable failing test
- c6feb0b fix(@ angular-devkit/build-angular): `update webpack-dev-middleware` to `6.1.2`
- b479063 release: cut the v15.2.10 release
- bfc1f0f test: install specific npm version in npm version E2E test
- 05213c9 fix(@ angular-devkit/build-angular): update dependency postcss to v8.4.31
- 00d9708 release: cut the v15.2.9 release
- f36e38a fix(@ angular/cli): update direct semver dependencies to 7.5.3
- cdb34b5 release: cut the v15.2.8 release
- 069dcdf docs: improve wording in doc command version description
- 51cf97f release: cut the v15.2.7 release
- d9aefd6 fix(@ schematics/angular): replace vscode launch type from `pwa-chrome` to `chrome`
- f4a6dac fix(@ angular/cli): process keeps running when analytics are enabled
- d9e9f74 refactor(@ angular/cli): update E2E command alias
- 037d84a ci: update CI `.bazelrc` to better support CI systems.
- f9b2fb1 perf(@ angular/cli): register CLI commands lazily
- 4d81cb4 release: cut the v15.2.6 release
- f0b257e fix(@ schematics/angular): ignore hidden directories when running browserlist migration
- 162484b release: cut the v15.2.5 release
- db173d7 fix(@ angular/cli): collect tech information
- a8376e2 ci: disable windows job on PRs
- 85a048b release: cut the v15.2.4 release
- f74bfea fix(@ angular-devkit/build-angular): update `webpack` dependency to `5.76.1`
See the full diff