search

Nordstrom / artillery-plugin-influxdb

Plugin for Artillery.IO that records response data into InfluxDB.
Apache License 2.0
8 stars 12 forks source link

[Snyk] Security upgrade influx from 4.2.3 to 5.5.3 #22

Closed snyk-bot closed 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity SQL Injection
SNYK-JS-INFLUX-559587		 Yes Proof of Concept
Commit messages
Package name: influx The new version differs by 211 commits.
  • b3be394 chore: bump deps (#512)
  • f26f547 chore: remove gitter badge (#511)
  • dcc2e7e fix: prevent sql injection #486 (#506)
  • a5538f8 ci: remove node v8
  • 1940a13 style: lint fix
  • a6291b6 ci: add automatic prettier
  • 1f9aca9 chore: add vscode ext reccomendation + settings
  • 3155692 style: switch to using prettier lint
  • 03bfd6d chore(deps): bump npm from 6.13.4 to 6.14.7
  • 17d0669 chore(deps-dev): bump lodash from 4.17.15 to 4.17.19 (#507)
  • d066ab1 fix: abort requests on timeout (#495)
  • 8661f6c chore(deps): bump https-proxy-agent from 2.2.1 to 2.2.4 (#493)
  • 9077069 Merge pull request #490 from dandv/patch-1
  • 54e85bc docs: fix typo in class comment
  • 3a8de4f chore(stale-bot): ignore issues with 'help wanted' tag
  • 140b429 chore(deps): bump handlebars from 4.1.2 to 4.5.3 (#480)
  • a7f72fe chore(deps): bump npm from 6.10.2 to 6.13.4 (#478)
  • bc83e25 fix: consume ping responses (#475) (#476)
  • 6a47c91 feat: Add 'path' configuration option for host (#472)
  • 88078cd docs: fix `Measurement` class documentation string (#470)
  • 2ca32a3 fix: bring editorconfig inline with eslint rules
  • d683a6c fix: correct return type of getDatabaseNames()
  • 62bf336 chore(deps): bump mixin-deep from 1.3.1 to 1.3.2
  • 62bff2f chore(deps): bump eslint-utils from 1.3.1 to 1.4.2
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic