Open snyk-bot opened 3 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.7
SNYK-JS-SERIALIZEJAVASCRIPT-570062
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: react-scripts
The new version differs by 13 commits.- d2f813f Publish
- 7641a3c Prepare 3.4.1 release
- d5b527f Update to Babel 7.9 (#8681)
- 6adb82a Add React.StrictMode to default templates (#8558)
- a452ddc Bump dependencies (#8620)
- 3f699fd Fix proxying API request docs (#8515)
- 4d26208 Use native ESLint behaviour when extending (#8276)
- 8ba0ccb Whitelist main in template.json (#8539)
- 7d3b72c Update template example in docs (#8561)
- 2030ee1 Fix optional chaining and nullish coalescing support (#8526)
- 038e6fa Widen eslint-config-react-app peer dependency versions (#7790)
- 7e6d6cd Closes webpack dev server and exits process on "end" stdin (#7203)
- af926d5 Bump pnp-webpack-plugin (#8509)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic