OpenTechSchool / websitenext

OpenTechSchool website
https://www.opentechschool.org
8 stars 6 forks source link

[Snyk] Security upgrade next from 9.3.5 to 9.5.0 #154

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 691/1000
Why? Recently disclosed, Has a fix available, CVSS 8.1
Prototype Pollution
SNYK-JS-CACHEBASE-1054631
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: next The new version differs by 250 commits.
  • d33dbea v9.5.0
  • a3eec3b Update custom webpack config docs to mention existing features (#15517)
  • 1ee1516 v9.4.5-canary.45
  • ac12c07 Fix peer dependency (#15511)
  • 3accce3 v9.4.5-canary.44
  • e837c22 Upgrade cssnano-simple dependency (#15488)
  • f98e38c Add static tweet link (#15493)
  • 2f50f1f Stabilize more tests (#15470)
  • d3955cd TypeScript documentation for _document.tsx (#15386)
  • ebe4bb1 Upgrade Apollo Client to 3.0 in `examples/api-routes-apollo-server-and-client-auth` (#15272)
  • 574fe0b Make dynamic routes case-sensitive (#15444)
  • f22f88f Always resolve after router.prefetch() (#15448)
  • c983667 Link with-polyfills example to updated polyfill docs (#13943)
  • 1509465 Update lockfile
  • 1a34b23 Example for Rewrites (Custom routes) (#15403)
  • e6e2722 Tweak test retries for invalid-href suite (#15459)
  • c5f29b7 Update webpack to land chokidar patch for all Next.js users (#15460)
  • cc541fb Add Sitemap Example (#15047)
  • 681ebfa Fix lint (#15449)
  • 00ebce5 More helpful README (#14830)
  • 23ebe3e Update Sentry example for use with Sentry/Vercel integration (#15349)
  • e4e3ad3 Upgrade actions/cache to v2.1.0 (#15415)
  • 0152dac MongoDB Example (#15029)
  • 53a3ffe v9.4.5-canary.43
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

vercel[bot] commented 3 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/opentechschool/websitenext/q4bqhsrf1
✅ Preview: https://websitenext-git-snyk-fix-34b6ad49118ed8cb81edb4d2acb4ce1c.opentechschool.vercel.app

Twissi commented 3 years ago

Fixed https://github.com/OpenTechSchool/websitenext/pull/157