OpenTechSchool / websitenext

OpenTechSchool website
https://www.opentechschool.org
8 stars 6 forks source link

[Snyk] Security upgrade next from 10.0.7 to 12.0.2 #177

Closed snyk-bot closed 2 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 691/1000
Why? Recently disclosed, Has a fix available, CVSS 8.1
Remote Code Execution (RCE)
SNYK-JS-SHELLQUOTE-1766506
Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: next The new version differs by 250 commits.
  • 99abb8b v12.0.2
  • 9828790 v12.0.2-canary.14
  • 39283f1 Update swc (#30685)
  • 02e0dbc v12.0.2-canary.13
  • 8a6307f Remove isCommonJS check as it has been moved to next-swc (#30677)
  • 622a1a5 Provide default fallback _document and _app for for concurrent mode (#30642)
  • c12ae5e correct Next.js 11 upgrade instructions (#30665)
  • 90fad00 v12.0.2-canary.12
  • 4ada314 Add auto-commonjs and update swc (#30661)
  • d8cb8c5 Fixed "Expected jsx identifier" error on TypeScript generics & angle bracket type assertions in .ts files (#30619)
  • d7d1a05 Ensure native binary is available for release stats (#30649)
  • 77e1565 remove Object.fromEntries polyfill for node 10 in test utils (#30657)
  • 48874f1 Fix missing dev option for the middleware SSR loader (#30639)
  • c730f73 v12.0.2-canary.11
  • 18a3991 Fix check compiled step (#30645)
  • 097fb3c Revert incremental config to fix missing types (#30644)
  • aa70f46 v12.0.2-canary.10
  • 599081a Update output tracing to do separate passes (#30637)
  • f363cc8 update webpack (#30634)
  • b5a8916 Chore/rust workflow (#30577)
  • c03e284 make sure "webpack" exists in the repo for typings (#30371)
  • c53eaac v12.0.2-canary.9
  • 142af81 Relax warning for `next/image` loader width even more (#30624)
  • 842a130 Update to latest shell-quote (#30621)
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

vercel[bot] commented 3 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/opentechschool/websitenext/6eV2JydegMNqkvQ5Qd85EFCddhJs
✅ Preview: https://websitenext-git-snyk-fix-62fe4158add1ebc5-b2cdf7-opentechschool.vercel.app

[Deployment for 7644078 failed]