Open snyk-bot opened 4 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Has a fix available, CVSS 7.5
SNYK-JS-MINIMATCH-1019388
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: express-handlebars
The new version differs by 12 commits.- e845ace 1.2.2
- e2af64b Update HISTORY for 1.2.2
- b3d35c7 Upgrade to glob@5.0.0 which supports symlinks
- e558e8f 1.2.1
- e051b25 Update HISTORY for 1.2.1
- a91ae6b Lock down glob dependency for symlink support
- 9200d43 1.2.0
- 3aa4437 Update HISTORY for 1.2.0
- 808c1c7 Merge pull request #107 from ericf/partials-option
- ff2fc3c Add support for render-level partials
- 1db1174 Tweak notes about app.set("views", "...")
- 076608b Update README.md for custom views paths
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic