Open snyk-bot opened 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.8
SNYK-JS-SIMPLEGET-2361683
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: bufferutil
The new version differs by 6 commits.- ede3ed0 [dist] 4.0.0
- 7a688e9 [minor] Remove license comments
- a024343 [minor] Use prebuildify (#105)
- 70e0161 [ci] Remove unsupported node versions
- e860735 [major] Port to N-API
- 799ce2b chore(package): update mocha to version 5.2.0 (#103)
See the full diffPackage name: utf-8-validate
The new version differs by 6 commits.- 3d88f3e [dist] 5.0.0
- 0359d66 [minor] Use prebuildify
- a3e2ac4 [minor] Remove license comments
- 1abcc03 [ci] Remove unsupported node versions
- f0a37a7 [major] Port to N-API
- d03410b chore(package): update mocha to version 5.2.0 (#72)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic