Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
Changes included in this PR
Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
backend/package.json
backend/package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
Severity
Priority Score (*)
Issue
Breaking Change
Exploit Maturity
673/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.6
e2e19ea Fix: Protect developers from inadvertantely introducing prototype pollution attack vector by throwing an error if `__proto__` is found in a data source
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.6
SNYK-JS-DATATABLESNET-598806
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: datatables.net
The new version differs by 144 commits.- 0ccd86b Sync tag release - 1.10.22
- bed1baa Release 1.10.22
- 20a8a85 Dev: Fix error in displaying HTML for the examples
- 6790470 New - Bulma integration tech demo
- 9f3263c Dev: Examples ordering for BS5 example
- 095219c New: Preview of Bootstrap 5 integration with DataTables
- c368d40 Merge branch 'master' of github.com:DataTables/DataTablesSrc
- 3fd51b7 Examples - fix: Correct error from #175 for cases where there was no `demo-html` element
- 179c904 DEV dummy commit to check jenkins
- 76502a6 Dev: Looking at what is involved for using Cash as a jQuery replacement
- 7907983 House keeping: demo.js updated for latest jQuery standards
- 1b726f7 Merge branch 'master' of github.com:DataTables/DataTablesSrc
- a02844f Build - fix: Change syntax for accessing strings from {} to [] for compatiblity with PHP 7.4
- 9a52788 dev: Correct slight typo in example
- 5c1ce74 new: Add typing file to source repo
- a6d8588 Dev: Update highcharts integration code
- e24eba2 Merge branch 'master' of github.com:DataTables/DataTablesSrc
- cd3c3ea Dev: Update Bootstrap to 4.5.2
- fe255bd Merge branch 'master' of github.com:DataTables/DataTablesSrc
- dcde38f new: New example showing HighCharts integration
- 6cd3eaf Fix: Bootstrap 4 integration - removed `nowrap` styling from the table information text, as it could result in horizontal scrolling on mobile
- 8397d64 Delete license-mit.txt
- 4187828 Full MIT license
- e2e19ea Fix: Protect developers from inadvertantely introducing prototype pollution attack vector by throwing an error if `__proto__` is found in a data source
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
đ§ View latest project report
đ Adjust project settings
đ Read more about Snyk's upgrade and patch logic