Snyk has created this PR to upgrade node-cron from 3.0.0 to 3.0.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 2 versions ahead of your current version.
The recommended version was released 8 months ago, on 2022-08-15.
Snyk has created this PR to upgrade node-cron from 3.0.0 to 3.0.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-MOMENT-2440688
Why? CVSS 7.5
SNYK-JS-MOMENT-2944238
Why? CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: node-cron
-
3.0.2 - 2022-08-15
-
3.0.1 - 2022-06-06
-
3.0.0 - 2021-03-10No content.
from node-cron GitHub release notesnew bugfix version
bumping dependencies
Commit messages
Package name: node-cron
- a0be3f4 new bugfix version
- f370a0d Merge pull request #356 from Juneezee/fix/uuid-dependency
- 5d715f1 fix: add uuid dependency
- 57481d3 bumping dependencies
- c7d877d Merge pull request #341 from node-cron/dependabot/npm_and_yarn/moment-2.29.2
- 07938f9 Merge branch 'master' into dependabot/npm_and_yarn/moment-2.29.2
- 050f5c1 Merge pull request #342 from node-cron/dependabot/npm_and_yarn/minimist-1.2.6
- 12c70c5 Bump minimist from 1.2.5 to 1.2.6
- 7c959d3 Bump moment from 2.29.1 to 2.29.2
- ecb1e0d Merge pull request #329 from VoltrexMaster/patch-2
- cd2dc5b Merge branch 'master' into patch-2
- e089cc0 Merge pull request #328 from VoltrexMaster/patch-1
- b0627ee pattern-validation: refactor
- 5635ad4 node-cron: fix typos and formatting
- fd0d303 removing coveralls
- e3f1093 Merge pull request #286 from conradkirschner/patch-1
- 1d65918 Merge pull request #327 from node-cron/dependabot/npm_and_yarn/y18n-4.0.3
- 8abb9ed Merge branch 'master' into dependabot/npm_and_yarn/y18n-4.0.3
- ba0a3a8 Merge pull request #297 from node-cron/dependabot/npm_and_yarn/path-parse-1.0.7
- 840c34b Bump y18n from 4.0.0 to 4.0.3
- a49bb0f Merge branch 'master' into dependabot/npm_and_yarn/path-parse-1.0.7
- 6bf9144 Merge pull request #285 from node-cron/dependabot/npm_and_yarn/hosted-git-info-2.8.9
- 3246766 Bump path-parse from 1.0.6 to 1.0.7
- 423f483 Merge branch 'master' into dependabot/npm_and_yarn/hosted-git-info-2.8.9
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs