vercel[bot]
commented
9 months ago The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| deepdash.io | ❌ Failed (Inspect) | Dec 20, 2023 2:06pm |
Open YuriGor opened 9 months ago
vercel[bot]
commented
9 months ago The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| deepdash.io | ❌ Failed (Inspect) | Dec 20, 2023 2:06pm |
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json - package-lock.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **619/1000****Why?** Has a fix available, CVSS 8.1 | Prototype Pollution
[SNYK-JS-AJV-584908](https://snyk.io/vuln/SNYK-JS-AJV-584908) | No | No Known Exploit  | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-ANSIREGEX-1583908](https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908) | No | Proof of Concept  | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Denial of Service (DoS)
[SNYK-JS-DECODEURICOMPONENT-3149970](https://snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970) | Yes | Proof of Concept  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-GLOBPARENT-1016905](https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905) | No | Proof of Concept  | **484/1000**
**Why?** Has a fix available, CVSS 5.4 | Open Redirect
[SNYK-JS-GOT-2932019](https://snyk.io/vuln/SNYK-JS-GOT-2932019) | No | No Known Exploit  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-HOSTEDGITINFO-1088355](https://snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355) | No | Proof of Concept  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-HTTPCACHESEMANTICS-3248783](https://snyk.io/vuln/SNYK-JS-HTTPCACHESEMANTICS-3248783) | No | Proof of Concept  | **703/1000**
**Why?** Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.2 | Missing Release of Resource after Effective Lifetime
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | No | Proof of Concept  | **686/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.3 | Prototype Pollution
[SNYK-JS-INI-1048974](https://snyk.io/vuln/SNYK-JS-INI-1048974) | No | Proof of Concept  | **644/1000**
**Why?** Has a fix available, CVSS 8.6 | Prototype Pollution
[SNYK-JS-JSONSCHEMA-1920922](https://snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922) | No | No Known Exploit  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Denial of Service (DoS)
[SNYK-JS-JSZIP-1251497](https://snyk.io/vuln/SNYK-JS-JSZIP-1251497) | No | Proof of Concept  | **529/1000**
**Why?** Has a fix available, CVSS 6.3 | Arbitrary File Write via Archive Extraction (Zip Slip)
[SNYK-JS-JSZIP-3188562](https://snyk.io/vuln/SNYK-JS-JSZIP-3188562) | No | No Known Exploit  | **479/1000**
**Why?** Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-MINIMATCH-3050818](https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818) | No | No Known Exploit  | **506/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 3.7 | Prototype Pollution
[SNYK-JS-MINIMIST-2429795](https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795) | Yes | Proof of Concept  | **589/1000**
**Why?** Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-NORMALIZEURL-1296539](https://snyk.io/vuln/SNYK-JS-NORMALIZEURL-1296539) | No | No Known Exploit  | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-PARSELINKHEADER-1582783](https://snyk.io/vuln/SNYK-JS-PARSELINKHEADER-1582783) | No | Proof of Concept  | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Prototype Poisoning
[SNYK-JS-QS-3153490](https://snyk.io/vuln/SNYK-JS-QS-3153490) | No | Proof of Concept  | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | No | Proof of Concept  | **624/1000**
**Why?** Has a fix available, CVSS 8.2 | Arbitrary File Overwrite
[SNYK-JS-TAR-1536528](https://snyk.io/vuln/SNYK-JS-TAR-1536528) | No | No Known Exploit  | **624/1000**
**Why?** Has a fix available, CVSS 8.2 | Arbitrary File Overwrite
[SNYK-JS-TAR-1536531](https://snyk.io/vuln/SNYK-JS-TAR-1536531) | No | No Known Exploit  | **410/1000**
**Why?** Has a fix available, CVSS 3.7 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-TAR-1536758](https://snyk.io/vuln/SNYK-JS-TAR-1536758) | No | No Known Exploit  | **639/1000**
**Why?** Has a fix available, CVSS 8.5 | Arbitrary File Write
[SNYK-JS-TAR-1579147](https://snyk.io/vuln/SNYK-JS-TAR-1579147) | No | No Known Exploit  | **639/1000**
**Why?** Has a fix available, CVSS 8.5 | Arbitrary File Write
[SNYK-JS-TAR-1579152](https://snyk.io/vuln/SNYK-JS-TAR-1579152) | No | No Known Exploit  | **639/1000**
**Why?** Has a fix available, CVSS 8.5 | Arbitrary File Write
[SNYK-JS-TAR-1579155](https://snyk.io/vuln/SNYK-JS-TAR-1579155) | No | No Known Exploit  | **596/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.5 | Arbitrary Code Injection
[SNYK-JS-UNDERSCORE-1080984](https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984) | No | Proof of Concept  | **506/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 3.7 | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-WORDWRAP-3149973](https://snyk.io/vuln/SNYK-JS-WORDWRAP-3149973) | No | Proof of Concept  | **686/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.3 | Prototype Pollution
[SNYK-JS-Y18N-1021887](https://snyk.io/vuln/SNYK-JS-Y18N-1021887) | No | Proof of Concept  | **506/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 3.7 | Regular Expression Denial of Service (ReDoS)
[npm:debug:20170905](https://snyk.io/vuln/npm:debug:20170905) | No | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: jsdom
The new version differs by 68 commits.- 74a8d1e Version 16.6.0
- f51f2ec Remove the dependency on request
- 2b6d5ae Update dependencies
- b72b33b Disable now-crashing canvas test
- 39b7972 Handle null and undefined thrown as exceptions
- 04f6c13 Add ParentNode.replaceChildren() (#3176)
- e4c4004 Version 16.5.3
- 2f41466 Fix MutationObserver infinite loop bugs (#3173)
- b232f2a Run partially-failing WPTs in the custom-elements directory
- 35e103e Run partially-failing WPTs in the cors directory
- 77b660a Run partially-failing WPTs in the FileAPI directory
- d8a245f Use `InnerHTML` mixin for `innerHTML` definition (#2981)
- bd50bbe Version 16.5.2
- d5cfd69 Fix event handler ObjectEnvironment instantiation
- 93e3d4a Remove vestigial concurrentNodeIterators option-passing
- c92f9c1 Check all associated elements for form validity
- 2202703 Fix failing WPTs calculation
- 21c7671 Upgrade dependencies
- c1b9ea1 Port skipped "test_body_event_handler_inline" to WPT
- a13d854 Use WeakRefs for NodeIterator tracking when supported
- fdf97d8 Fix radio/checkbox to not fire events when disconnected
- 761d8cc Refactor <output>
- b36d418 Make customElements.whenDefined() resolve with the constructor
- c5d13bb Remove a variety of redundant to-port tests
See the full diffPackage name: next
The new version differs by 250 commits.- 5201cdb v10.0.6
- f8f2a17 v10.0.6-canary.12
- 232209b Remove note about Yarn 2 support. (#21665)
- 5be31f5 Update CI publish step to trigger after build (#21661)
- 5582892 v10.0.6-canary.11
- 843252b Add note about Yarn 2 support. (#21657)
- 8f21c28 Experimental feature changes (#21646)
- 08846cf v10.0.6-canary.10
- 652a1e8 Improvements to webpack tracing, including hot-reload (#21652)
- 5a73859 Update docs and Create Next App to use API Middlewares by default. (#21639)
- 8f0c155 Grammatical fixes (#21644)
- e75f611 v10.0.6-canary.9
- 87ed37d Ensure prerender-manifest contains all i18n revalidate values (#21404)
- b785fbc chore: upgrade webpack5 (#21563)
- 35efe8d Remove branches filter from actions cancel workflow (#21564)
- cca2000 Update CI docs change diff check (#21558)
- e1fe28c Fix and add test filterModuleRules for next-plugin-storybook (#17306)
- 0370c03 Update links that go to vercel.com/now (#21556)
- dc2de37 Font optimization - Pass nonce to inlined font definition (#21346)
- 004ad62 Allow `undefined` body sent to `sendData()` (#20981)
- 07d4af9 suppressing eslint warning (#21163)
- 7aa397f Add Kontent example to preview section (#21542)
- a47d47e Change type of GetServerSidePropsContext.req.cookies the be the same as NextApiRequest.cookies (#21336)
- f6cc0de Remove mkdirp (#21365)
See the full diff