Closed alectronic0 closed 3 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Has a fix available, CVSS 8.8
SNYK-JS-NODESASS-540974
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: node-sass
The new version differs by 43 commits.- 9d6faf6 Bump LibSass@3.5.4
- 739d768 Bump gcc@4.9 for Node 10
- a124e9d Add Node 10 to CI
- cc7301e Re-implement raw CSS imports for the deprecation warning
- 7ec14df Bump LibSass@3.5.3
- eb5ad0a Revert "Bump LibSass@3.5.3 (#2342)"
- 5e10a9b 4.9.0
- 4a858f1 Respect quiet option in Node API
- 8004d10 Bump LibSass@3.5.3 (#2342)
- 3ab7a16 Fix Node 10 check
- 1676810 fix: propagate async context
- 909f694 Add command that configure China mirror (#2206)
- 8e69acf Add note about bumping Request (#2291)
- b2df434 4.8.3
- 2558763 Silence g++7 switch case fallthrough warnings
- 968020e Propagate async_context
- ad00d8b Synchronous call should be synchronous
- b5c73ac Update NAN
- 5a8ea51 Lock to nan@2.9.2
- 84754d5 Bump LibSass 3.5.2
- 7648fc4 4.8.2
- 3709357 Bump LibSass to 3.5.1
- 96d0d0b 4.8.1
- a4564cc Update CHANGELOG
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic