search

andrewmkrug / dashy

MIT License
0 stars 0 forks source link

[Snyk] Upgrade ajv from 8.11.0 to 8.13.0 #155

Closed andrewmkrug closed 4 months ago

andrewmkrug commented 5 months ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade ajv from 8.11.0 to 8.13.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **4 versions** ahead of your current version. - The recommended version was released **21 days ago**, on 2024-04-29. The recommended version fixes: Severity | Issue | PriorityScore (\*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Prototype Pollution
[SNYK-JS-AXIOS-6144788](/SNYK-JS-AXIOS-6144788) | **589/1000**
**Why?** Has a fix available, CVSS 7.5 | No Known Exploit (\*) Note that the real score may have changed since the PR was raised.
**Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs._ For more information: 🧐 [View latest project report](https://app.snyk.io/org/andrewmkrug/project/98bd958c-4903-436a-adba-05c4cc99b92a?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/andrewmkrug/project/98bd958c-4903-436a-adba-05c4cc99b92a/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/andrewmkrug/project/98bd958c-4903-436a-adba-05c4cc99b92a/settings/integration?pkg=ajv&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades) **Note:** _This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our [documentation.](https://docs.snyk.io/scan-using-snyk/snyk-open-source/automatic-and-manual-prs-with-snyk-open-source/customize-pr-templates-closed-beta)_
github-actions[bot] commented 5 months ago

Hi andrewmkrug! Thank you for contributing to Dashy! ✨

When updating dependencies, take a moment to verify that there are not security issues associated with any added or modified packages. If adding a new dependency, ensure that it is totally necessary, and check the packages size is not too large, as this will increase overall bundle size.

I'm a bot, and this is an automated comment 🤖

netlify[bot] commented 5 months ago

Deploy Preview for peppy-choux-edbc1e ready!

Name Link
Latest commit 9522c612f431e9b30fd70b6ea516059a8c664943
Latest deploy log https://app.netlify.com/sites/peppy-choux-edbc1e/deploys/664c0596158f6000083cfd6c
Deploy Preview https://deploy-preview-155--peppy-choux-edbc1e.netlify.app
Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

github-actions[bot] commented 5 months ago

yarn.lock changes

Click to toggle table visibility
| Name | Status | Previous | Current | | :- | :-: | :-: | :-: | | `ajv` | [UPDATED](#) | 8.11.0 | 8.13.0 |
github-actions[bot] commented 4 months ago

This PR is stale because it has been open 6 weeks with no activity. Either remove the stale label or comment below with a short update, otherwise this PR will be closed in 5 days.

github-actions[bot] commented 4 months ago

This pull request was automatically closed because it has been stalled for over 6 weeks with no activity.