search

aporia-ai / mlnotify

πŸ”” No need to keep checking your training - just one import line and you'll know the second it's done.
https://mlnotify.aporia.com
MIT License
344 stars 19 forks source link

[Snyk] Upgrade nanoid from 3.1.25 to 3.3.4 #60

Open camparibot opened 2 years ago

camparibot commented 2 years ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade nanoid from 3.1.25 to 3.3.4.

![merge advice](https://app.snyk.io/badges/merge-advice/?package_manager=npm&package_name=nanoid&from_version=3.1.25&to_version=3.3.4&pr_id=90e830e1-4016-46e7-bc6d-02e8d2953f83&visibility=true&has_feature_flag=false) As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:sparkles: Snyk has automatically assigned this pull request, [set who gets assigned](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr/settings/integration). :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **13 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2022-05-03. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Information Exposure
[SNYK-JS-NANOID-2332193](https://snyk.io/vuln/SNYK-JS-NANOID-2332193) | **521/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 4 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: nanoid
  • 3.3.4 - 2022-05-03

    3.3.4

      </li>
  <li>
    <b>3.3.3</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.3.3">2022-04-18</a></br><p>3.3.3</p>
  </li>
  <li>
    <b>3.3.2</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.3.2">2022-03-28</a></br><p>3.3.2</p>
  </li>
  <li>
    <b>3.3.1</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.3.1">2022-02-16</a></br><p>3.3.1</p>
  </li>
  <li>
    <b>3.3.0</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.3.0">2022-02-14</a></br><p>3.3</p>
  </li>
  <li>
    <b>3.2.0</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.2.0">2022-01-16</a></br><p>3.2</p>
  </li>
  <li>
    <b>3.1.32</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.1.32">2022-01-12</a></br><p>3.1.32</p>
  </li>
  <li>
    <b>3.1.31</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.1.31">2022-01-11</a></br><p>3.1.31</p>
  </li>
  <li>
    <b>3.1.30</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.1.30">2021-10-13</a></br><p>3.1.30</p>
  </li>
  <li>
    <b>3.1.29</b> - <a href="https://snyk.io/redirect/github/ai/nanoid/releases/tag/3.1.29">2021-10-05</a></br><p>3.1.29</p>
  </li>
  <li>
    <b>3.1.28</b> - 2021-09-26
  </li>
  <li>
    <b>3.1.27</b> - 2021-09-26
  </li>
  <li>
    <b>3.1.26</b> - 2021-09-26
  </li>
  <li>
    <b>3.1.25</b> - 2021-08-12
  </li>
</ul>
from <a href="https://snyk.io/redirect/github/ai/nanoid/releases">nanoid GitHub release notes</a>

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

πŸ‘©β€πŸ’» Set who automatically gets assigned

πŸ›  Adjust upgrade PR settings

πŸ”• Ignore this dependency or unsubscribe from future upgrade PRs