Closed atomist[bot] closed 3 years ago
This pull request fixes all 3 high security vulnerabilities open on 9f67cc8.
npm audit fix updated the following npm dependencies:
npm audit fix
y18n
Following security vulnerability is fixed:
Prototype Pollution Upgrade to version 3.2.2, 4.0.1, 5.0.5 or later high · <3.2.2||=4.0.0||>=5.0.0 <5.0.5 · CVE-2020-7774 · automatic fix available
<3.2.2||=4.0.0||>=5.0.0 <5.0.5
y18n@4.0.0
@atomist/skill > @graphql-codegen/typescript-operations > @graphql-codegen/typescript > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
@atomist/skill > @graphql-codegen/typescript-operations > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
@atomist/skill > @graphql-codegen/typescript > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
File changed:
package-lock.json
atomist/npm-vulnerability-scanner-skill · Configure
Pull request auto merged:
This pull request fixes all 3 high security vulnerabilities open on 9f67cc8.
npm audit fix
updated the following npm dependencies:y18n
> 4.0.1Fixed vulnerabilities
Following security vulnerability is fixed:
y18n
Prototype Pollution Upgrade to version 3.2.2, 4.0.1, 5.0.5 or later high ·
<3.2.2||=4.0.0||>=5.0.0 <5.0.5
· CVE-2020-7774 · automatic fix availabley18n@4.0.0
· 3 vulnerable paths@atomist/skill > @graphql-codegen/typescript-operations > @graphql-codegen/typescript > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
@atomist/skill > @graphql-codegen/typescript-operations > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
@atomist/skill > @graphql-codegen/typescript > @graphql-codegen/visitor-plugin-common > @graphql-tools/relay-operation-optimizer > relay-compiler > yargs > y18n
File changed:
package-lock.json
atomist/npm-vulnerability-scanner-skill · Configure