bimspot / xeokit-react

Integratation of the xeokit viewer into a React application.
33 stars 22 forks source link

[Snyk] Fix for 1 vulnerabilities #23

Open snyk-bot opened 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 768/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5
Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908
Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: eslint The new version differs by 250 commits.
  • 145aec1 7.16.0
  • 83518a5 Build: changelog update for 7.16.0
  • a62ad6f Update: fix false negative of no-extra-parens with NewExpression (#13930)
  • f85b4c7 Fix: require-atomic-updates false positive across await (fixes #11954) (#13915)
  • 301d0c0 Fix: no-constant-condition false positives with unary expressions (#13927)
  • 555c128 Fix: false positive with await and ** in no-extra-parens (fixes #12739) (#13923)
  • d93c935 Docs: update JSON Schema links (#13936)
  • 8d0c93a Upgrade: table@6.0.4 (#13920)
  • 9247683 Docs: Remove for deleted npm run profile script (#13931)
  • ab240d4 Fix: prefer-exponentiation-operator invalid autofix with await (#13924)
  • dc76911 Chore: Add .pre-commit-hooks.yaml file (#13628)
  • 2124e1b Docs: Fix wrong rule name (#13913)
  • 06b5809 Sponsors: Sync README with website
  • 26fc12f Docs: Update README team and sponsors
  • 902a032 7.15.0
  • 6356778 Build: changelog update for 7.15.0
  • 5c11aab Upgrade: @ eslint/esintrc and espree for bug fixes (refs #13878) (#13908)
  • 0eb7957 Upgrade: file-entry-cache@6.0.0 (#13877)
  • 683ad00 New: no-unsafe-optional-chaining rule (fixes #13431) (#13859)
  • cbc57fb Fix: one-var autofixing for export (fixes #13834) (#13891)
  • 110cf96 Docs: Fix a broken link in working-with-rules.md (#13875)
  • 0cb81a9 7.14.0
  • fb3a594 Build: changelog update for 7.14.0
  • 5f09073 Update: fix 'skip' options in no-irregular-whitespace (fixes #13852) (#13853)
See the full diff
Package name: webpack-cli The new version differs by 250 commits.
  • fb50f76 chore(release): publish new version
  • 2c75aeb chore: new version of the packages
  • 0d05c30 chore(release): publish %s
  • 3f9e151 chore: fix lerna config
  • 2c1e34c tests(generator): enhance init generator tests (#1236)
  • 6ee61b9 Fix loader-generator and plugin-generator tests (#1250)
  • 52956a2 Fixing the typos and grammatical errors in Readme files (#1246)
  • 7faaed2 chore: update Bug_report & Feature_request Templates (#1256)
  • 7a5b33d feat(webpack-cli): added mode argument (#1253)
  • 3715756 tests(webpack-cli): add test case for defaults flag (#1254)
  • a7cba2f chore: project maintanance and typescript fix (#1247)
  • 7748472 chore: ignore package-lock.json and remove its references (#1252)
  • a014aa7 docs: fix supported arguments & commands link in README (#1244)
  • 06129a1 feat(webpack-cli): add progress bar for progress flag (#1238)
  • 6cc6a49 chore: post refactor CLI (#1237)
  • 358651e chore: move cli under lerna package (#1225)
  • 2dc495a fix(init): fix webpack config scaffold (#1231)
  • 1ab62d2 tests(generator): add tests for plugin generator (#1235)
  • d2dd0c1 tests(sourcemap): fix flaky stats statement (#1232)
  • f6dc680 tests(loader-generator): add tests for loader generator (#1234)
  • 35d1381 tests(generator): enable init generator test (#1233)
  • 66cdcb6 chore(generator): remove transpiled tests (#1229)
  • f29a170 fix(init): fix the invalid package name (#1228)
  • 8c3a66d chore(cli): updated changelog of v3 (#1224)
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic