search

blacklight / platypush

A versatile and extensible platform for automation with hundreds of supported integrations
https://platypush.tech
MIT License
292 stars 21 forks source link

[Snyk] Upgrade sass from 1.77.3 to 1.77.6 #439

Open blacklight opened 3 months ago

blacklight commented 3 months ago

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade sass from 1.77.3 to 1.77.6.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **3 versions** ahead of your current version. - The recommended version was released on **a month ago**. #### Issues fixed by the recommended upgrade: | | Issue | Score | Exploit Maturity | :-------------------------:|:-------------------------|:-------------------------|:------------------------- ![high severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png 'high severity') | Uncontrolled resource consumption
[SNYK-JS-BRACES-6838727](https://snyk.io/vuln/SNYK-JS-BRACES-6838727) | **482** | Proof of Concept
Release notes
Package name: sass
  • 1.77.6 - 2024-06-17

    ā€¦264)

      </li>
  <li>
    <b>1.77.5</b> - <a href="https://github.com/sass/dart-sass/releases/tag/1.77.5">2024-06-11</a></br><p>To install Sass 1.77.5, download one of the packages below and <a href="https://katiek2.github.io/path-doc/" rel="nofollow">add it to your PATH</a>, or see <a href="https://sass-lang.com/install" rel="nofollow">the Sass website</a> for full installation instructions.</p>

    Changes

    • Fully trim redundant selectors generated by @ extend.

    See the full changelog for changes in earlier releases.

      </li>
  <li>
    <b>1.77.4</b> - <a href="https://github.com/sass/dart-sass/releases/tag/1.77.4">2024-05-30</a></br><p>To install Sass 1.77.4, download one of the packages below and <a href="https://katiek2.github.io/path-doc/" rel="nofollow">add it to your PATH</a>, or see <a href="https://sass-lang.com/install" rel="nofollow">the Sass website</a> for full installation instructions.</p>

    Changes

    Embedded Sass

    • Support passing Version input for fatalDeprecations as string over embedded protocol.

    • Fix a bug in the JS Embedded Host where Version could be incorrectly accepted as input for silenceDeprecations and futureDeprecations in pure JS.

    See the full changelog for changes in earlier releases.

      </li>
  <li>
    <b>1.77.3</b> - <a href="https://github.com/sass/dart-sass/releases/tag/1.77.3">2024-05-29</a></br><p>To install Sass 1.77.3, download one of the packages below and <a href="https://katiek2.github.io/path-doc/" rel="nofollow">add it to your PATH</a>, or see <a href="https://sass-lang.com/install" rel="nofollow">the Sass website</a> for full installation instructions.</p>

    Changes

    Dart API

    • Deprecation.duplicateVariableFlags has been deprecated and replaced with Deprecation.duplicateVarFlags to make it consistent with the duplicate-var-flags name used on the command line and in the JS API.

    See the full changelog for changes in earlier releases.

      </li>
</ul>
from <a href="https://github.com/sass/dart-sass/releases">sass GitHub release notes</a>

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information: