This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade swagger-ui-express from 4.1.4 to 4.6.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **9 versions** ahead of your current version.
- The recommended version was released **a month ago**, on 2023-02-27.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| User Interface (UI) Misrepresentation of Critical Information [SNYK-JS-SWAGGERUIDIST-2314884](https://snyk.io/vuln/SNYK-JS-SWAGGERUIDIST-2314884) | **484/1000** **Why?** Has a fix available, CVSS 5.4 | No Known Exploit
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: swagger-ui-express
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade swagger-ui-express from 4.1.4 to 4.6.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **9 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2023-02-27. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------
[SNYK-JS-SWAGGERUIDIST-2314884](https://snyk.io/vuln/SNYK-JS-SWAGGERUIDIST-2314884) | **484/1000**
**Why?** Has a fix available, CVSS 5.4 | No Known Exploit (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: swagger-ui-express
4.6.2
Commit messages
Package name: swagger-ui-express
- 5cca5de bump version
- 78c4180 Merge pull request #336 from chgeo/master
- 462cd4f Enhance docs
- 0f37a59 Fix `serveFiles` to work w/ dynamic swaggerDoc
- 7d88de3 Do not execute `run.js` in tests
- 98f8eb3 Bump version
- 24b5260 Updated run command
- a23ce2f Merge pull request #327 from alexmassy/master
- 2857c3e Merge pull request #332 from wjthieme/master
- 53eb199 Custom robots meta tag
- 7e3eb04 unit tests for new feature
- 8e7ec69 Merge pull request #326 from camipozas/docs/replace-yamljs-to-yaml
- 242bcd5 replace npm i to npm install
- 7371252 replace yamljs to yaml
- 3b9b19c attempt preauthorization several times (useful when definition is loaded via swaggerOptions url)
- 6815803 add support for preauthorizeBasic method
- eff9a0c Merge pull request #321 from Luku1806/feature/multiple-script-imports
- 8debb7a Add documentation for array parameters
- b284ee5 Merge pull request #313 from JuninhoFreitas/feature/route-examples
- 24381a0 Bump version
- 53c0fb4 Merge pull request #319 from Luku1806/feature/multiple-script-imports
- 79ee9c7 Allow multiple external and inline Javascript imports as well as multiple external CSS
- 0fda885 added route to use show all examples
- add0b6b Bump version of package
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
π§ View latest project report
π Adjust upgrade PR settings
π Ignore this dependency or unsubscribe from future upgrade PRs