[Snyk] Security upgrade got from 8.3.0 to 9.5.1 - Githubissues

commonality / readme-inspector

䷂ Verify the existence—and assess the quality—of README files on GitHub (Enterprise) repositories.

https://commonality.github.io/readme-inspector/

MIT License

9 stars 9 forks source link

[Snyk] Security upgrade got from 8.3.0 to 9.5.1 #85

Open snyk-bot opened 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: got

The new version differs by 184 commits.

6ce603e 9.5.1
203dadc Fix memory leak when using socket timeout and keepalive agent (#694)
73428f9 Add `superagent` to the comparison table (#691)
d136e61 Update dependencies
877a6c1 Remove badge labels from the Comparison section
5653c1a Add failing test for #687 (#688)
8341fba Consistent use of emphasis in readme (#684)
0bb9fa6 Fix 'Migration guides' json example
91c0607 9.5.0
a1eadfe Upgrade dependencies
5d20a43 Remove error thrown for URLs with auth component (#676)
3e0edd8 Mention HTTPError `body` property in docs
aa4c9a6 Clarify error docs (#670)
533d7e5 9.4.0
9f3a099 Add ability to specify which network error codes to retry on (#660)
33b838f Add Got options onto responses and errors (#663)
8848a7a Add migration guides (#595)
4a8722b Minor code style tweaks
c8e358f Clear `socket` timeout on error (#659)
3229448 Create issue templates (#655)
ef1494c Remove unnecessary check for `options`
5367228 Remove unnecessary `if` block
64f0adc Update node-fetch in the readme comparison table (#658)
7f18ef3 Mention a few more Node errors when Got will retry

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic