Snyk has created this PR to upgrade winston from 2.2.0 to 3.8.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Warning: This is a major version upgrade, and may be a breaking change.
The recommended version is 34 versions ahead of your current version.
The recommended version was released 3 months ago, on 2022-06-30.
This release reverts the changes made in PR #1896 which added stricter typing to the available log levels,
and inadvertently broke use of custom levels with TypeScript (Issue #2047). Apologies for that!
Snyk has created this PR to upgrade winston from 2.2.0 to 3.8.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Warning: This is a major version upgrade, and may be a breaking change.
Release notes
Package name: winston
Patch-level changes
Dependency updates by @ dependabot + CI autotesting
Full Changelog: v3.8.0...v3.8.1
Added functionality
Dependency updates by @ dependabot + CI autotesting
Updates facilitating repo maintenance & enhancing documentation
New Contributors
Full Changelog: v3.7.2...v3.8.0
What's Changed
Full Changelog: v3.7.1...v3.7.2
The release announcement on GitHub is 24 days behind the NPM release in this case, sorry for the confusion!
This change includes some minor updates to package-lock.json resolving npm audit failures: one in ansi-regex and another in minimist.
Full Changelog: v3.7.0...v3.7.1
process.nextTick
to clear pending callbacks (#2057) f741383v3.5.1...v3.6.0
This release reverts the changes made in PR #1896 which added stricter typing to the available log levels,
and inadvertently broke use of custom levels with TypeScript (Issue #2047). Apologies for that!
Version 3.3.4
This updates a dependency to address https://security.snyk.io/vuln/SNYK-JS-ASYNC-2441827. See #2112 by @bacali95.
Commit messages
Package name: winston
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs