search

dhis2-club-tanzania / integration-app

0 stars 0 forks source link

An in-range update of tslib is breaking the build 🚨 #49

Open greenkeeper[bot] opened 4 years ago

greenkeeper[bot] commented 4 years ago

The dependency tslib was updated from 1.11.0 to 1.11.1.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

tslib is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Status Details - ❌ **continuous-integration/travis-ci/push:** The Travis CI build could not complete due to an error ([Details](https://travis-ci.org/hisptz/integration-app/builds/656493722?utm_source=github_status&utm_medium=notification)). - ❌ **Travis CI - Branch:** The build **errored**. - ❌ **WhiteSource Security Check:** The Security Check found 16 vulnerabilities.
| Severity | CVSS Score |CVE | GitHub Issue | | ------------- |-------------|-----|------| | High | 9.8 | [CVE-2019-19919](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2019-19919 "Go to CVE Details") | [#34](https://github.com/hisptz/integration-app/issues/34 "Go to GitHub Issue") | High | 7.5 | [WS-2020-0005](https://github.com/pkrumins/node-tree-kill/commit/ff73dbf144c4c2daa67799a50dfff59cd455c63c "Go to CVE Details") | [#41](https://github.com/hisptz/integration-app/issues/41 "Go to GitHub Issue") | Medium | 7.5 | [CVE-2019-20149](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2019-20149 "Go to CVE Details") | [#36](https://github.com/hisptz/integration-app/issues/36 "Go to GitHub Issue") | Medium | 6.1 | [CVE-2012-6708](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2012-6708 "Go to CVE Details") | [#6](https://github.com/hisptz/integration-app/issues/6 "Go to GitHub Issue") | Medium | 6.1 | [CVE-2019-11358](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2019-11358 "Go to CVE Details") | [#3](https://github.com/hisptz/integration-app/issues/3 "Go to GitHub Issue") | Medium | 6.1 | [CVE-2015-9251](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2015-9251 "Go to CVE Details") | [#2](https://github.com/hisptz/integration-app/issues/2 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0310](https://github.com/TooTallNate/node-https-proxy-agent/commit/36d8cf509f877fa44f4404fce57ebaf9410fe51b "Go to CVE Details") | [#27](https://github.com/hisptz/integration-app/issues/27 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0369](https://github.com/RetireJS/retire.js/commit/f07a7557d3fc1c26b86fe11a5b33cb1b8f3dcf2f "Go to CVE Details") | [#38](https://github.com/hisptz/integration-app/issues/38 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0333](https://github.com/wycats/handlebars.js/commit/f7f05d7558e674856686b62a00cde5758f3b7a08 "Go to CVE Details") | [#31](https://github.com/hisptz/integration-app/issues/31 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0332](https://github.com/wycats/handlebars.js/commit/198887808780bbef9dba67a8af68ece091d5baa7 "Go to CVE Details") | [#30](https://github.com/hisptz/integration-app/issues/30 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0331](https://github.com/wycats/handlebars.js/commit/d54137810a49939fd2ad01a91a34e182ece4528e "Go to CVE Details") | [#29](https://github.com/hisptz/integration-app/issues/29 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0318](https://github.com/wycats/handlebars.js/commit/8d5530ee2c3ea9f0aee3fde310b9f36887d00b8b "Go to CVE Details") | [#26](https://github.com/hisptz/integration-app/issues/26 "Go to GitHub Issue") | Medium | 5.0 | [WS-2019-0043](https://hackerone.com/reports/390929 "Go to CVE Details") | [#7](https://github.com/hisptz/integration-app/issues/7 "Go to GitHub Issue") | Medium | 4.3 | [CVE-2011-4969](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2011-4969 "Go to CVE Details") | [#5](https://github.com/hisptz/integration-app/issues/5 "Go to GitHub Issue") | Medium | 4.3 | [WS-2016-0090](https://github.com/jquery/jquery/commit/b078a62013782c7424a4a61a240c23c4c0b42614 "Go to CVE Details") | [#4](https://github.com/hisptz/integration-app/issues/4 "Go to GitHub Issue") | Low | 3.5 | [CVE-2019-16769](https://vuln.whitesourcesoftware.com/vulnerability/CVE-2019-16769 "Go to CVE Details") | [#28](https://github.com/hisptz/integration-app/issues/28 "Go to GitHub Issue")
Scan token: c756f7c04b884bd49fea45b69724d9ad
Release Notes for tslib 1.11.1

This release updates tslib's declaration files so that users don't have to include declarations for WeakMap in their compilation.

Commits

The new version differs by 7 commits.

  • c1f87f7 Update version to '1.11.1'.
  • 5d26e24 Merge pull request #94 from microsoft/remove-weakmap
  • 418ee9c Fix return type of 'get'
  • b75bff8 Restore minimal type safety using a type literal
  • 9c92f58 Remove reference to WeakMap from tslib.d.ts
  • 364f0ec Merge pull request #90 from alan-agius4/patch-1
  • f6b75b4 build: exclude github workflows from npm package

See the full diff

FAQ and help There is a collection of [frequently asked questions](https://greenkeeper.io/faq.html). If those don’t help, you can always [ask the humans behind Greenkeeper](https://github.com/greenkeeperio/greenkeeper/issues/new).

Your Greenkeeper Bot :palm_tree:

greenkeeper[bot] commented 4 years ago

After pinning to 1.11.0 your tests are still failing. The reported issue might not affect your project. These imprecisions are caused by inconsistent test results.

greenkeeper[bot] commented 4 years ago

Your tests are still failing with this version. Compare changes

Release Notes for tslib 1.11.2

This release relicenses tslib to the 0BSD license which should allow projects that embed or bundle tslib to omit its license header.

Commits

The new version differs by 4 commits.

  • 3d93421 Update version to '1.11.2'.
  • e24a6ef Merge pull request #96 from microsoft/0BSD
  • 74f1ff7 Don't be so reserved about a relicense.
  • 11b9a94 Switch to the Zero-Clause BSD license.

See the full diff

greenkeeper[bot] commented 4 years ago

Your tests are still failing with this version. Compare changes

Release Notes for tslib 1.12.0

This release adds the __createBinding helper function which is used by non-ECMAScript module emit in TypeScript 3.9.

Commits

The new version differs by 6 commits.

  • 3a21810 Update version to '1.12.0'.
  • ae43189 Merge pull request #101 from alan-agius4/patch-1
  • 21f15b1 fix: add missing semi colons after method names
  • b6c0020 Remove links to spec from README
  • f283e5c Add :void
  • 6975099 Update helpers for TS 3.9 (#99)

See the full diff