render[bot]
commented
6 months ago Your Render PR Server URL is https://turborepo-remote-cache-pr-332.onrender.com.
Follow its progress at https://dashboard.render.com/web/srv-co1flaljm4es7381lqkg.
Closed matteovivona closed 6 months ago
render[bot]
commented
6 months ago Your Render PR Server URL is https://turborepo-remote-cache-pr-332.onrender.com.
Follow its progress at https://dashboard.render.com/web/srv-co1flaljm4es7381lqkg.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **631/1000****Why?** Proof of Concept exploit, Has a fix available, CVSS 6.2 | Missing Release of Resource after Effective Lifetime
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | Yes | Proof of Concept  | **586/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 5.3 | Prototype Pollution
[SNYK-JS-XML2JS-5414874](https://snyk.io/vuln/SNYK-JS-XML2JS-5414874) | No | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: aws-sdk
The new version differs by 55 commits.- a99fac5 Updates SDK to v2.1354.0
- 62847a4 Bump xml2js to 0.5.0 (#4389)
- 56ad952 Updates SDK to v2.1353.0
- 8a20e16 Updates SDK to v2.1352.0
- d39ba59 Updates SDK to v2.1351.0
- 3ee782c Updates SDK to v2.1350.0
- 8dcb3e2 Updates SDK to v2.1349.0
- cc11160 Updates SDK to v2.1348.0
- c58ec67 Updates SDK to v2.1347.0
- ded882e Updates SDK to v2.1346.0
- 2a4e007 Updates SDK to v2.1345.0
- d21d111 Updates SDK to v2.1344.0
- 1c27481 Updates SDK to v2.1343.0
- 31f179d Updates SDK to v2.1342.0
- 7a4205c Updates SDK to v2.1341.0
- f990ba2 Updates SDK to v2.1340.0
- 05a0d49 Updates SDK to v2.1339.0
- f04a795 Updates SDK to v2.1338.0
- eba3268 Updates SDK to v2.1337.0
- 512728e Updates SDK to v2.1336.0
- 7b8436a Updates SDK to v2.1335.0
- f3bfd44 add Makefile to .gitignore (#4370)
- ac41da1 Updates SDK to v2.1334.0
- 4c9c49d delete Makefile
See the full diffPackage name: pino-pretty
The new version differs by 47 commits.- 1e38da2 Bumped v10.3.0
- 05e123b Update to latest help-me (#482)
- db27875 Update Readme.md. Fix commas. (#479)
- 6581192 Bump actions/setup-node from 3 to 4 (#476)
- 66cb1b1 Remove `config` from README programmatic options (#475)
- 41fdd31 v10.2.3
- 8ee55cc Manually require and export all util scripts
- 9fb7330 Bumped v10.2.2
- 0a64b2a fixup
- 602be25 Bumped v10.2.1
- 6f30140 Disable FinalizationRegistry if NODE_V8_COVERAGE is set (#464)
- dcb5e1b Bump actions/checkout from 3 to 4 (#461)
- 45475e6 Bump tsd from 0.28.1 to 0.29.0 (#454)
- b34e7c7 Refactor functions to use context object (#452)
- 23c3628 Improve jsdoc blocks
- f1e78b5 Fix coverage
- 38f873a Move utils tests to sibling files
- 0d67bfa Refactor utils into directory
- b4a1fb6 Add basic benchmark suite (#451)
- fa386a9 v10.2.0
- ff7b238 Add support for messageFormat strings containing conditionals (#442)
- 6e66abc Remove coveralls (#443)
- 0084b84 Bumped v10.1.0
- d195503 Add customColors to typescript definition for PrettyOptions (#440)
See the full diff