Closed snyk-bot closed 1 year ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
š¦ Directory Traversal
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-MOMENT-2440688
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @dwp/govuk-casa
The new version differs by 48 commits.- ea00c18 chore(release): 7.0.1
- 542cbee refactor: push to internal npm registry
- 45442b3 chore(release): 7.0.0
- 7f02fbe chore: update dependencies
- 1553627 refactor(ci): avoid detached pipeline on dast job
- 1010e6b refactor: simplify origin extraction from route creation
- 56b9619 refactor: simplify field path parsing
- b47778e refactor: apply regex sanitisation
- 465cb16 chore(ci): add standard-version config
- 0174423 refactor(ci): add dast tooling
- e6a3ffd refactor(ci): move to using shared pipeline blueprints
- 3b20f3d chore(ci): use the correct git hook for commitlint
- c0303df refactor: husky config after upgrade
- 1af9c3b chore: update dependencies
- 70e30e2 chore: update dependencies
- 103f679 chore: minor review fixes
- 81b2669 chore: update dependencies
- e7d6b0e chore: package 7.0.0-beta1
- 42392d0 chore(ci): enable all jobs for 7.0.0
- 3fb0ecd chore: lint fixes
- bedf253 feat: add new wordCount validator
- cddee56 fix: postalAddressObject welsh translations
- 716c7f5 refactor: [bc] add govuk/ prefix to nunjucks macros
- 60cdcdd refactor: extract some common functions into utils
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
š¦ Directory Traversal