search

estruyf / doctor

Doctor - Maintain your documentation on SharePoint without pain.
http://getdoctor.io
MIT License
112 stars 17 forks source link

[Snyk] Security upgrade @pnp/cli-microsoft365 from 3.7.0-beta.b01397d to 4.4.0 #120

Closed snyk-bot closed 1 year ago

snyk-bot commented 2 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Open Redirect
SNYK-JS-NODEFORGE-2330875		 No Proof of Concept
medium severity 601/1000
Why? Recently disclosed, Has a fix available, CVSS 6.3		 Prototype Pollution
SNYK-JS-NODEFORGE-2331908		 No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @pnp/cli-microsoft365 The new version differs by 250 commits.
  • d4af108 Updates release notes
  • 461d0e6 Adds the 'List all large files within a SharePoint Site' sample. Closes #2772
  • 6f7ecbf Fixes unhandled exception for spo group user add. Closes #2935
  • 7a38149 Adds support for upgrading SPFx projects to v1.14.0-beta.5. Closes #2983
  • 3913c30 Updates release notes
  • 2d271d3 Adds 'planner task set' command. Closes #2824
  • 23194d7 Updates release notes
  • ba3d1d0 Adds docs explaining app commands. Closes #2888
  • 95fdd4b Adds the 'spo site recyclebinitem list' command. Closes #2875
  • f62c5d1 Fixes 'app permission list' command name in the TOC
  • 18b02d9 Updates release notes
  • 7f6f11b Adds 'teams chat message list' command. Closes #2860
  • 5d209e2 Updates release notes
  • fcc616c Extends 'spo group user add' with groupName and email. Closes #2831
  • 476d8ef Fixes 'teams tab get' and 'teams app list' commands. Closes #2930
  • ffe290f Updates release notes
  • 7742440 Adds the 'aad user hibp' command. Closes #2476
  • 1f56870 Adds 'teams chat list' command. Closes #2893
  • f2c9817 Updates list of contributors
  • 3be804f Updates release notes
  • d8726fe Adds 'teams chat member list' command. Closes #2896
  • 52457bb Extends 'cli config set' with support for csv output. Closes #2901
  • 1bd9aa9 Updates list of contributors
  • 6c25059 Updates release notes
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

πŸ›  Adjust project settings

πŸ“š Read more about Snyk's upgrade and patch logic

vercel[bot] commented 2 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

πŸ” Inspect: https://vercel.com/estruyf/doctor/4DirmRK13QLhwKGYc22XVo3SixKY
βœ… Preview: https://doctor-git-snyk-fix-e2400e3943eda7f33049809968687ff8-estruyf.vercel.app