Open snyk-bot opened 2 years ago
Merging #153 (4d81316) into develop (2c8ed29) will decrease coverage by
0.13%
. The diff coverage isn/a
.
@@ Coverage Diff @@
## develop #153 +/- ##
===========================================
- Coverage 15.86% 15.72% -0.14%
===========================================
Files 56 56
Lines 1305 1316 +11
Branches 227 238 +11
===========================================
Hits 207 207
- Misses 1098 1109 +11
Flag | Coverage Δ | |
---|---|---|
unittest | 15.72% <ø> (-0.14%) |
:arrow_down: |
Flags with carried forward coverage won't be shown. Click here to find out more.
Impacted Files | Coverage Δ | |
---|---|---|
client/src/components/vocab/ScrollTop.js | 55.55% <0.00%> (-3.27%) |
:arrow_down: |
client/src/components/contrib/contrib.js | 63.63% <0.00%> (-3.04%) |
:arrow_down: |
client/src/components/password/reset-password.js | 38.63% <0.00%> (-0.90%) |
:arrow_down: |
client/src/components/login/login.js | 29.33% <0.00%> (-0.81%) |
:arrow_down: |
client/src/components/profile/editprofile.js | 7.27% <0.00%> (-0.14%) |
:arrow_down: |
client/src/components/profile/editavatar.js | 1.51% <0.00%> (-0.03%) |
:arrow_down: |
client/src/serviceWorker.js | 0.00% <0.00%> (ø) |
|
client/src/services/auth.header.js | 0.00% <0.00%> (ø) |
Continue to review full report at Codecov.
Legend - Click here to learn more
Δ = absolute <relative> (impact)
,ø = not affected
,? = missing data
Powered by Codecov. Last update 2c8ed29...4d81316. Read the comment docs.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-ANSIREGEX-1583908
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-AXIOS-1579269
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-BROWSERSLIST-1090194
Why? Has a fix available, CVSS 5.3
SNYK-JS-CSSWHAT-1298035
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-GLOBPARENT-1016905
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-IMMER-1019369
Why? Proof of Concept exploit, Has a fix available, CVSS 5.6
SNYK-JS-IMMER-1540542
Why? Has a fix available, CVSS 4.3
SNYK-JS-ISTANBULREPORTS-2328088
Why? Has a fix available, CVSS 3.7
SNYK-JS-MINIMIST-2429795
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-NTHCHECK-1586032
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-POSTCSS-1090595
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-POSTCSS-1255640
Why? Proof of Concept exploit, Has a fix available, CVSS 5.6
SNYK-JS-REACTDEVUTILS-1083268
Why? Has a fix available, CVSS 8.1
SNYK-JS-SHELLQUOTE-1766506
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090599
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090600
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090601
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090602
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: axios
The new version differs by 41 commits.Package name: react-scripts
The new version differs by 238 commits.Package name: validator
The new version differs by 182 commits.Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Prototype Pollution 🦉 Prototype Pollution 🦉 Remote Code Execution (RCE)