Closed snyk-bot closed 1 year ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-CKEDITORCKEDITOR5ENGINE-1243740
Why? Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-CKEDITORCKEDITOR5IMAGE-1243742
Why? Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-CKEDITORCKEDITOR5LIST-1243743
Why? Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-CKEDITORCKEDITOR5WIDGET-1243747
Why? Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-POSTCSS-1090595
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-SSRI-1246392
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: copy-webpack-plugin
The new version differs by 31 commits.- 517433e chore(release): 5.0.0
- d332212 test: empty from (#343)
- 1f511b8 refactor: debug option (#342)
- e808aa2 fix: copy only modified files when you use patterns with difference to (#341)
- fbe43cb test: space in directory (#340)
- 8f5e638 fix: normalize path segment separation (#339)
- a1c5372 feat: emit warning instead error if file doesn't exist (#338)
- f551c0d feat: supports copy nested directories/files in symlink (#335)
- 2f3ee34 refactor: use `Error` class for error (#336)
- 49a28f0 fix: handles new files when you in watch mode (#333)
- 11c9aef refactor: `fromArgs` option (#332)
- e870664 refactor: migrate on Set (#331)
- 9e1c35e refactor: code (#330)
- ab9439a refactor: break compatibility with < webpack 4 (#329)
- 61dfe52 fix: handle `[contenthash]` as template (#328)
- 6ea72d7 refactor: rewrite on class (#327)
- cbeac0f test: cjs (#326)
- f82ed7e chore: update webpack-defaults (#325)
- 6e508f5 chore(deps): update (#324)
- f80d235 docs: improve (#323)
- daccb2f chore: migrate on jest (#322)
- 2fa2dbe chore: integrate husky and lint-staged (#321)
- 050a5bb chore: drop support for node < 6.9 (#320)
- 488b848 chore: integrate prettier and eslint (#319)
See the full diffPackage name: postcss-loader
The new version differs by 39 commits.- 792e217 chore(release): 4.0.0
- 598f36d docs: improve readme
- cad6f07 fix: avoid mutations of options and config (#470)
- 77449e1 test: union (#469)
- 9b75888 feat: reuse AST from other loaders (#468)
- 5e4a77b fix: resolve `from` and `to` from config and options (#467)
- 225b2e5 refactor: do not validate `postcss` options (#466)
- 3d32c35 fix: `default` export for plugins (#465)
- 38ebe08 refactor: `execute` option (#464)
- d0ea725 refactor: config loading
- 108d871 test: more
- b4d3bcc chore: remove unnecessary dev deps (#460)
- 475278c chore: move `postcss` to `peerDependencies` (#459)
- 98441ff fix: respect the `map` option and source maps (#458)
- ba88040 refactor: do not pass meta from other loaders (#457)
- 25a16a0 refactor: source map code
- 677c2fe refactor: removed `inline` value for the `sourceMap` option (#454)
- d8d84f7 refactor: code (#453)
- 3cd85df refactor: code
- 6eb44ed refactor: code
- 53da71a refactor: sourcemap paths
- d7bc470 feat: array syntax for plugins
- 2cd7614 refactor: code (#451)
- 60e4f12 docs: addDependency (#448)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic