search

fnplus / footsteps-app

A search ๐Ÿ”Ž engine of experts-led learning paths. Learn by following the footsteps (journey) of experts. ๐Ÿ‘จโ€๐Ÿ’ป๐Ÿ‘ฉโ€๐Ÿ’ป
https://www.footsteps.dev/
GNU General Public License v3.0
42 stars 72 forks source link

[Snyk] Security upgrade gatsby-cli from 2.12.5 to 2.12.14 #152

Closed snyk-bot closed 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

โœจWhat is Merge Advice? We check thousands of dependency upgrade pull requests and CI tests every day to see which upgrades were successfully merged. After crunching this data, we give a recommendation on how safe we think the change is for you to merge without causing issues. Learn more, and share your feedback to help improve this feature. ๐Ÿ™

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
medium severity Prototype Pollution
SNYK-JS-YARGSPARSER-560381		 No Proof of Concept
Commit messages
Package name: gatsby-cli The new version differs by 154 commits.
  • a3815c3 chore(release): Publish
  • 2b1de8c chore: bump yargs parser version to avoid flagged vulnerable dependencies (#23839)
  • 197614e chore(gatsby): Migrate nodes reducer and last-action reducer to TypeScript (#23771)
  • 8e68d32 update(docs) Fix broken links in "How Queries Work" article (#23894)
  • ce198e7 feat(www): Meta title support (#23797)
  • a173fd3 chore(docs): prevent use of h1s in markdown (#23664)
  • d98e2ad fix(gatsby-recipes): Also call telemetry when selecting a recipe from the list (#23882)
  • 2d502c8 fix(www): Allow API docs to reference top level TS exports (#23863)
  • 29e3acb chore(gatsby-benchmark-wordpress): update to latest packages (#23876)
  • 5fcd6dc fix(gatsby-link): replace current path in history rather than pushing it (#23414)
  • 8e6d5c6 add Impossible Burgers case study (#23873)
  • 29dc9e1 update(docs) Fix broken links in node-tracking.md (#23874)
  • b3e41f5 chore(docs): Fix file extension on TS doc (#23824)
  • 02bd7ed fix(gatsby-remark-images): allow default max-width to be overwritten with `wrapperStyle` (#23854)
  • d2de7f7 chore(release): Publish
  • cb24974 add Storybook (ts) to recipes (#23728)
  • 2e17593 chore(release): Publish
  • a29aca1 fix(gatsby-dev-cli): fix "expected manifest" errors (#23871)
  • bc34171 Add Cognifide Tech to Gatsby Showcase (#23868)
  • 2ea0302 Make ButterCMS all one word in title (#23804)
  • 986f7b8 perf(gatsby): replace `mitt` with a modern Map/Set based version of it (#23223)
  • 4f35247 Add www.chandraveena.com to Gatsby Site Showcase (#23861)
  • 11221c5 fix(docs): add missing comma between properties in code example (#23859)
  • 6568560 chore(gitkeep): remove useless files (#23847)
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

๐Ÿง View latest project report

๐Ÿ›  Adjust project settings

๐Ÿ“š Read more about Snyk's upgrade and patch logic

netlify[bot] commented 4 years ago

Deploy preview for footsteps-app ready!

Built with commit ae872d0da22838be9f9031ba82947d4ca17c6e2c

https://deploy-preview-152--footsteps-app.netlify.app