Open snyk-bot opened 1 year ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
š¦ Denial of Service (DoS)
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-SOCKETIOPARSER-5596892
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: gatsby
The new version differs by 250 commits.- 15ab3f8 chore(release): Publish
- 19eec6d chore(gatsby): bump socket.io (#37272) (#37497)
- d88ed09 chore(release): Publish
- d04b3b5 feat(gatsby-source-drupal): drupal langcode as notlangcode (#37445) (#37459)
- 19d3861 fix(gatsby-source-drupal): await async handleDeletedNode (#37435) (#37458)
- b229e7b fix(gatsby): Use correct settings for yaml-loader (#37454) (#37460)
- 7021834 fix(gatsby-source-contentful): maintain back reference map between runs (#37442) (#37456)
- 13bf518 chore(release): Publish
- b30a43f chore(deps): Bump yaml-loader (#37401) (#37407)
- 492a31a fix(gatsby): handle initializing multiple instances of gatsby-plugin-sharp (#37306) (#37329)
- 4dcca80 chore(release): Publish
- 59076c8 fix(gatsby-transformer-remark): Disallow JS frontmatter by default (#37244) (#37298)
- 48a3db4 fix(gatsby): [rendering engines] use results of exports removal if sourceMap was not generated alongside transformed code (#37282) (#37299)
- ea42d7f fix(gatsby): don't output file-loader assets to .cache (#37284) (#37300)
- 2cc9eaf chore(release): Publish
- a729764 fix(gatsby-source-wordpress): Add back nodeType field that was removed in last version (#37212) (#37218)
- 188d3e7 chore(release): Publish
- 947e11b chore(gatsby-source-wordpress): use wpgql 1.13 in itests (#37146) (#37208)
- 5e72a5d chore(release): Publish
- 2dc715d chore: remove tracedSVG (#37093) (#37127)
- 07c0478 chore(release): Publish
- c698f13 fix(gatsby-source-wordpress): WPGraphQL 1.13.0 compatibility (#37134) (#37183)
- 49cca44 chore(release): Publish
- fac9fbc feat(gatsby-source-drupal): Provide proxyUrl in addition to baseUrl to allow using CDN, API gateway, etc. (#36819) (#37084)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
š§ View latest project report
š Adjust project settings
š Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
š¦ Denial of Service (DoS)