This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade posthog-js from 1.113.0 to 1.113.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **2 versions** ahead of your current version.
- The recommended version was released **21 days ago**, on 2024-03-11.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Information Exposure [SNYK-JS-FOLLOWREDIRECTS-6444610](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6444610) | **504/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 6.5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: posthog-js
Compare
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/laszlocph/project/288c8297-8311-44e8-b499-f55998c2fb07?utm_source=github&utm_medium=referral&page=upgrade-pr)
🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/laszlocph/project/288c8297-8311-44e8-b499-f55998c2fb07/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr)
🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/laszlocph/project/288c8297-8311-44e8-b499-f55998c2fb07/settings/integration?pkg=posthog-js&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade posthog-js from 1.113.0 to 1.113.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **2 versions** ahead of your current version. - The recommended version was released **21 days ago**, on 2024-03-11. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------
[SNYK-JS-FOLLOWREDIRECTS-6444610](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6444610) | **504/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 6.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: posthog-js
-
1.113.2 - 2024-03-11
- fix: Send beacon request encoding (#1068)
-
1.113.1 - 2024-03-11
- fix: clarify redaction message (#1069)
-
1.113.0 - 2024-03-11
- feat: scrub payloads with forbidden words (#1059)
- chore: remove unused path (#1066)
from posthog-js GitHub release notes1.113.2 - 2024-03-11
1.113.1 - 2024-03-11
1.113.0 - 2024-03-11
Commit messages
Package name: posthog-js
- 6e04558 chore: Bump version to 1.113.2
- ada306b fix: Send beacon request encoding (#1068)
- cdb1634 chore: Bump version to 1.113.1
- 64bb260 fix: clarify redaction message (#1069)
Compare**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: