godaddy / svgs

svgs is a compatiblity layer between svg and react-native-svg
MIT License
191 stars 31 forks source link

[Snyk] Security upgrade browserify from 13.1.1 to 15.0.0 #50

Closed snyk-bot closed 3 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ACORN-559469
Yes No Known Exploit
Commit messages
Package name: browserify The new version differs by 69 commits.
  • d85aa76 Merge branch 'master' of github.com:browserify/browserify
  • 0a0efe3 15.0.0
  • 288675e Changelog for 15.0.0
  • a9aaa99 Merge pull request #1793 from TehShrike/patch-3
  • 89fab44 Set the node version in package.json
  • 00c211d Merge pull request #1785 from TehShrike/backticks-test
  • 183162f remove es6ify from yield test
  • 3ccd552 Merge pull request #1743 from ryysud/add-nodejs-v8-to-travis
  • 7c3e585 Bump module-deps dependency
  • 5ec19ee update git url, fixes #1786
  • 13e9d80 add images to repo
  • 2b5d187 Failing test for backtick quotes
  • 9fad0c2 Merge pull request #1769 from browserify/pr-1218
  • e65a8d8 Remove v7 and add v9 to Travis CI
  • a1def79 Merge pull request #1770 from browserify/tap-10
  • 71205af Update tap
  • 12f5634 Tests for passing array to b.exclude() and b.ignore()
  • cc938e1 Array support for b.exclude() and b.ignore()
  • 8dfecd5 Merge pull request #1689 from oncletom/patch-1
  • ccc0213 14.5.0
  • f2e720a changelog 14.5.0
  • 37bd7b4 Merge pull request #1733 from dignifiedquire/patch-1
  • 5a0c9ac use ~ range for <v1.0 deps
  • 866a2e7 Merge pull request #1767 from amiller-gh/master
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

coveralls commented 4 years ago

Pull Request Test Coverage Report for Build 73


Totals Coverage Status
Change from base Build 70: 0.5%
Covered Lines: 255
Relevant Lines: 255

💛 - Coveralls
3rd-Eden commented 3 years ago

Does not apply to this project