Closed snyk-bot closed 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 4.8
SNYK-JS-PASSPORT-2840631
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: koa-passport
The new version differs by 28 commits.- 0608284 upgrade to passport 0.6.0
- e2340e9 Merge pull request #159 from rkusa/dependabot/add-v2-config-file
- 0ed8a96 Update .github/dependabot.yml
- e8bcbbd Upgrade to GitHub-native Dependabot
- 2e29683 bump version to 4.1.4
- 52296ab upgrade dev dependencies
- f2d4934 Merge pull request #157 from tommoor/patch-1
- b20ee8e Move position of ip in block
- 9050920 fix: Add missing "ip" to request proxy object
- 7cc1f2c Merge pull request #131 from rkusa/dependabot/npm_and_yarn/supertest-tw-4.0.2
- 19004aa Merge pull request #130 from rkusa/dependabot/npm_and_yarn/mocha-tw-6.1.4
- 7bfa143 Update supertest requirement from ^3.3.0 to ^4.0.2
- bef1353 Update mocha requirement from ^5.2.0 to ^6.1.4
- 89c1314 4.1.3
- 3e6126d Merge branch 'master' of github.com:rkusa/koa-passport
- 17d601a 4.1.2
- 84202c8 Merge pull request #128 from AGhost-7/master
- d0310f0 add back set header
- c4591ed change setHeader to match expressjs api
- 858e192 Revert "allow calling authenticate without callback #125"
- f3e1708 allow calling authenticate without callback #125
- 562aa13 upgrade dependencies
- cbd12fb bump version to 4.1.1
- 5be74af Merge branch 'master' of github.com:rkusa/koa-passport
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.