Open snyk-bot opened 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
⚠️ Warning
``` Failed to update the package-lock.json, please update manually before merging. ```Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-FILETYPE-2958042
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: gatsby-plugin-sharp
The new version differs by 250 commits.- 0a455df chore(release): Publish
- 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (#32961) (#32967)
- f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) (#32966)
- ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (#30642)
- 944e381 chore(release): Publish next
- d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (#32665)
- cf9c066 fix(gatsby): add this typings to actions (#32210)
- 53aa88e chore: enable test parallelism (#32766)
- b7deabc fix(deps): update starters and examples - gatsby (#32843)
- 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (#32567)
- d87c5cb chore: enable lmdb by default and update node for next major (#32695)
- 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (#32907)
- f556a00 chore: update changelogs (#32924)
- aba5eba feat(gatsby): enable webpack caching in development for everyone (#32922)
- ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (#32901)
- 1a87a8a docs(gatsby-source-wordpress): document content sync (#32768)
- 417df15 chore: re-generate changelogs (#32886)
- 1810874 fix(gatsby-source-wordpress): draft previews (#32915)
- 7c72ab8 chore(gatsby): remove unused packages (#32903)
- afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (#32876)
- 1303ecb chore(docs): Update wording for "using-web-fonts" (#32902)
- 9589911 chore(docs): Fix code highlighting in part 6 (#32900)
- 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (#32883)
- 41f5337 fix(deps): update typescript to ^4.29.3 (#32614)
See the full diffPackage name: gatsby-source-filesystem
The new version differs by 250 commits.- 3d607f1 chore(release): Publish
- a5131bd fix(gatsby): pull out a few bug fixes from https://github.com/gatsbyjs/gatsby/pull/28149/ (#28186) (#28188)
- 4b9cd2e feat(gatsby): invite people with long page query running to try out query on demand feature (#28181) (#28185)
- 9869094 feat(gatsby): enable all dev improvements with one env var (#28166) (#28179)
- 57b5840 fix(gatsby): get-page-data should timeout gracefully (#28131) (#28180)
- 00870bb fix(gatsby-source-filesystem): Use new FileType methods to read file extension (#28156) (#28178)
- 9e3ceec fix(gatsby): rename env var for lazy dev bundling to make consistent with other experiments (#28150)
- a612f26 feat(gatsby): invite (1%) of Gatsby users to try out develop ssr (#28139)
- 04349a0 feat(gatsby): lazy bundle page components in dev server (#27884)
- 179694a chore(gatsby-source-graphql): upgrade graphql-tools to v7 (#27792)
- 23da2c3 feat(gatsby): SSR pages during development (#27432)
- 6858f22 Try adding sitehash to success event (#28136)
- 088eef4 feat(develop): add query on demand behind feature flag (#28127)
- a737ea7 feat(gatsby): invite people with long develop bundling times to try the lazy dev js bundling feature (#28116)
- bf328d0 chore(docs): replace typefaces with fontsource (#27313)
- 17de55b chore: update publishing scripts (#28118)
- f9838f7 feat(create-gatsby): add telemetry tracking (#28107)
- 23b4137 chore(create-gatsby): Remove alpha warning (#28132)
- 195d623 feat: add utility to show experiment invitation notices (#28120)
- 1657b98 benchmarks(contentful): use the new max pageLimit (#28128)
- 283da81 refactor(gatsby): get-page-data util (#27939)
- 5b2d9b6 fix(gatsby): fix race condition in cache lock (#28097)
- 061b459 Add Netlify CMS (#28124)
- 539dbb0 chore(deps): update babel monorepo (#27528)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.