haysclark / gatsby-starter-casper

The Casper theme v1.4 ported to GatsbyJS
https://haysclark.github.io/gatsby-starter-casper/
MIT License
198 stars 54 forks source link

[Snyk] Fix for 1 vulnerabilities #85

Open snyk-bot opened 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

⚠️ Warning ``` Failed to update the package-lock.json, please update manually before merging. ```

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5
Denial of Service (DoS)
SNYK-JS-FILETYPE-2958042
Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: gatsby-plugin-sharp The new version differs by 250 commits.
  • 0a455df chore(release): Publish
  • 91dc167 fix(gatsby): don't log FAST_DEV message for each worker (#32961) (#32967)
  • f936c93 fix(gatsby): set staticQueryResultHash to new hash on data change (#32949) (#32966)
  • ea161ce feat(gatsby-graphiql-explorer): upgrade to webpack 5 (#30642)
  • 944e381 chore(release): Publish next
  • d6326df fix(gatsby-core-utils): Switch `auth` option from got to username/password (#32665)
  • cf9c066 fix(gatsby): add this typings to actions (#32210)
  • 53aa88e chore: enable test parallelism (#32766)
  • b7deabc fix(deps): update starters and examples - gatsby (#32843)
  • 6025c84 chore(deps): update dependency katex to ^0.13.13 for gatsby-remark-katex (#32567)
  • d87c5cb chore: enable lmdb by default and update node for next major (#32695)
  • 818d6c1 feat(gatsby-plugin-gatsby-cloud): Add `disablePreviewUI` option (#32907)
  • f556a00 chore: update changelogs (#32924)
  • aba5eba feat(gatsby): enable webpack caching in development for everyone (#32922)
  • ac7bd4e feat(gatsby-source-wordpress): allow path to js file for beforeChangeNode option (#32901)
  • 1a87a8a docs(gatsby-source-wordpress): document content sync (#32768)
  • 417df15 chore: re-generate changelogs (#32886)
  • 1810874 fix(gatsby-source-wordpress): draft previews (#32915)
  • 7c72ab8 chore(gatsby): remove unused packages (#32903)
  • afb06d7 chore(docs): Add hint for MDX plugin in remark-plugin-tutorial (#32876)
  • 1303ecb chore(docs): Update wording for "using-web-fonts" (#32902)
  • 9589911 chore(docs): Fix code highlighting in part 6 (#32900)
  • 568d4ce feat(gatsby-source-drupal): Use the collection count from JSON:API extras to enable parallel API requests for cold builds (#32883)
  • 41f5337 fix(deps): update typescript to ^4.29.3 (#32614)
See the full diff
Package name: gatsby-source-filesystem The new version differs by 250 commits.
  • 3d607f1 chore(release): Publish
  • a5131bd fix(gatsby): pull out a few bug fixes from https://github.com/gatsbyjs/gatsby/pull/28149/ (#28186) (#28188)
  • 4b9cd2e feat(gatsby): invite people with long page query running to try out query on demand feature (#28181) (#28185)
  • 9869094 feat(gatsby): enable all dev improvements with one env var (#28166) (#28179)
  • 57b5840 fix(gatsby): get-page-data should timeout gracefully (#28131) (#28180)
  • 00870bb fix(gatsby-source-filesystem): Use new FileType methods to read file extension (#28156) (#28178)
  • 9e3ceec fix(gatsby): rename env var for lazy dev bundling to make consistent with other experiments (#28150)
  • a612f26 feat(gatsby): invite (1%) of Gatsby users to try out develop ssr (#28139)
  • 04349a0 feat(gatsby): lazy bundle page components in dev server (#27884)
  • 179694a chore(gatsby-source-graphql): upgrade graphql-tools to v7 (#27792)
  • 23da2c3 feat(gatsby): SSR pages during development (#27432)
  • 6858f22 Try adding sitehash to success event (#28136)
  • 088eef4 feat(develop): add query on demand behind feature flag (#28127)
  • a737ea7 feat(gatsby): invite people with long develop bundling times to try the lazy dev js bundling feature (#28116)
  • bf328d0 chore(docs): replace typefaces with fontsource (#27313)
  • 17de55b chore: update publishing scripts (#28118)
  • f9838f7 feat(create-gatsby): add telemetry tracking (#28107)
  • 23b4137 chore(create-gatsby): Remove alpha warning (#28132)
  • 195d623 feat: add utility to show experiment invitation notices (#28120)
  • 1657b98 benchmarks(contentful): use the new max pageLimit (#28128)
  • 283da81 refactor(gatsby): get-page-data util (#27939)
  • 5b2d9b6 fix(gatsby): fix race condition in cache lock (#28097)
  • 061b459 Add Netlify CMS (#28124)
  • 539dbb0 chore(deps): update babel monorepo (#27528)
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.