Snyk has created this PR to upgrade rdflib from 1.0.4 to 1.3.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 13 versions ahead of your current version.
The recommended version was released 2 months ago, on 2020-07-30.
After previous release we discovered that there were some discrepancies between factory methods and store methods, which makes the combined use of them difficult. This patch release fixes this.
With this minor release we move types from @types/rdflib to internal type definitions, which should make them more accurate. With this work we had to do a bit of work to make sure that everything played along nicely in TypeScript. We've tried to make sure that no methods break, but if anything breaks for you, please let us know.
Snyk has created this PR to upgrade rdflib from 1.0.4 to 1.3.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-ELLIPTIC-571484
Why? Proof of Concept exploit, CVSS 7.7
SNYK-JS-ELLIPTIC-511941
Why? Proof of Concept exploit, CVSS 7.7
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: rdflib
1.3.1
1.2.3
1.2.2
After previous release we discovered that there were some discrepancies between factory methods and store methods, which makes the combined use of them difficult. This patch release fixes this.
PRs in this release
With this minor release we move types from @types/rdflib to internal type definitions, which should make them more accurate. With this work we had to do a bit of work to make sure that everything played along nicely in TypeScript. We've tried to make sure that no methods break, but if anything breaks for you, please let us know.
PRs included
Release version 1.1.0 of the npm package.
1.0.7-4
Deployed fixes in #380
New features
@types/rdflib
anymore)Commit messages
Package name: rdflib
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs