Closed rajivshah3 closed 3 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: π§ View latest project report
π Adjust project settings
π Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 5.9
SNYK-JS-AXIOS-1038255
Why? Proof of Concept exploit, Has a fix available, CVSS 6.2
SNYK-JS-GITPROMISE-567476
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: react-static
The new version differs by 21 commits.- 58cf1c6 v7.5.0
- e0df213 Lint and format
- 60afd0c Bump the version in the CHANGELOG
- c3f735d Upgrade react-helmet to 6.1.0 (#1531)
- 810ebe5 Update fork-ts-checker-webpack-plugin to latest version (#1540)
- 8046a27 Move react to peerDependency for more lenient version control (#1560)
- 3bd95cc Bump axios from 0.19.0 to 0.21.1 (#1562)
- f14ad38 Make getComponentForPath properly return 404 page when route is invalid and 404 page exists (#1557)
- c912e46 [docs] Update Material UI guide for MUI v4 (#1551)
- e7db9cd Allow configuring hreflang links to sitemap (#1539)
- efaedb1 fix: console error behaviour with no arguments (#1509)
- 1afb37f Add frontmatter support to the MDX plugin (#1533)
- 85653ca Update extract-css-chunks-webpack-plugin options for hot-reload (#1505)
- 6b638bd Fix basepath configuration for React Router. (#1520)
- 76e70f1 Fix mismatched chunk names (#1518)
- 9a4a4ea fix: Bump git-promise to 1.0.0 (#1522)
- 3793552 Move out Suspense to a separate file (#1500)
- f93fa58 fix: expand styled-component peer dep range (#1473)
- 2bc9ba2 Update preact plugin (#1486)
- b9aace6 Remove @ types/react-hot-loader from TypeScript template (#1485)
- ab2c509 docs(styled-components): Fix project link (#1464)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Adjust project settings
π Read more about Snyk's upgrade and patch logic