search

isaced / appstore-connect-sdk

A TypeScript module for Node.js that interacts with the App Store Connect API, providing support for all APIs based on OpenAPI specification.
MIT License
25 stars 7 forks source link

[Snyk] Upgrade jose from 4.15.7 to 4.15.9 #23

Closed isaced closed 2 months ago

isaced commented 2 months ago

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade jose from 4.15.7 to 4.15.9.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **2 versions** ahead of your current version. - The recommended version was released on **21 days ago**.
Release notes
Package name: jose
  • 4.15.9 - 2024-07-03

    Fixes

    • add sideEffects:false to nested ESM package.json files (17eef5f)
  • 4.15.8 - 2024-07-03

    chore(release): 4.15.8

      </li>
  <li>
    <b>4.15.7</b> - <a href="https://github.com/panva/jose/releases/tag/v4.15.7">2024-06-18</a></br><h3>Fixes</h3>
    • add a workerd package.json target (e36d69e)
      </li>
</ul>
from <a href="https://github.com/panva/jose/releases">jose GitHub release notes</a>

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

socket-security[bot] commented 2 months ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/jose@4.15.9 network 0 549 kB panva

🚮 Removed packages: npm/jose@4.15.7

View full report↗︎