Open snyk-bot opened 1 year ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Open Redirect
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Has a fix available, CVSS 5.4
SNYK-JS-GOT-2932019
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: netlify-cli
The new version differs by 250 commits.- b44eb25 chore(main): release 12.11.0 (#5435)
- 0c781d6 fix(deps): update netlify packages (#5457)
- 8d01056 chore(deps): update dependency strip-ansi to v7 (#5423)
- ec16aac fix(deps): update dependency tempy to v3 (#5389)
- 055055a chore(deps): update node-version-alias to v2.0.0 (#5450)
- 81e7cc1 fix(deps): update dependency node-fetch to v2.6.9 (#5452)
- fc01b72 fix(deps): update dependency @ fastify/static to v6.8.0 (#5455)
- d9b54d9 fix(deps): update dependency typescript to v4.9.5 (#5453)
- 6297f84 chore(deps): update dependency vite to v4.1.1 (#5454)
- d595d5f chore(deps): update vitest monorepo to v0.28.4 (#5451)
- 0929141 fix: print deploy error_message, if exists (#5447)
- cec55d1 fix(deps): update netlify packages (#5446)
- 6cee5bc feat: show displayName for any function that has one being run with ntl dev (#5444)
- cd9ebf8 fix(deps): update dependency @ netlify/zip-it-and-ship-it to ^8.5.0 (#5445)
- d936220 chore(deps): bump ua-parser-js from 0.7.31 to 0.7.33 in /site (#5432)
- 159c7c8 chore(deps): update vitest monorepo to ^0.28.0 (#5443)
- 3768f87 fix(deps): update dependency @ netlify/zip-it-and-ship-it to ^8.4.2 (#5442)
- 5eff7c1 fix: update got & remove outdated workaround (#5437)
- 78a1932 fix(deps): update dependency content-type to v1.0.5 (#5440)
- 68caa51 fix(deps): update dependency axios to v1.2.6 (#5439)
- 21f413c chore(deps): update dependency verdaccio to v5.20.1 (#5441)
- 8fe8339 fix: return empty array if manifest doesnt have functions defined (#5434)
- 83a81b1 chore(main): release 12.10.0 (#5430)
- 63d415b feat: send functions_config during deploy (#5428)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Open Redirect