search

killmenot / nodemailer-postmark-transport

Postmark transport for Nodemailer
MIT License
32 stars 12 forks source link

[Snyk] Security upgrade postmark from 4.0.2 to 4.0.5 #36

Closed killmenot closed 2 months ago

killmenot commented 2 months ago

snyk-top-banner

Snyk has created this PR to fix 5 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Server-side Request Forgery (SSRF)
SNYK-JS-AXIOS-7361793		   801  
high severity Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137		   686  
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-6444610		   646  
high severity Prototype Pollution
SNYK-JS-AXIOS-6144788		   589  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-AXIOS-6124857		   586  

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report 📜 Customise PR templates 🛠 Adjust project settings 📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS) 🦉 Prototype Pollution 🦉 Server-side Request Forgery (SSRF) 🦉 More lessons are available in Snyk Learn

coveralls commented 2 months ago

Coverage Status

coverage: 93.857%. remained the same when pulling ec5ac58873da5f503b98072b3cdd46c3ed858ad3 on snyk-fix-e47712f7a0fb8cd7c97472b285577594 into c2128aff7b6f1b22375e2dc83f89c098b04fa3ae on master.