Open snyk-bot opened 3 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: π§ View latest project report
π Adjust project settings
π Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, CVSS 7.3
SNYK-JS-Y18N-1021887
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: sequelize-cli
The new version differs by 21 commits.- 1570c98 5.0.1
- f34fa20 change: update dependencies (#697)
- 31cd1ea 5.0.0
- dadf039 build: set target v6
- dcd39f8 changelog for v5.0.0
- 18b7af8 4.2.0
- e8a8fce changelog for v4.2.0
- e848c30 build: update dependencies
- 301cea3 ci: docker setup (#696)
- 4b5a0f7 fix(init): relative config path for windows (#648)
- 08c48bc fix(mode:generate): use force arg correctly (#691)
- 3e42116 4.1.1
- 822e7fc fix: sequelize directly imported (#685)
- df0254e docs: changelog v4.1
- cb8d4f6 4.1.0
- 1be019f fix(model:generate) attribute datatype validation (#682)
- 7eb9ef4 fix: add force flag to model:create (#680)
- 67b1fa3 docs: options-path (#672)
- 7160d00 use const in index.js (#661)
- 1c8983c change: use const for model definition (#643)
- 42296c2 remove(docs): section about Sequelize support
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Adjust project settings
π Read more about Snyk's upgrade and patch logic