meanjs / mean

MEAN.JS - Full-Stack JavaScript Using MongoDB, Express, AngularJS, and Node.js -
http://meanjs.org
MIT License
4.87k stars 1.98k forks source link

[Snyk] Fix for 2 vulnerabilities #2033

Open snyk-bot opened 5 years ago

snyk-bot commented 5 years ago

Snyk has created this PR to fix one or more vulnerable packages in the npm dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Title Issue ID Breaking Change
high severity Arbitrary Code Execution SNYK-JS-HANDLEBARS-534478 Yes
high severity Prototype Pollution SNYK-JS-HANDLEBARS-534988 Yes

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic