search

meeshkan / unmock-js

Fuzz test your REST API calls
https://unmock.io
93 stars 8 forks source link

[Snyk] Fix for 1 vulnerabilities #350

Closed snyk-bot closed 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With a Snyk patch:
Severity Issue
high severity Command Injection
SNYK-JS-TREEKILL-536781

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

πŸ›  Adjust project settings

πŸ“š Read more about Snyk's upgrade and patch logic

codecov-io commented 4 years ago

Codecov Report

Merging #350 into master will not change coverage. The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##           master     #350   +/-   ##
=======================================
  Coverage   80.67%   80.67%           
=======================================
  Files          51       51           
  Lines        2303     2303           
  Branches      571      571           
=======================================
  Hits         1858     1858           
  Misses        445      445

Continue to review full report at Codecov.

Legend - Click here to learn more Ξ” = absolute <relative> (impact), ΓΈ = not affected, ? = missing data Powered by Codecov. Last update 800b770...95aacef. Read the comment docs.

ksaaskil commented 4 years ago

This patches tree-kill used by concurrently, which is included as a dependency in unmock-server. It's however not used anywhere so I'll delete the dependency in https://github.com/unmock/unmock-js/pull/351 instead.