Closed snyk-bot closed 3 years ago
sonarcloud[bot]
commented
3 years ago Kudos, SonarCloud Quality Gate passed!
0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells
No Coverage information
No Duplication information
codecov[bot]
commented
3 years ago Merging #101 (3ef91cb) into master (202114b) will decrease coverage by
12.83%. The diff coverage isn/a.:exclamation: Current head 3ef91cb differs from pull request most recent head 9b59b35. Consider uploading reports for the commit 9b59b35 to get more accurate results
@@ Coverage Diff @@
## master #101 +/- ##
===========================================
- Coverage 98.57% 85.73% -12.84%
===========================================
Files 142 142
Lines 2394 2237 -157
Branches 447 395 -52
===========================================
- Hits 2360 1918 -442
+ Misses 32 25 -7
- Partials 2 294 +292 | Impacted Files | Coverage Δ | |
|---|---|---|
| bin/frameworks/string/roundColorValue.ts | 44.44% <0.00%> (-55.56%) |
:arrow_down: |
| bin/frameworks/string/normalizeUnits.ts | 47.05% <0.00%> (-52.95%) |
:arrow_down: |
| bin/entities/Token/logic/makeFontTokens.ts | 58.33% <0.00%> (-41.67%) |
:arrow_down: |
| bin/frameworks/string/getFigmaDocumentId.ts | 60.00% <0.00%> (-40.00%) |
:arrow_down: |
| bin/frameworks/filesystem/getDataHelpers.ts | 62.50% <0.00%> (-37.50%) |
:arrow_down: |
| ...ies/FigmagicElement/logic/parsers/updateParsing.ts | 62.50% <0.00%> (-37.50%) |
:arrow_down: |
| bin/frameworks/string/camelize.ts | 66.66% <0.00%> (-33.34%) |
:arrow_down: |
| bin/frameworks/string/roundNumber.ts | 66.66% <0.00%> (-33.34%) |
:arrow_down: |
| bin/frameworks/filesystem/getSvgFileData.ts | 66.66% <0.00%> (-33.34%) |
:arrow_down: |
| bin/entities/Token/logic/makeFontWeightTokens.ts | 69.23% <0.00%> (-30.77%) |
:arrow_down: |
| ... and 83 more |
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.7
SNYK-JS-NETMASK-1089716
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: snyk
The new version differs by 78 commits.- 8987918 Merge pull request #1781 from snyk/fix/replace-proxy
- eec11b7 test: raise timeout for snyk protect tests hitting real Snyk API
- 8045ceb test: update proxy tests for the new proxy global-agent
- 0d0c76a feat: support lowercase http_proxy envvars
- e597846 test(proxy): acceptance test for Proxy envvar settings
- 6d67579 fix: replace vulnerable proxy dependency
- 1449c57 Merge pull request #1707 from snyk/feat/snyk-fix
- 3d872fb test: assert exact errors for unsupported
- 5ebd685 Merge pull request #1777 from snyk/feat/fix-with-version-provenance
- 17e3431 Merge pull request #1778 from snyk/feat/dont-force-https
- fdd7f1a docs: update SNYK_HTTP_PROTOCOL_UPGRADE description
- 165b4b9 feat: introduce envvar to control HTTP-HTTPS upgrade behavior
- 77e6665 chore: lerna release with exact version
- f14819f Merge pull request #1760 from snyk/feat/support-critical-in-sarif
- b286418 feat: v1 support for previously fixed reqs.txt
- 0384020 feat: basic pip fix -r support
- f94c558 feat: include pins optionally
- 66ca77a feat: do not skip files with -r directive
- bc44f9a refactor: fix individual reqs manifest
- 6e84322 feat: fix individual file with provenance
- 9ed99f3 Merge pull request #1764 from snyk/feat/update-code-client
- c92599b Merge pull request #1774 from snyk/refactor/change-binaries-release-script
- ca508ac test: smoke test for `snyk fix`
- c68c7da feat: add @ snyk/fix as a dep
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic