search

mmboldori / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
https://owasp-juice.shop
MIT License
0 stars 0 forks source link

[Snyk] Upgrade unzipper from 0.9.15 to 0.10.11 #4

Open mmboldori opened 2 years ago

mmboldori commented 2 years ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade unzipper from 0.9.15 to 0.10.11.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **12 versions** ahead of your current version. - The recommended version was released **2 years ago**, on 2020-04-20.
Release notes
Package name: unzipper
  • 0.10.11 - 2020-04-20
  • 0.10.10 - 2020-02-28
  • 0.10.9 - 2020-02-21
  • 0.10.8 - 2020-02-06
  • 0.10.7 - 2020-01-22
  • 0.10.6 - 2020-01-22
  • 0.10.5 - 2019-09-08
  • 0.10.4 - 2019-08-22
  • 0.10.3 - 2019-08-06
  • 0.10.2 - 2019-08-01
  • 0.10.1 - 2019-06-17
  • 0.10.0 - 2019-06-01
    • fix extract, move to a duplex stream to handle events better
    • add extract method to Open
    • add crx options and parsing
    • in Open methods use central directory instead of the local file headers (mainly to determine compressedSize)
  • 0.9.15 - 2019-05-20
from unzipper GitHub release notes
Commit messages
Package name: unzipper
  • 724e71d Bump patch
  • b17543f Fixed extract when opts.path is '.' (dot) (#159)
  • 5fead2d Merge pull request #194 from alubbe/better-autodraining
  • c72c718 Verify that autodrain resolves after it has finished
  • 9e38162 bump patch
  • 210c85f Merge pull request #182 from jsnajdr/speedup-entry-buffer
  • 16868c3 BufferStream: improve performance by running concat only once at the end
  • d9a785a bump patch - async iterators working now
  • 4a178d8 Merge pull request #180 from alubbe/easier-async-iteration
  • 1666bc6 Add forceStream option
  • 1a0cbc7 Merge pull request #172 from mheggeseth/handle-promises
  • 37a3243 Merge pull request #173 from neverendingqs/patch-2
  • fd1636e readme- typo
  • 6e94b89 ensure promises are handled
  • 090cb91 Merge pull request #170 from ZJONSSON/npmignore
  • 9ae54fe Don't include coverage in npm package
  • e91734d HOTFIX: Fix pipecount (#169)
  • b0e3d93 Bump
  • 0d6cde7 Merge pull request #152 from ZJONSSON/graceful-fs
  • 955a5e3 Merge pull request #150 from ZJONSSON/filesizeknown
  • cf47b10 Merge pull request #151 from DanielHreben/master
  • 646dff0 Pass error to piped stream in centralDirectory
  • cffe38d Use graceful-fs for file operations
  • b6ebcd7 Only set the concurrency config if opts.concurrency is more than 1
Compare
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/mmboldori/project/cdf6dd02-46f7-4805-9b0f-f8f6aa5f2dfd?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/mmboldori/project/cdf6dd02-46f7-4805-9b0f-f8f6aa5f2dfd/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/mmboldori/project/cdf6dd02-46f7-4805-9b0f-f8f6aa5f2dfd/settings/integration?pkg=unzipper&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
sonarcloud[bot] commented 2 years ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication