Snyk has created this PR to upgrade realm-web from 2.0.0 to 2.0.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 1 version ahead of your current version.
The recommended version was released on 22 days ago.
This version communicates with Atlas Device Services through a different URL (https://services.cloud.mongodb.com). While we consider this an internal detail of the SDK, you might need to update rules in firewalls or other configuration that you've used to limit connections made by your app.
Fixed
Fixed an endless loop of requests that would happen if linking credentials failed due to an authentication failure. (#6588, since v0.6.0)
Logging in with Credentials.anonymous() credentials will now reuse any existing anonymous user which is already authenticated with the app. This aligns with the behaviour of the realm package and will result in less users being created. Use Credentials.anonymous(false) to disable this behaviour and achieve the old behaviour of creating new anonymous users on every login. (#6592)
Fixed crash in Chrome from calling stream.return() on a watch stream. (PR #6688)
Snyk has created this PR to upgrade realm-web from 2.0.0 to 2.0.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 1 version ahead of your current version.
The recommended version was released on 22 days ago.
Issues fixed by the recommended upgrade:
SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555
SNYK-JS-WS-7266574
SNYK-JS-WS-7266574
SNYK-JS-BRACES-6838727
SNYK-JS-MICROMATCH-6838728
SNYK-JS-EJS-6689533
SNYK-JS-EXPRESS-6474509
SNYK-JS-FOLLOWREDIRECTS-6444610
SNYK-JS-GRPCGRPCJS-7242922
Release notes
Package name: realm-web
Note
This version communicates with Atlas Device Services through a different URL (https://services.cloud.mongodb.com). While we consider this an internal detail of the SDK, you might need to update rules in firewalls or other configuration that you've used to limit connections made by your app.
Fixed
Credentials.anonymous()
credentials will now reuse any existing anonymous user which is already authenticated with the app. This aligns with the behaviour of therealm
package and will result in less users being created. UseCredentials.anonymous(false)
to disable this behaviour and achieve the old behaviour of creating new anonymous users on every login. (#6592)stream.return()
on a watch stream. (PR #6688)Internal
_stitch_
prefixed values when parsing the querystring response from an OAuth2 redirection. (#6659)Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: