jsbnr
commented
3 years ago Testing these changes in PR26
Closed snyk-bot closed 3 years ago
jsbnr
commented
3 years ago Testing these changes in PR26
jsbnr
commented
3 years ago This was updated inPR26
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-TRIM-1017038
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: react-markdown
The new version differs by 18 commits.- 45b9977 5.0.0
- eeea3c2 Update `changelog.md`
- 5d6c9f1 Refactor scripts
- d29478f Add type tests
- 4f5dbe2 Add note
- 7a5e3a1 Add `allowDangerousHtml`, preferred over `escapeHtml`
- 2675ae2 Remove docs on `source`
- 34b0883 Change default branch to `main`
- 22a5e49 Refactor and test for 100% coverage
- b3aa6e0 Rewrite readme for unified, more examples
- a9f163d Move demo to `website` branch
- 4f1a407 Change to clean project, update, refactor scripts
- ebebf51 Upgrade remark to version 8, unified to version 9
- e400f6f Upgrade to remark-parse@6
- 3260f57 Run tests on node 12
- 6eff8d1 Pass AST node to all non-tag/non-fragment renderers as prop
- ca25be1 Fix link to demo in readme
- 9b4eb84 Updated remark-parse github link (#447)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic