search

newrelic / nr1-slo-r

NR1 SLO-R allows you to define, calculate and report on service-level objective (SLO) attainment.
https://discuss.newrelic.com/t/track-your-service-level-objectives-with-the-slo-r-nerdpack/90046
Apache License 2.0
21 stars 21 forks source link

[Snyk] Upgrade yup from 0.27.0 to 0.32.11 #186

Open snyk-bot opened 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to upgrade yup from 0.27.0 to 0.32.11.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-YUP-2420835		 601/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.6		 Proof of Concept
Prototype Pollution
SNYK-JS-PROPERTYEXPR-598800		 601/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.6		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: yup
  • 0.32.11 - 2021-10-12

    v0.32.11

  • 0.32.10 - 2021-10-11

    v0.32.10

  • 0.32.9 - 2021-02-17

    v0.32.9

  • 0.32.8 - 2020-12-10

    0.32.8

  • 0.32.7 - 2020-12-10

    0.32.7

  • 0.32.6 - 2020-12-08

    v0.32.6

  • 0.32.5 - 2020-12-07

    v0.32.5

  • 0.32.4 - 2020-12-07
  • 0.32.3 - 2020-12-07
  • 0.32.2 - 2020-12-07
  • 0.32.1 - 2020-12-04
  • 0.32.0 - 2020-12-03
  • 0.31.1 - 2020-12-01
  • 0.31.0 - 2020-11-23
  • 0.30.0 - 2020-11-19
  • 0.29.3 - 2020-08-04
  • 0.29.2 - 2020-07-27
  • 0.29.1 - 2020-05-27
  • 0.29.0 - 2020-05-19
  • 0.28.5 - 2020-04-30
  • 0.28.4 - 2020-04-20
  • 0.28.3 - 2020-03-06
  • 0.28.2 - 2020-03-05
  • 0.28.1 - 2020-01-28
  • 0.28.0 - 2019-12-16
  • 0.27.0 - 2019-03-14
from yup GitHub release notes
Commit messages
Package name: yup
  • d072af3 Publish v0.32.11
  • 2015c0f fix: dep ranges
  • 846161e Publish v0.32.10
  • 1d767b4 chore: fix ts compilation
  • 2778b88 Merge pull request #1483 from jquense/bug-bash
  • 4bdc4e4 chore: bump deps and clean up tooling
  • 5334349 fix: carry over excluded edges when concating objects
  • f3056f2 fix: missing transforms on concat
  • 03584f6 feat: add resolved to params (#1437)
  • 7842afb fix: oneOf, notOneOf swallowing multiple errors (#1434)
  • 7576cd8 feat: add types to setLocale (#1427)
  • eab974f Update typescript.md
  • 877f777 chore(deps): update dependency lint-staged to v11 (#1359)
  • 94cfd11 feat: allows custom types to be passed to avoid cast to ObjectSchema (#1358)
  • 70d0b67 fix: update lodash/lodash-es to fix CVEs flagged in 4.17.20 (#1334)
  • acbb8b4 fix(utils): use named functions for default exports (#1329)
  • 5eda549 fix: prevent unhandled Promise rejection when returning rejected Promise inside test function (#1327)
  • 91ace1e fix: SchemaOf<>'s treatment of Date objects. (#1305)
  • 0fca0a4 docs: clarify wording
  • 4c17508 fix: fix the typo for the array length validation (#1287)
  • bbd44d0 chore(deps): update dependency husky to v5 (#1251)
  • 357ffa4 docs: Fix typo (#1272)
  • 4a0870c Publish v0.32.9
  • 1aba3b8 chore: clean up
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

CLAassistant commented 2 years ago

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.