search

noqcks / pull-request-size

Applies labels to Pull Requests based on the total lines of code changed.
https://github.com/marketplace/pull-request-size
MIT License
157 stars 40 forks source link

[Snyk] Upgrade probot from 12.3.1 to 12.3.4 #151

Closed noqcks closed 3 months ago

noqcks commented 4 months ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade probot from 12.3.1 to 12.3.4.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **3 versions** ahead of your current version. - The recommended version was released **22 days ago**, on 2024-05-01. The recommended version fixes: Severity | Issue | PriorityScore (\*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Improper Handling of Exceptional Conditions
[SNYK-JS-OCTOKITWEBHOOKS-6129527](/SNYK-JS-OCTOKITWEBHOOKS-6129527) | **410/1000**
**Why?** CVSS 8.2 | No Known Exploit | Improper Handling of Exceptional Conditions
[SNYK-JS-PROBOT-6129524](/SNYK-JS-PROBOT-6129524) | **410/1000**
**Why?** CVSS 8.2 | No Known Exploit (\*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: probot
  • 12.3.4 - 2024-05-01

    12.3.4 (2024-05-01)

    Bug Fixes

  • 12.3.3 - 2023-11-15
  • 12.3.2 - 2023-11-14
  • 12.3.1 - 2023-06-14
from probot GitHub release notes
Commit messages
Package name: probot
  • 3dcb058 fix(probot): passes logger to webhooks (#2010)
  • 5f0ca04 test: fix failing tests (#1917)
  • 02d81f8 fix(deps): `@ octokit/webhooks` security update (#1911)
  • fc6886d fix: Fix async main function type (#1672)
  • 76f3376 docs: Fix 404 links (#1678)
  • c1f0767 docs: Fix previous/next button (#1898)
Compare
**Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs._ For more information: 🧐 [View latest project report](https://app.snyk.io/org/benji-or7/project/160be9c9-3a12-4b96-8b92-7d2a121c9c1a?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/benji-or7/project/160be9c9-3a12-4b96-8b92-7d2a121c9c1a/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/benji-or7/project/160be9c9-3a12-4b96-8b92-7d2a121c9c1a/settings/integration?pkg=probot&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades) **Note:** _This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our [documentation.](https://docs.snyk.io/scan-using-snyk/snyk-open-source/automatic-and-manual-prs-with-snyk-open-source/customize-pr-templates-closed-beta)_
socket-security[bot] commented 4 months ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/probot@12.3.4 environment, filesystem, shell Transitive: eval, network, unsafe +233 27.2 MB probotbot

🚮 Removed packages: npm/probot@12.3.1

View full report↗︎

codecov[bot] commented 4 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 88.67%. Comparing base (162fe2f) to head (c75c7fa).

Additional details and impacted files ```diff @@ Coverage Diff @@ ## master #151 +/- ## ======================================= Coverage 88.67% 88.67% ======================================= Files 8 8 Lines 256 256 Branches 33 33 ======================================= Hits 227 227 Misses 27 27 Partials 2 2 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.