Open snyk-bot opened 4 years ago
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
SNYK-JS-KINDOF-537849
Commit messages
Package name: sass-loader
The new version differs by 26 commits.- bcb06d5 chore(release): 7.2.0
- 6fc9d4e fix: prefer `sass`/`scss`/`css` extensions (#711)
- 28f1884 feat: allow customize `mainFields` and `extensions` (#710)
- 2a51502 fix: relax node engine (#708)
- 9e5a45d refactor: avoid `lodash.tail` (#707)
- e279f2a fix: better handle stdin in sources (#681)
- 9162e45 chore: deps update (#673)
- 69c6f91 docs: add source-map to style-loader (#661)
- 6c9654d feat: allow passing `functions` option as function (#651)
- 2d6045b test: support import index file from package (#649)
- aa64e1b feat: support `data` as `Function` (#648)
- a8709c9 feat: support `sass` field in `package.json` (#647)
- ff90dd6 feat: support auto resolving `dart-sass`
- f524223 fix: prefer `scss`, `sass` and `css` extensions in resolving (#645)
- 2adcca3 style: use prettier (#644)
- bc3b848 chore: migrate on defaults eslint config (#643)
- a80cdb1 ci: improve appveyor config (#642)
- f799569 chore: integrate lint-staged (#641)
- d56c0f8 chore: integrate commitlint (#640)
- 69dc5e5 chore: integrate github templates (#639)
- 5984a2c chore(deps): update (#638)
- 472d09a docs: rename `dart-sass` to `sass` (#624)
- a7bf7c0 docs(readme): add suggestion for `mini-css-extract-plugin` (#597)
- f4bdcfe test: upgrade webpack-dev-server (#605) (#606)
See the full diffPackage name: snyk
The new version differs by 133 commits.- 0082f91 Merge pull request #715 from snyk/fix/plugin-version-bumps
- b35d617 feat: better Python analysis, updated plugin interface
- 23a027e Merge pull request #718 from snyk/chore/new-docker-images
- 45ffd12 chore: install npm explicitly and rename java specific dockerfile
- 64e248e Merge pull request #719 from snyk/feat/fixed-in-info
- b28d01a feat: fixed in info on vulns
- 5ed139e feat: add a Dockerfile for maven 3.6.1, gradle 5.4 and support java11
- 9a95a78 Merge pull request #713 from snyk/fix/wording-and-spacing
- b081226 fix: spacing and wording
- d83cbdb chore: adjust american spelling for organization
- e24f277 Merge pull request #714 from snyk/feat/release-new-resolve-deps
- 90475ed feat: release refactored resolve-deps
- efecb07 Merge pull request #706 from snyk/feat/prune-test-graph
- 5a5caa2 Merge pull request #709 from snyk/fix/nuget-plugin-perf-improv
- bf5adb6 fix: upgrade nuget plugin for performance improvements
- 82e7ca6 feat: special error for too many vuln paths
- 842ef7f feat: move prune logic in separate file
- f0e51f2 feat: prune graph on test if asked
- 351dc7f Merge pull request #696 from snyk/feat/actionable-remediation-ui-behind-ff
- 425865e Merge pull request #707 from snyk/feat/bump-snyk-mvn-plugin
- ab7534e feat: bump snyk-mvn-plugin to v2.3.3
- 3803df8 feat: Render the actionable advice via new formatter
- e9e7517 Merge pull request #705 from snyk/feat/cyclic-graph-label
- aa74005 feat: bump graph lib to use cyclic labels
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic