Closed snyk-bot closed 3 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 9.4
SNYK-JS-SANITIZEHTML-585892
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: sanitize-html
The new version differs by 56 commits.- ca28bcd Merge pull request #419 from apostrophecms/v2
- 432e994 migrates srcset update
- 6f79315 Fixes merge conflicts
- deed33b Updates version number and catches changelog up for 2.0.0 (#418)
- 3c7f93f Updates eslint config and fixes warnings (#416)
- 90588d9 Merge pull request #413 from TrySound/upgrade-postcss
- 78bda11 Capitalize Node
- 483888d Merge pull request #414 from apostrophecms/nesting-limit
- 9301cc8 clearer language?
- 5d15534 Merge pull request #415 from apostrophecms/2/import-readme
- 14d0b52 Updates README import language
- af58449 Merge pull request #412 from SiddAjmera/patch-1
- 22bb2a8 nestingLimit option
- 66a1c87 Upgrade postcss
- 3d267e6 Update README.md
- e978b5f Merge pull request #411 from TrySound/upgrade-is-plain-object
- fd18161 Upgrade changelog
- 5f62d16 Upgrade is-plain-object
- 51fdefb Merge pull request #409 from apostrophecms/use-existing-has-function
- 5dbc0ab changelog and package.json
- d5abe66 use existing has function, less code
- 056481f 2.0.0 rc.1 version and changelog update (#407)
- 4550160 Merge pull request #402 from TrySound/upgrade-klona
- 343190e Replaces another usage of includes (#404)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic