Closed ToshKoevoets closed 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-NUNJUCKS-1079083
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: nunjucks
The new version differs by 10 commits.- fd50090 Release v3.2.3
- d34fdbf Temporarily comment out codecov action
- cefad41 Replace README.md travis badge with github actions
- 7601ff4 Fixup github actions workflow file
- de9dc67 Add GitHub Workflow for tests. fixes #1333
- aa9e5b9 Fix prototype pollution security issue. fixes #1331
- f51afa3 Move chokidar to peerDependencies and make it optional via peerDependenciesMeta (#1329)
- f91f1c3 Fix `groupby` example formatting
- 7ef121c Add base and default args to int filter
- 0c02062 Use attribute getter for `sort` filter
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic