search

paixaop / node-sodium

Port of the lib sodium encryption library to Node.js
MIT License
351 stars 126 forks source link

[Snyk] Upgrade node-addon-api from 1.6.1 to 1.7.2 #179

Open snyk-bot opened 1 year ago

snyk-bot commented 1 year ago

Snyk has created this PR to upgrade node-addon-api from 1.6.1 to 1.7.2.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Remote Memory Exposure
SNYK-JS-NODEADDONAPI-571001		 494/1000
Why? Has a fix available, CVSS 5.6		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: node-addon-api
  • 1.7.2 - 2020-06-02
  • 1.7.1 - 2019-07-23
  • 1.7.0 - 2019-07-23
  • 1.6.3 - 2019-04-03
  • 1.6.2 - 2018-11-29
  • 1.6.1 - 2018-11-14
from node-addon-api GitHub release notes
Commit messages
Package name: node-addon-api
  • 74a09c7 Prepare version 1.7.2.
  • 801bd06 napi: fix memory corruption vulnerability
  • 5a7f8b2 Prepare release 1.7.1
  • c20bcbd Merge pull request #518 from NickNaso/master
  • 6720d57 Create the native threadsafe_function for test only for N-API greater than 3.
  • 37b6c18 Fix compilation breakage on 1.7.0
  • 0a1380c Prepare release 1.7.0
  • 717c9ab AsyncWorker: add GetResult() method
  • d9d991b doc: add ThreadSafeFunction to main README (#513)
  • ac6000d doc: fix minor typo
  • e9fa1ea doc: document ThreadSafeFunction (#494)
  • cab3b1e doc: ClassPropertyDescriptor example
  • c32d7db macros: create errors fully namespaced
  • 0a90df2 Implement ThreadSafeFunction class
  • 1fb540e Use curly brackets to include node_api.h
  • b2b0812 AsyncWorker: make callback optional
  • a0cac77 Added test for bool operator
  • ab7d8fc src: fix objectwrap test case
  • 3b6b9eb AsyncWorker: introduce Destroy() method
  • f633fbd string.md: Document existing New(env, value, length) APIs
  • aaea55e Little fix on code example
  • e1cf9a3 Use `Value::IsEmpty` to check for empty value
  • 3ad5dfc Fix link
  • a3b4d99 doc: Add contribution philosophy doc
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs