protoEvangelion / portfolio

Gatsby blog + portfolio
https://iamrhino.com
2 stars 2 forks source link

[Snyk] Security upgrade gatsby from 2.18.6 to 2.18.10 #121

Closed snyk-bot closed 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

✨What is Merge Advice? We check thousands of dependency upgrade pull requests and CI tests every day to see which upgrades were successfully merged. After crunching this data, we give a recommendation on how safe we think the change is for you to merge without causing issues. Learn more, and share your feedback to help improve this feature. 🙏

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity Arbitrary Code Injection
SNYK-JS-SERIALIZEJAVASCRIPT-570062
No Proof of Concept
Commit messages
Package name: gatsby The new version differs by 64 commits.
  • a9e4046 chore(release): Publish
  • 45c78b6 chore(release): Publish
  • b05ff0a chore(showcase): Add 8fit.com to sites.yml (#20032)
  • a8457f1 Revert "feat(gatsby): use embedded remote schemas (#19504)" (#20035)
  • 43949c4 Add the "Documentation" tag to React website (#20033)
  • 010cd6d chore: update minor updates in packages (#19908)
  • 222ef00 Update yarn.lock (#20031)
  • 07e4b11 Add config for gatsby-transformer-remark (#18753)
  • e997f4a Update docs unit testing typescript (#19023)
  • a898a77 feat(gatsby): support nullish coalescing operator in gatsby (#20010)
  • 9227977 chore(deps): bump terser-webpack-plugin to v.1.4.2 (#20014)
  • 6b67d30 Moves responsive image CSS back into attribute (#19888)
  • 91bed4c chore(showcase): Remove unionpluscard.com (#20012)
  • d001f10 chore(showcase): Remove Smoopit (#20013)
  • 330c395 chore(showcase): Add samirmujanovic.com portfolio (#19987)
  • ecca824 chore(docs): Update the "Gatsby on Linux" page (#18263)
  • c732247 refactor(gatsby): Introduce built-in GraphQL types (#19951)
  • 0e9553e chore(release): Publish
  • cfd4782 chore(showcase): add Bearer.sh (#20011)
  • 35035af chore: lint all shell scripts (#19991)
  • 588eaf7 feat(gatsby): use embedded remote schemas (#19504)
  • 06e650d fix(gatsby-theme-blog): Fix home-footer in Night mode (#19977)
  • 3a90f78 chore(showcase): Updated screenshot URL for Gearbox (#19989)
  • e9c91fa chore(starters): add gatsby-starter-keturah (#19998)
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic