[Snyk] Upgrade apollo-server-express from 2.3.3 to 2.25.3 - Githubissues

raindigi / GraphqlType-API-Registration

Graphql Tutorial Example with typeORM for building a scalable Back-End API and caches management

MIT License

1 stars 1 forks source link

[Snyk] Upgrade apollo-server-express from 2.3.3 to 2.25.3 #153

Open snyk-bot opened 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to upgrade apollo-server-express from 2.3.3 to 2.25.3.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 172 versions ahead of your current version.
The recommended version was released 6 months ago, on 2021-11-04.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-OBJECTPATH-1585658	376/1000 Why? CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-OBJECTPATH-1017036	376/1000 Why? CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	376/1000 Why? CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	376/1000 Why? CVSS 7.3	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	376/1000 Why? CVSS 7.3	Proof of Concept
	Information Exposure SNYK-JS-APOLLOSERVERCORE-571663	376/1000 Why? CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	376/1000 Why? CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	376/1000 Why? CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-OBJECTPATH-1569453	376/1000 Why? CVSS 7.3	No Known Exploit
	Denial of Service SNYK-JS-NODEFETCH-674311	376/1000 Why? CVSS 7.3	No Known Exploit
	Information Exposure SNYK-JS-NODEFETCH-2342118	376/1000 Why? CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	376/1000 Why? CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: apollo-server-express

2.25.3 - 2021-11-04
2.25.2 - 2021-06-22
2.25.1 - 2021-06-08
2.25.0 - 2021-05-27
2.25.0-alpha.1 - 2021-05-27
2.25.0-alpha.0 - 2021-05-26
2.24.1 - 2021-05-18
2.24.0 - 2021-04-30
2.24.0-alpha.2 - 2021-04-30
2.24.0-alpha.1 - 2021-04-29
2.24.0-alpha.0 - 2021-04-28
2.23.1-unified2.3 - 2021-04-27
2.23.1-unified2.2 - 2021-04-27
2.23.1-unified2.1 - 2021-04-23
2.23.1-unified2.0 - 2021-04-22
2.23.1-unified.2 - 2021-04-22
2.23.1-unified.0 - 2021-04-22
2.23.0 - 2021-04-14
2.23.0-alpha.1 - 2021-04-09
2.23.0-alpha.0 - 2021-04-09
2.22.2 - 2021-03-29
2.22.2-alpha.0 - 2021-03-29
2.22.1 - 2021-03-26
2.22.0 - 2021-03-26
2.22.0-alpha.0 - 2021-03-22
2.21.2 - 2021-03-18
2.21.2-alpha.0 - 2021-03-16
2.21.1 - 2021-03-08
2.21.1-alpha.0 - 2021-03-06
2.21.0 - 2021-02-12
2.21.0-alpha.2 - 2021-02-11
2.21.0-alpha.1 - 2021-02-11
2.21.0-alpha.0 - 2021-02-11
2.20.0 - 2021-02-09
2.20.0-alpha.0 - 2021-02-09
2.19.2 - 2021-01-14
2.19.1 - 2020-12-22
2.19.0 - 2020-10-30
2.19.0-alpha.1 - 2020-10-19
2.19.0-alpha.0 - 2020-10-05
2.18.2 - 2020-10-05
2.18.1 - 2020-09-24
2.18.0 - 2020-09-22
2.18.0-rc.1 - 2020-09-21
2.18.0-rc.0 - 2020-09-18
2.17.1-alpha.0 - 2020-09-03
2.17.0 - 2020-08-27
2.16.1 - 2020-07-27
2.16.0 - 2020-07-17
2.15.1 - 2020-06-30
2.15.0 - 2020-06-17
2.15.0-alpha.1 - 2020-06-17
2.15.0-alpha.0 - 2020-06-16
2.14.5 - 2020-06-16
2.14.4 - 2020-06-12
2.14.3 - 2020-06-08
2.14.2 - 2020-06-04
2.14.1 - 2020-05-28
2.14.0 - 2020-05-27
2.14.0-alpha.2 - 2020-05-20
2.14.0-alpha.1 - 2020-05-19
2.14.0-alpha.0 - 2020-05-13
2.13.1 - 2020-05-11
2.13.1-alpha.1 - 2020-05-11
2.13.1-alpha.0 - 2020-05-08
2.13.0 - 2020-05-04
2.13.0-alpha.1 - 2020-04-23
2.13.0-alpha.0 - 2020-04-10
2.12.0 - 2020-04-07
2.12.0-alpha.5 - 2020-04-02
2.12.0-alpha.4 - 2020-03-26
2.12.0-alpha.3 - 2020-03-26
2.12.0-alpha.2 - 2020-03-23
2.12.0-alpha.1 - 2020-03-18
2.12.0-alpha.0 - 2020-03-16
2.11.0 - 2020-03-03
2.11.0-alpha.3 - 2020-02-25
2.11.0-alpha.2 - 2020-02-25
2.11.0-alpha.1 - 2020-02-24
2.10.1 - 2020-02-14
2.10.0 - 2020-02-06
2.9.16 - 2020-01-09
2.9.15 - 2019-12-27
2.9.14 - 2019-12-17
2.9.13 - 2019-12-05
2.9.12 - 2019-11-21
2.9.11 - 2019-11-20
2.9.10 - 2019-11-20
2.9.9 - 2019-11-13
2.9.8 - 2019-11-12
2.9.7 - 2019-10-21
2.9.6 - 2019-10-10
2.9.5 - 2019-10-04
2.9.4 - 2019-09-24
2.9.3 - 2019-09-01
2.9.2 - 2019-08-30
2.9.1 - 2019-08-28
2.9.0 - 2019-08-23
2.8.2 - 2019-08-20
2.8.1 - 2019-07-31
2.8.0 - 2019-07-29
2.7.2 - 2019-07-26
2.7.1 - 2019-07-25
2.7.0 - 2019-07-16
2.7.0-alpha.14 - 2019-07-16
2.7.0-alpha.13 - 2019-07-15
2.7.0-alpha.12 - 2019-07-15
2.7.0-alpha.9 - 2019-07-13
2.7.0-alpha.8 - 2019-07-05
2.7.0-alpha.7 - 2019-07-05
2.7.0-alpha.6 - 2019-07-04
2.7.0-alpha.5 - 2019-07-04
2.7.0-alpha.4 - 2019-07-03
2.7.0-alpha.3 - 2019-07-01
2.7.0-alpha.2 - 2019-06-30
2.7.0-alpha.1 - 2019-06-27
2.7.0-alpha.0 - 2019-06-27
2.6.9 - 2019-07-11
2.6.8 - 2019-07-09
2.6.7 - 2019-06-26
2.6.7-alpha.0 - 2019-06-25
2.6.6 - 2019-06-25
2.6.5 - 2019-06-25
2.6.5-alpha.0 - 2019-06-21
2.6.4 - 2019-06-20
2.6.3 - 2019-06-12
2.6.2 - 2019-06-06
2.6.2-alpha.0 - 2019-06-06
2.6.1 - 2019-05-31
2.6.1-alpha.0 - 2019-05-31
2.6.0 - 2019-05-31
2.6.0-rc.0 - 2019-05-30
2.6.0-alpha.9 - 2019-05-30
2.6.0-alpha.8 - 2019-05-28
2.6.0-alpha.7 - 2019-05-27
2.6.0-alpha.6 - 2019-05-24
2.6.0-alpha.5 - 2019-05-23
2.6.0-alpha.4 - 2019-05-23
2.6.0-alpha.3 - 2019-05-22
2.6.0-alpha.2 - 2019-05-22
2.6.0-alpha.1 - 2019-05-22
2.6.0-alpha.0 - 2019-05-13
2.5.1 - 2019-05-30
2.5.1-alpha.15 - 2019-05-10
2.5.1-alpha.14 - 2019-05-10
2.5.1-alpha.1 - 2019-05-30
2.5.1-alpha.0 - 2019-05-30
2.5.0 - 2019-05-07
2.5.0-rc.0 - 2019-04-30
2.5.0-alpha.7 - 2019-04-25
2.5.0-alpha.6 - 2019-04-14
2.5.0-alpha.5 - 2019-04-12
2.5.0-alpha.4 - 2019-04-05
2.5.0-alpha.3 - 2019-04-05
2.5.0-alpha.2 - 2019-04-05
2.5.0-alpha.1 - 2019-03-26
2.5.0-alpha.0 - 2019-03-22
2.4.8 - 2019-02-26
2.4.7 - 2019-02-26
2.4.6 - 2019-02-22
2.4.5 - 2019-02-21
2.4.4 - 2019-02-21
2.4.3 - 2019-02-20
2.4.2 - 2019-02-14
2.4.2-rc.0 - 2019-02-14
2.4.1 - 2019-02-12
2.4.0 - 2019-02-07
2.4.0-alpha.4 - 2019-02-07
2.4.0-alpha.3 - 2019-01-23
2.4.0-alpha.2 - 2019-01-23
2.4.0-alpha.1 - 2019-01-16
2.4.0-alpha.0 - 2018-12-18
2.3.3 - 2019-01-29

from apollo-server-express GitHub release notes

Commit messages

Package name: apollo-server-express

a725306 Release
5069bd8 apollo-server-core: update GraphQL Playground React app
378cce6 Merge pull request #5022 from apollographql/sb/custom-directive-edits
851cdba Update v2 codesandbox links (#5520)
18ec8e8 docs(fix typo: saem -> same) (#5474)
a121f86 Revert "Add 3.0 release notice to 2.0 docs (#5443)"
4ccdae0 Release
6f894bb Mess around more with package-lock until it's happy
08c92eb Support graphql@15 in operation registry plugin (#5445)
43f3b5b Clean package-lock.json (#5446)
06151ad Add 3.0 release notice to 2.0 docs (#5443)
e456b41 renovate config: group non-major dependencies
c0bc794 Add AS3 preview docs to nav (#5164)
0922120 Updating blog post link (#5392)
eefa7c2 Merge pull request #5380 from apollographql/sb/gatsby-theme
c926472 Bump docs theme version
6a99e90 Merge pull request #5368 from hamstu/patch-1
35e0de6 docs: fix small typo
70a4312 Release
e719b78 CHANGELOG: 2.25.2
dc8693f Update Express types files, allow further upgrades (#5352)
6b9c2a0 docs: correct link to GraphQLResolveInfo details (#5332)
78ab403 Renovate: note disallowed major version bumps
c7bb352 Renovate: disable circleci manager

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

stale[bot] commented 2 years ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.