Closed svcsnyksanity closed 2 months ago
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/react@18.3.1 | environment | +2 |
339 kB | react-bot |
npm/sanity@3.35.0 | network Transitive: environment, eval, filesystem, shell, unsafe | +760 |
607 MB | ricokahler |
npm/styled-components@6.1.0 | environment Transitive: filesystem | +16 |
3.69 MB | probablyup |
๐ฎ Removed packages: npm/react@18.2.0), npm/sanity@3.1.4), npm/styled-components@5.3.6)
Snyk has created this PR to fix 11 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.json
package-lock.json
Vulnerabilities that will be fixed with an upgrade:
SNYK-JS-BABELTRAVERSE-5962462
SNYK-JS-BRACES-6838727
SNYK-JS-SEMVER-3247795
SNYK-JS-VITE-5664718
SNYK-JS-VITE-6182924
SNYK-JS-FOLLOWREDIRECTS-6141137
SNYK-JS-FOLLOWREDIRECTS-6444610
SNYK-JS-TOUGHCOOKIE-5672873
SNYK-JS-VITE-6531286
SNYK-JS-WORDWRAP-3149973
SNYK-JS-POSTCSS-5926692
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: ๐ง View latest project report ๐ Customise PR templates ๐ Adjust project settings ๐ Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
๐ฆ Uncontrolled resource consumption ๐ฆ Improper Input Validation ๐ฆ Prototype Pollution ๐ฆ More lessons are available in Snyk Learn