search

sayak-sarkar / sayak-ci-demo

Testing GitHub Actions and CI
MIT License
0 stars 0 forks source link

[Snyk] Upgrade standard from 14.3.1 to 14.3.4 #48

Open snyk-bot opened 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade standard from 14.3.1 to 14.3.4.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-AJV-584908		 405/1000
Why? CVSS 8.1		 No Known Exploit
Prototype Pollution
SNYK-JS-MINIMIST-559764		 405/1000
Why? CVSS 8.1		 Proof of Concept
Prototype Pollution
SNYK-JS-MINIMIST-559764		 405/1000
Why? CVSS 8.1		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-GLOBPARENT-1016905		 405/1000
Why? CVSS 8.1		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: standard from standard GitHub release notes
Commit messages
Package name: standard
  • bf35e5f 14.3.4
  • 5b2af9c Merge pull request #1515 from Vrq/master
  • bca7bd2 Add SwissDev JS Jobs to users
  • 5040cff Merge pull request #1512 from iaurg/patch-1
  • 64c0486 Adjusting some typo errors in PT-BR Readme
  • c713105 Merge pull request #1510 from HCLonely/master
  • fc0ab4f Fix link cannot be positioned correctly
  • c93f3f3 Fix link cannot be positioned correctly
  • 8445fee Merge pull request #1506 from joshuagoran/patch-1
  • 0243b25 clarify constructor-super rule example
  • a9dad9e Merge pull request #1502 from standard/greenkeeper/eslint-config-standard-14.1.1
  • 282702b fix(package): update eslint-config-standard to version 14.1.1
  • 2a1d8d1 14.3.3
  • 33acaf9 Add changelog entry for 14.3.3
  • 37d8bb2 Don't run on Node.js versions less than 8.10.0 (#1496)
  • 8c0195d Fix missing link in changelog
  • 558df00 14.3.2
  • a8e318e Add changelog entry for 14.3.2
  • 133a4c9 Merge pull request #1492 from standard/eslint68
  • a2df23b Upgrade ESLint to 6.8.x
  • fb7e2a3 remove sponsor
  • ecda198 Update README.md
  • 4bc1671 Update README.md
  • e514626 add sponsor
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs