Closed snyk-bot closed 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
This change is
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 3.7
SNYK-JS-TAR-1536758
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: better-sqlite-pool
The new version differs by 20 commits.- 4f5633f update author info
- 2c7f338 Delete .travis.yml
- a85b5ef Create node.js.yml
- eb59052 fix connection for better-slite3 v7+
- df42d50 Merge pull request #10 from hyurl/dependabot/npm_and_yarn/bl-4.0.3
- f9b3148 Merge pull request #11 from hyurl/dependabot/npm_and_yarn/ini-1.3.8
- 1cdb50f Merge pull request #12 from hyurl/dependabot/npm_and_yarn/lodash-4.17.21
- 3fb3e72 Merge pull request #13 from nnoodle/patch-1
- 2903fb4 Update better-sqlite3
- 5727b55 Bump lodash from 4.17.15 to 4.17.21
- 5e20410 Bump ini from 1.3.5 to 1.3.8
- e1d1d14 Bump bl from 4.0.2 to 4.0.3
- d18ab72 upgrade better-sqlite3 to 6.x
- 1d752d9 update version number
- d5e8c78 use more friendly variable/property names
- 0f30c15 Merge pull request #6 from ekowahyudin/master
- 192ebe7 test onConnectionCreated
- 9a63a3d update version
- 6882253 do not close connection when used
- 26ee48e Add onConnectionCreated Event
See the full diffPackage name: node-gyp
The new version differs by 48 commits.- 33affe2 v7.0.0: bump version and update changelog
- ba4f34b doc: update catalina xcode clt download link
- f7bfce9 doc: update acid test and introduce curl|bash test script
- 4937722 deps: replace mkdirp with {recursive} mkdir
- a6b76a8 gyp: update gyp to 0.2.1
- e529f33 doc: update README to reflect upgrade to gyp-next
- ebc34ec gyp: update gyp to 0.2.0
- 9aed628 doc: give more attention to Catalina issues doc
- 963f2a7 doc: improve cataline discoverability for search engines
- d45438a deps: update deps, match to npm@7
- 5f47b7a v5.1.1: bump version and update changelog
- c255ffb lib: drop "-2" flag for "py.exe" launcher
- 741ab09 test: remove support for EOL versions of Node.js
- 6356117 doc, bin: stop suggesting opening node-gyp issues
- 7b75af3 doc: add macOS Catalina software update info
- 4f23c7b doc: update link to the code of conduct (#2073)
- 473cfa2 doc: note in README that Python 3.8 is supported (#2072)
- e18a61a build: shrink bloated addon binaries on windows
- ca86ef2 test: bump actions/checkout from v1 to v2
- e7402b4 doc: update catalina xcode cli tools download link (#2044)
- 972780b gyp: sync code base with nodejs repo (#1975)
- dab0305 v5.1.0: bump version and update changelog
- 35de459 doc: update catalina xcode cli tools download link; formatting
- 4864219 doc: add download link for Command Line Tools for Xcode
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
This change is