snyk / nodejs-lockfile-parser

Generate a Snyk dependency tree from package-lock.json or yarn.lock file
Other
60 stars 28 forks source link

[Snyk] Fix for 1 vulnerable dependencies #42

Closed snyk-bot closed 5 years ago

snyk-bot commented 5 years ago

Description

This PR fixes one or more vulnerable packages in the npm dependencies of this project. See the Snyk test report for more details.

Snyk Project: snyk/nodejs-lockfile-parser:package.json

Snyk Organization: Snyk

Changes included in this PR

Vulnerabilities that will be fixed

With a Snyk patch:

You can read more about Snyk's upgrade and patch logic in Snyk's documentation.

Check the changes in this PR to ensure they won't cause issues with your project.

Stay secure, The Snyk team

Note: You are seeing this because you or someone else with access to this repository has authorised Snyk to open Fix PRs. To review the settings for this Snyk project please go to the project settings page.

CLAassistant commented 5 years ago

CLA assistant check
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.


snyk-test seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
You have signed the CLA already but the status is still pending? Let us recheck it.