sonarcloud[bot]
commented
1 year ago Kudos, SonarCloud Quality Gate passed! 
0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells
No Coverage information
No Duplication information
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 9.3
SNYK-JS-LOOPBACKCONNECTORPOSTGRESQL-2980123
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: loopback-connector-postgresql
The new version differs by 14 commits.- c684889 5.5.1
- d57406c fix: improve filter sanitisation
- 1a863f3 fix: debug prints the password in plain text
- 61b5029 docs: add SECURITY.md
- aa93d13 docs: update coc
- b677532 docs: add code of conduct
- 96e78db 5.5.0
- fb87b13 chore: add Rifa and Mario as codeowners
- ecf91b5 fix: disregard empty and/or fields
- ce2310e feat(operators): add fts match operator
- 051098d Merge pull request #481 from loopbackio/openjsf
- edc9c80 Merge pull request #480 from chris-kobrzak/master
- a2b3c30 chore: move repo to loopbackio org
- 49b7614 Defensively drop constraints during migrations
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 SQL Injection