Snyk has created this PR to upgrade puppeteer from 5.2.1 to 5.5.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 5 versions ahead of your current version.
The recommended version was released a year ago, on 2020-11-16.
Fixed an issue in 5.4.0 on Node.js v10.17.0 and below where trying to access fs.promises would throw an error. See #6548 for the bug report and #6550 for the fix. We now run a CI build on Node 10.15 to ensure we don't cause similar regressions in the future.
Raw notes
520cd90 - chore: mark version 5.4.1 8f4a79e - docs(troubleshooting): update Alpine Chromium version (#6529) e45acce - chore: run unit tests on node 10.15 + fix fs.promises access (#6550) a2175c6 - docs(queryhandler): fix link (#6543) d787865 - chore: bump version to v5.4.0-post (#6544)
Snyk has created this PR to upgrade puppeteer from 5.2.1 to 5.5.0.
The recommended version fixes:
SNYK-JS-WS-1296835
Why? Proof of Concept exploit, CVSS 5.3
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: puppeteer
-
5.5.0 - 2020-11-16
- chromium: roll Chromium to r818858 (#6526) (b549256)
- common: fix generic type of
- domworld: fix missing binding for waittasks (#6562) (67da1cf)
-
5.4.1 - 2020-10-27
- Fixed an issue in 5.4.0 on Node.js v10.17.0 and below where trying to access
-
5.4.0 - 2020-10-23 Read more
-
5.3.1 - 2020-09-22
- New API:
-
5.3.0 - 2020-09-11 Read more
-
5.2.1 - 2020-07-21
- Chromium 85.0.4182.0 (r782078)
- We now allow configuring the browser debug logging behavior via
from puppeteer GitHub release notesv5.5.0 (2020-11-16)
Features
Bug Fixes
_isClosedPromise(#6579) (122f074)Bug fixes
fs.promiseswould throw an error. See #6548 for the bug report and #6550 for the fix. We now run a CI build on Node 10.15 to ensure we don't cause similar regressions in the future.Raw notes
520cd90 - chore: mark version 5.4.1
8f4a79e - docs(troubleshooting): update Alpine Chromium version (#6529)
e45acce - chore: run unit tests on node 10.15 + fix fs.promises access (#6550)
a2175c6 - docs(queryhandler): fix link (#6543)
d787865 - chore: bump version to v5.4.0-post (#6544)
Highlights
page.emulateIdleState(...)(#6410)Raw notes
c7d32cb - chore: mark version v5.3.1 (#6439)
8f3171a - feat(permissions): Add idle-detection permission (#6438)
083ea41 - test(frame): correct terminology in URL fragment test (#6416)
bb1c521 - chore: remove mime dependency (#6415)
17960e5 - feat(page): emulate idle state (#6410)
03e41da - chore: bump version to v5.3.0-post (#6413)
Highlights
globalThis.__PUPPETEER_DEBUG(#6210)Raw notes
4ee4649 - chore: mark v5.2.1 (#6254)
e89e264 - feat(chromium): roll Chromium to r782078 (#6250)
b2f6918 - fix: configure debug logging in browser (#6210)
040f37e - docs: fix link text (#6245)
9fdf2ba - chore(docs): migrate page.pdf() docs (#6228)
2331584 - docs(troubleshooting): install libXss in Dockerfile (#6236)
042c4a2 - chore: mark 5.2.0-post (#6240)
Commit messages
Package name: puppeteer
- 18143b3 chore(release): mark v5.5.0 (#6604)
- d8932ca chore: shorter node checker function (#6584)
- d606b80 docs(troubleshooting): update dumb-init version (#6585)
- 8690a77 chore: remove redundant npm script for dependency-graph (#6583)
- 8c98315 chore: clarify node_js versions in Travis config (#6570)
- 6d4f0a3 docs(contributing): remove npm dist tags requirement (#6571)
- 122f074 fix(common): fix generic type of `_isClosedPromise` (#6579)
- 67da1cf fix(domworld): fix missing binding for waittasks (#6562)
- 659193a chore: mark launcher spec as failing on Windows (#6574)
- 3bb417b chore: fix typo in test (#6566)
- f8cd6c4 chore: automate Chromium => Puppeteer version listing (#6558)
- 8bc8a76 docs(api): expand registerCustomQueryHandler example (#6557)
- a0d8a27 chore: automate versioning + changelog (#6556)
- b549256 feat(chromium): roll Chromium to r818858 (#6526)
- d3d7cb9 chore: mark v5.4.1-post (#6553)
- 562c9c2 chore: mark version 5.4.1 (#6552)
- 8f4a79e docs(troubleshooting): update Alpine Chromium version (#6529)
- e45acce chore: run unit tests on node 10.15 + fix fs.promises access (#6550)
- a2175c6 docs(queryhandler): fix link (#6543)
- d787865 chore: bump version to v5.4.0-post (#6544)
- 729cdfe chore: mark version v5.4.0 (#6542)
- 8e9970d chore: automate publishing on new Git tags (#6536)
- 5e5fed1 fix: ignore spurious bindingCalled events (#6538)
- e6b8c77 chore: fix travis config (#6537)
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs