Open snyk-bot opened 2 years ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-ANSIHTML-1296849
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: webpack-dev-server
The new version differs by 250 commits.- aa3cddc chore(release): 3.11.3
- 4fef67b fix: replace `ansi-html` with `ansi-html-community` (#4011)
- 5cb545f chore(release): 3.11.2
- a5fe337 fix: cli arguments for `serve` command
- 7e70eee chore(release): 3.11.1
- 78dde50 fix: vulnerable deps (#2949)
- 4837dc9 fix: the `open` option works using `webpack serve` without value (#2948)
- 4ab1f21 chore(release): 3.11.0
- 0e51fb1 fix: invalidate route (#2584)
- f857c40 chore: deps and tests
- 41d1d0c fix(deps): security vulnerability in yargs-parser (#2566)
- 375ab23 ci: add node@14 (#2530)
- 776e7d4 chore(deps): update dependency html-entities to ^1.3.1 (master) (#2513)
- 984536c chore: update lint-staged config (#2524)
- 89ffb86 feat: add invalidate endpoint (#2493)
- 0e9bffb chore(deps): update all patch dependencies (#2508)
- 99ccfd8 fix: update jquery (#2516)
- 06583f2 fix: do not swallow errors from server (#2512)
- 0d5c681 fix(server): don't crash on setupExitSignals(undefined) (#2507)
- c436058 chore(deps): update all patch dependencies (master) (patch) (#2503)
- 4808abd feat(progess): emit progress-update (#2498)
- adeb92e feat: allow open option to accept an object (#2492)
- c6bdfe4 feat(contentBasePublicPath): allow multiple paths (#2489)
- f317358 chore(deps): update all patch dependencies (master) (patch) (#2481)
See the full diffCheck the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.