[Snyk] Upgrade typescript from 4.1.5 to 4.2.3

turkdevops / update-electron-app

🌲 A drop-in module that adds autoUpdating capabilities to Electron apps

MIT License

1 stars 0 forks source link

[Snyk] Upgrade typescript from 4.1.5 to 4.2.3 #52

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade typescript from 4.1.5 to 4.2.3.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 88 versions ahead of your current version.
The recommended version was released 21 days ago, on 2021-03-04.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

mistaken-pull-closer[bot] commented 3 years ago

Thanks for your submission.

It appears that you've created a pull request using one of our repository's branches. Since this is almost always a mistake, we're going to go ahead and close this. If it was intentional, please let us know what you were intending and we can see about reopening it.

Thanks again!

pull-dog[bot] commented 3 years ago

*Ruff* :dog: I wasn't able to find any Docker Compose files in your repository at any of the given paths in the pull-dog.json configuration file, or the default docker-compose.yml file :weary: Make sure the given paths are correct.

Files checked:

docker-compose.yml

What is this?

Pull Dog is a GitHub app that makes test environments for your pull requests using Docker, from a `docker-compose.yml` file you specify. It takes 19 seconds to set up (we counted!) and there's a free plan available. Visit our website to learn more.

Commands

- `@pull-dog up` to reprovision or provision the server. - `@pull-dog down` to delete the provisioned server.

Troubleshooting

Need help? Don't hesitate to file an issue in our repository **Configuration** ```json { "isLazy": false, "dockerComposeYmlFilePaths": [ "docker-compose.yml" ], "expiry": "00:00:00", "conversationMode": "singleComment" } ``` **Trace ID** 7ca43340-8dcd-11eb-8b9c-9195753af90a

guardrails[bot] commented 3 years ago

:warning: We detected security issues in this pull request: Mode: paranoid | Total findings: 3 | Considered vulnerability: 0

Insecure File Management (3)

https://github.com/turkdevops/update-electron-app/blob/a35729199050971157c186f66691561a7bbef9e9/index.js#L110 https://github.com/turkdevops/update-electron-app/blob/a35729199050971157c186f66691561a7bbef9e9/test/index.test.js#L29 https://github.com/turkdevops/update-electron-app/blob/a35729199050971157c186f66691561a7bbef9e9/test/index.test.js#L45 More info on how to fix Insecure File Management in [Javascript](https://docs.guardrails.io/docs/en/vulnerabilities/javascript/Insecure_file_management.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.