search

twilio-labs / plugin-token

Twilio CLI plugin for generating access tokens for Twilio Chat, Video, etc.
MIT License
5 stars 14 forks source link

[Snyk] Security upgrade @twilio/cli-core from 5.8.0 to 5.15.1 #28

Open twilio-product-security opened 3 years ago

twilio-product-security commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 768/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5		 Regular Expression Denial of Service (ReDoS)
SNYK-JS-AXIOS-1579269		 No Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @twilio/cli-core The new version differs by 48 commits.
  • 2d30565 Release 5.15.1
  • 1d8331b [Librarian] Regenerated @ 15a74dddee9e2bba5fb0d673b5288e65d4ab3201
  • 6af0bdd chore: bump twilio package version
  • c8ab6d5 chore: bump axios version (#110)
  • de3ffcf Revert "chore: bump axios version"
  • 957dc75 chore: update template files
  • 2eb3515 chore: bump axios version
  • 6178beb Release 5.15.0
  • 094290b [Librarian] Regenerated @ 15a74dddee9e2bba5fb0d673b5288e65d4ab3201
  • 1d5f595 feat: add operation IDs (#107)
  • a7735c0 Release 5.14.0
  • ccb41d5 [Librarian] Regenerated @ 28cbb7d771677c50c64003cc2c5afc660ccc6fa3
  • d4f4e97 chore: replace tags with vendor extension (#105)
  • 135a40c fix: fixing semantic errors in the openAPI specs (#106)
  • d434abe Release 5.13.0
  • 0e5b86d [Librarian] Regenerated @ 0604d0d9a213f39954083b366c3fc667d22d702e
  • 4a8ee37 feat: splitting openAPI specs by version (#104)
  • 3757872 fix: getParams when operation parameters is absent (#103)
  • 2c2273c Release 5.12.0
  • 865bf5e [Librarian] Regenerated @ 146e53875c8c04da5a6c73f65aa5011ad65b2dfd
  • f76f286 Release 5.11.0
  • 5b8ec61 [Librarian] Regenerated @ 551da0c03315c2791ce53816c329fd1fb37f471f
  • 89ca112 chore: update template files
  • 9fdc032 chore: update template files
See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic