This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade jimp from 0.16.13 to 0.22.10.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **63 versions** ahead of your current version.
- The recommended version was released **7 months ago**, on 2023-07-26.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Regular Expression Denial of Service (ReDoS) [SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
| Missing Release of Resource after Effective Lifetime [SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: jimp
</li>
<li>
<b>0.22.9</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.9">2023-07-26</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.8</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.8">2023-05-11</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.7</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.7">2023-02-25</a></br><p>π This release contains work from a new contributor! π</p>
Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!
Release Notes
use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)
Fixes a bug where rotating by 90 degrees introduced extra pixels
π Bug Fix
@ jimp/plugin-rotate
use matrix rotate, if rotate angle is multiple of 90 degrees #1209 (@ black-turtle)
</li>
<li>
<b>0.22.6</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.6">2023-02-24</a></br><p>π This release contains work from a new contributor! π</p>
Thank you, Daniell (@ daniellwdb), for all your work!
</li>
<li>
<b>0.22.6--canary.1198.9324a88b87a1fc38b528af47ca707d97593dddaa.0</b> - 2023-02-22
</li>
<li>
<b>0.22.5</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.5">2023-02-21</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.3--canary.1184.ff6583af74ba85d9555c36db2844886e269feb16.0</b> - 2023-02-06
</li>
<li>
<b>0.22.2</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.2">2023-02-06</a></br><p>π This release contains work from new contributors! π</p>
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade jimp from 0.16.13 to 0.22.10.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **63 versions** ahead of your current version. - The recommended version was released **7 months ago**, on 2023-07-26. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept | Missing Release of Resource after Effective Lifetime
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: jimp
π This release contains work from a new contributor! π
Thank you, Zach Stevenson (@ stevezac-osu), for all your work!
π Enhancement
@ jimp/core
Authors: 2
Thanks for all your work!
β€οΈ Artur (@ Artur-)
β€οΈ Tim O. (macer) (@ gitmacer)
β€οΈ aab (@ aabccd021)
β€οΈ Zsolt Medgyesi (@ zmedgyes)
β€οΈ Nicolas Morel (@ Marsup)
π Enhancement
jimp
,@ jimp/plugin-print
@ jimp/gif
π Bug Fix
@ jimp/core
π Documentation
Authors: 5
Thanks for all your work!
β€οΈ Sjoerd (@ sjoerd108)
β€οΈ null@ php4fan
β€οΈ null@ JunkMeal
π Enhancement
@ jimp/core
,jimp
@ jimp/plugin-color
@ jimp/plugin-rotate
π Bug Fix
@ jimp/plugin-crop
,@ jimp/test-utils
π Documentation
jimp
Authors: 3
Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!
Release Notes
use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)
Fixes a bug where rotating by 90 degrees introduced extra pixels
π Bug Fix
@ jimp/plugin-rotate
Authors: 1
Thank you, Daniell (@ daniellwdb), for all your work!
π Bug Fix
jimp
,@ jimp/plugin-color
Authors: 1
Thanks for all your work!
β€οΈ Charly Poirier (@ charlypoirier)
β€οΈ Ihor Bodnarchuk (@ ihorbond)
π Bug Fix
@ jimp/plugin-resize
π Documentation
Authors: 3
@ jimp/core
,@ jimp/plugin-color
Authors: 1
jimp
Authors: 1
Thanks for all your work!
β€οΈ Ollie Chick (@ olliechick)
β€οΈ Andrey Kutejko (@ andy128k)
π Enhancement
@ jimp/core
π Documentation
favicons
#1176 (@ andy128k)Authors: 2
@ jimp/core
π Internal
@ jimp/core
,@ jimp/custom
,jimp
,@ jimp/plugin-blit
,@ jimp/plugin-blur
,@ jimp/plugin-circle
,@ jimp/plugin-color
,@ jimp/plugin-contain
,@ jimp/plugin-cover
,@ jimp/plugin-crop
,@ jimp/plugin-displace
,@ jimp/plugin-dither
,@ jimp/plugin-fisheye
,@ jimp/plugin-flip
,@ jimp/plugin-gaussian
,@ jimp/plugin-invert
,@ jimp/plugin-mask
,@ jimp/plugin-normalize
,@ jimp/plugin-print
,@ jimp/plugin-resize
,@ jimp/plugin-rotate
,@ jimp/plugin-scale
,@ jimp/plugin-shadow
,@ jimp/plugin-threshold
,@ jimp/plugins
,@ jimp/test-utils
,@ jimp/bmp
,@ jimp/gif
,@ jimp/jpeg
,@ jimp/png
,@ jimp/tiff
,@ jimp/types
,@ jimp/utils
Authors: 1
Commit messages
Package name: jimp
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
π§ View latest project report
π Adjust upgrade PR settings
π Ignore this dependency or unsubscribe from future upgrade PRs