This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade jimp from 0.16.13 to 0.22.10.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **63 versions** ahead of your current version.
- The recommended version was released **7 months ago**, on 2023-07-26.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Regular Expression Denial of Service (ReDoS) [SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
| Missing Release of Resource after Effective Lifetime [SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: jimp
</li>
<li>
<b>0.22.9</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.9">2023-07-26</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.8</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.8">2023-05-11</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.7</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.7">2023-02-25</a></br><p>π This release contains work from a new contributor! π</p>
Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!
Release Notes
use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)
Fixes a bug where rotating by 90 degrees introduced extra pixels
π Bug Fix
@ jimp/plugin-rotate
use matrix rotate, if rotate angle is multiple of 90 degrees #1209 (@ black-turtle)
</li>
<li>
<b>0.22.6</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.6">2023-02-24</a></br><p>π This release contains work from a new contributor! π</p>
Thank you, Daniell (@ daniellwdb), for all your work!
</li>
<li>
<b>0.22.6--canary.1198.9324a88b87a1fc38b528af47ca707d97593dddaa.0</b> - 2023-02-22
</li>
<li>
<b>0.22.5</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.5">2023-02-21</a></br><p>π This release contains work from new contributors! π</p>
</li>
<li>
<b>0.22.3--canary.1184.ff6583af74ba85d9555c36db2844886e269feb16.0</b> - 2023-02-06
</li>
<li>
<b>0.22.2</b> - <a href="https://snyk.io/redirect/github/jimp-dev/jimp/releases/tag/v0.22.2">2023-02-06</a></br><p>π This release contains work from new contributors! π</p>
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade jimp from 0.16.13 to 0.22.10.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **63 versions** ahead of your current version. - The recommended version was released **7 months ago**, on 2023-07-26. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: jimp
π This release contains work from a new contributor! π
Thank you, Zach Stevenson (@ stevezac-osu), for all your work!
π Enhancement
@ jimp/coreAuthors: 2
Thanks for all your work!
β€οΈ Artur (@ Artur-)
β€οΈ Tim O. (macer) (@ gitmacer)
β€οΈ aab (@ aabccd021)
β€οΈ Zsolt Medgyesi (@ zmedgyes)
β€οΈ Nicolas Morel (@ Marsup)
π Enhancement
jimp,@ jimp/plugin-print@ jimp/gifπ Bug Fix
@ jimp/coreπ Documentation
Authors: 5
Thanks for all your work!
β€οΈ Sjoerd (@ sjoerd108)
β€οΈ null@ php4fan
β€οΈ null@ JunkMeal
π Enhancement
@ jimp/core,jimp@ jimp/plugin-color@ jimp/plugin-rotateπ Bug Fix
@ jimp/plugin-crop,@ jimp/test-utilsπ Documentation
jimpAuthors: 3
Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!
Release Notes
use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)
Fixes a bug where rotating by 90 degrees introduced extra pixels
π Bug Fix
@ jimp/plugin-rotateAuthors: 1
Thank you, Daniell (@ daniellwdb), for all your work!
π Bug Fix
jimp,@ jimp/plugin-colorAuthors: 1
Thanks for all your work!
β€οΈ Charly Poirier (@ charlypoirier)
β€οΈ Ihor Bodnarchuk (@ ihorbond)
π Bug Fix
@ jimp/plugin-resizeπ Documentation
Authors: 3
@ jimp/core,@ jimp/plugin-colorAuthors: 1
jimpAuthors: 1
Thanks for all your work!
β€οΈ Ollie Chick (@ olliechick)
β€οΈ Andrey Kutejko (@ andy128k)
π Enhancement
@ jimp/coreπ Documentation
favicons#1176 (@ andy128k)Authors: 2
@ jimp/coreπ Internal
@ jimp/core,@ jimp/custom,jimp,@ jimp/plugin-blit,@ jimp/plugin-blur,@ jimp/plugin-circle,@ jimp/plugin-color,@ jimp/plugin-contain,@ jimp/plugin-cover,@ jimp/plugin-crop,@ jimp/plugin-displace,@ jimp/plugin-dither,@ jimp/plugin-fisheye,@ jimp/plugin-flip,@ jimp/plugin-gaussian,@ jimp/plugin-invert,@ jimp/plugin-mask,@ jimp/plugin-normalize,@ jimp/plugin-print,@ jimp/plugin-resize,@ jimp/plugin-rotate,@ jimp/plugin-scale,@ jimp/plugin-shadow,@ jimp/plugin-threshold,@ jimp/plugins,@ jimp/test-utils,@ jimp/bmp,@ jimp/gif,@ jimp/jpeg,@ jimp/png,@ jimp/tiff,@ jimp/types,@ jimp/utilsAuthors: 1
Commit messages
Package name: jimp
- af334ef "Bump version to: v0.22.10 [skip ci]"
- f7c7853 Update contributors [skip ci]
- 68f9e67 Update CHANGELOG.md [skip ci]
- 0a404ca Encoder for GIF provides a Promise to getBuffer when a string, Buffer, or Uint8Array is expected (#1239)
- 244e366 "Bump version to: v0.22.9 [skip ci]"
- ee90e95 Update contributors [skip ci]
- be23723 Update CHANGELOG.md [skip ci]
- d5a5303 fix: Remove dependency on mkdirp (#1248)
- 2d1bc65 Add β¬ to extended Fonts (#1249)
- 2df4796 delete cli link from readme (#1250)
- 245f1cf support commonjs default export (#1225)
- 18503c7 chore: upgrade gifwrap (#1222)
- a5b93f8 "Bump version to: v0.22.8 [skip ci]"
- b6ad3ab Update contributors [skip ci]
- 021cfbb Update CHANGELOG.md [skip ci]
- aec79d0 Composite: don't write to null pixels (#1226)
- 16ee71c Fix: convolute not defaulting to 0, 0 as starting point (#1228)
- bc22100 Fix: rotate resize param on multiples of 90 (#1229)
- 2948127 Fix autocrop mixing up east and west (#1227)
- e04dd91 Fixed typo in README (#1215)
- 6ac63c0 Changing the Hiero url (#1213)
- 965a14e "Bump version to: v0.22.7 [skip ci]"
- eb98ce1 Update contributors [skip ci]
- 07f4fd1 Update CHANGELOG.md [skip ci]
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
π§ View latest project report
π Adjust upgrade PR settings
π Ignore this dependency or unsubscribe from future upgrade PRs