Snyk has created this PR to upgrade open from 8.4.2 to 10.1.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
⚠️ **Warning:** This PR contains major version upgrade(s), and may be a breaking change.
- The recommended version is **8 versions** ahead of your current version.
- The recommended version was released on **3 months ago**.
#### Issues fixed by the recommended upgrade:
| | Issue | Score | Exploit Maturity |
:-------------------------:|:-------------------------|:-------------------------|:-------------------------
![high severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png 'high severity') | Regular Expression Denial of Service (ReDoS) [SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **631** | Proof of Concept
![medium severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png 'medium severity') | Missing Release of Resource after Effective Lifetime [SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **631** | Proof of Concept
Release notes Package name: open
from open GitHub release notes
---
> [!IMPORTANT]
>
> - **Warning:** This PR contains a major version upgrade, and may be a breaking change.
> - Check the changes in this PR to ensure they won't cause issues with your project.
> - This PR was automatically created by Snyk using the credentials of a real user.
> - Max score is 1000. Note that the real score may have changed since the PR was raised.
---
**Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs._
**For more information:**
> - 🧐 [View latest project report](https://app.snyk.io/org/victorperin/project/cdc8d5b5-474f-4093-9252-8753bc15e25c?utm_source=github&utm_medium=referral&page=upgrade-pr)
> - 📜 [Customise PR templates](https://docs.snyk.io/scan-using-snyk/pull-requests/snyk-fix-pull-or-merge-requests/customize-pr-templates)
> - 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/victorperin/project/cdc8d5b5-474f-4093-9252-8753bc15e25c/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr)
> - 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/victorperin/project/cdc8d5b5-474f-4093-9252-8753bc15e25c/settings/integration?pkg=open&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
This PR was automatically created by Snyk using the credentials of a real user.
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
Snyk has created this PR to upgrade open from 8.4.2 to 10.1.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.⚠️ **Warning:** This PR contains major version upgrade(s), and may be a breaking change. - The recommended version is **8 versions** ahead of your current version. - The recommended version was released on **3 months ago**. #### Issues fixed by the recommended upgrade: | | Issue | Score | Exploit Maturity | :-------------------------:|:-------------------------|:-------------------------|:------------------------- ![high severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png 'high severity') | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **631** | Proof of Concept ![medium severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png 'medium severity') | Missing Release of Resource after Effective Lifetime
[SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) | **631** | Proof of Concept
Release notes
Package name: open
xdg-open
to 1.2.1 (#338) c702c66v10.0.4...v10.1.0
openApp()
(#335) d9e7422v10.0.3...v10.0.4
target
option on macOS (#332) b597decv10.0.2...v10.0.3
v10.0.1...v10.0.2
v10.0.0...v10.0.1
Breaking
v9.1.0...v10.0.0
v9.0.0...v9.1.0
Breaking
open.openApp
is now a named import:import {openApp} from 'open'
open.apps
is now a named import:import {apps} from 'open'
Improvements
v8.4.2...v9.0.0
v8.4.1...v8.4.2