[Snyk] Upgrade: , , , , , ignore, got, semver, azure-devops-node-api, minimatch, commander, deepmerge, dequal, fs-extra, handlebars, json5, luxon, markdown-it, marshal, moo, openpgp, parse-diff, re2, registry-auth-token, shlex, simple-git, slugify, traverse, www-authenticate, xmldoc #614
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade:
- @aws-sdk/client-ecr from 3.25.0 to 3.637.0.
See this package in yarn:
- @breejs/later from 4.0.2 to 4.2.0.
See this package in yarn:
- @renovatebot/ruby-semver from 1.0.0 to 1.1.8.
See this package in yarn:
- @sindresorhus/is from 4.2.0 to 4.6.0.
See this package in yarn:
- @yarnpkg/parsers from 2.4.0 to 2.6.0.
See this package in yarn:
- ignore from 5.1.8 to 5.3.2.
See this package in yarn:
- got from 11.8.2 to 11.8.6.
See this package in yarn:
- semver from 7.3.5 to 7.6.3.
See this package in yarn:
- azure-devops-node-api from 11.0.1 to 11.2.0.
See this package in yarn:
- minimatch from 3.0.4 to 3.1.2.
See this package in yarn:
- commander from 8.2.0 to 8.3.0.
See this package in yarn:
- deepmerge from 4.2.2 to 4.3.1.
See this package in yarn:
- dequal from 2.0.2 to 2.0.3.
See this package in yarn:
- fs-extra from 10.0.0 to 10.1.0.
See this package in yarn:
- handlebars from 4.7.7 to 4.7.8.
See this package in yarn:
- json5 from 2.2.0 to 2.2.3.
See this package in yarn:
- luxon from 2.0.2 to 2.5.2.
See this package in yarn:
- markdown-it from 12.2.0 to 12.3.2.
See this package in yarn:
- marshal from 0.5.2 to 0.5.4.
See this package in yarn:
- moo from 0.5.1 to 0.5.2.
See this package in yarn:
- openpgp from 5.0.0 to 5.11.2.
See this package in yarn:
- parse-diff from 0.8.1 to 0.11.1.
See this package in yarn:
- re2 from 1.16.0 to 1.21.3.
See this package in yarn:
- registry-auth-token from 4.2.1 to 4.2.2.
See this package in yarn:
- shlex from 2.1.0 to 2.1.2.
See this package in yarn:
- simple-git from 2.45.1 to 2.48.0.
See this package in yarn:
- slugify from 1.6.0 to 1.6.6.
See this package in yarn:
- traverse from 0.6.6 to 0.6.9.
See this package in yarn:
- www-authenticate from 0.6.2 to 0.6.3.
See this package in yarn:
- xmldoc from 1.1.2 to 1.3.0.
See this package in yarn:
See this project in Snyk:
https://app.snyk.io/org/monica-a-nbcu/project/52d08130-7b39-4fd9-8fb9-a74a41eee606?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@aws-sdk/client-ecr
from 3.25.0 to 3.637.0 | 308 versions ahead of your current version | 22 days ago
on 2024-08-22
@breejs/later
from 4.0.2 to 4.2.0 | 2 versions ahead of your current version | 10 months ago
on 2023-11-28
@renovatebot/ruby-semver
from 1.0.0 to 1.1.8 | 9 versions ahead of your current version | 2 years ago
on 2023-01-10
@sindresorhus/is
from 4.2.0 to 4.6.0 | 5 versions ahead of your current version | 3 years ago
on 2022-02-27
@yarnpkg/parsers
from 2.4.0 to 2.6.0 | 31 versions ahead of your current version | 10 months ago
on 2023-11-14
ignore
from 5.1.8 to 5.3.2 | 9 versions ahead of your current version | a month ago
on 2024-08-12
got
from 11.8.2 to 11.8.6 | 3 versions ahead of your current version | 2 years ago
on 2022-12-08
semver
from 7.3.5 to 7.6.3 | 13 versions ahead of your current version | 2 months ago
on 2024-07-16
azure-devops-node-api
from 11.0.1 to 11.2.0 | 3 versions ahead of your current version | 2 years ago
on 2022-07-08
minimatch
from 3.0.4 to 3.1.2 | 7 versions ahead of your current version | 3 years ago
on 2022-02-15
commander
from 8.2.0 to 8.3.0 | 1 version ahead of your current version | 3 years ago
on 2021-10-22
deepmerge
from 4.2.2 to 4.3.1 | 2 versions ahead of your current version | a year ago
on 2023-03-16
dequal
from 2.0.2 to 2.0.3 | 1 version ahead of your current version | 2 years ago
on 2022-07-11
fs-extra
from 10.0.0 to 10.1.0 | 2 versions ahead of your current version | 2 years ago
on 2022-04-16
handlebars
from 4.7.7 to 4.7.8 | 1 version ahead of your current version | a year ago
on 2023-08-01
json5
from 2.2.0 to 2.2.3 | 3 versions ahead of your current version | 2 years ago
on 2022-12-31
luxon
from 2.0.2 to 2.5.2 | 10 versions ahead of your current version | 2 years ago
on 2023-01-04
markdown-it
from 12.2.0 to 12.3.2 | 3 versions ahead of your current version | 3 years ago
on 2022-01-08
marshal
from 0.5.2 to 0.5.4 | 2 versions ahead of your current version | 2 years ago
on 2022-04-11
moo
from 0.5.1 to 0.5.2 | 1 version ahead of your current version | 2 years ago
on 2022-10-03
openpgp
from 5.0.0 to 5.11.2 | 18 versions ahead of your current version | 3 months ago
on 2024-06-19
parse-diff
from 0.8.1 to 0.11.1 | 4 versions ahead of your current version | a year ago
on 2023-03-20
re2
from 1.16.0 to 1.21.3 | 31 versions ahead of your current version | 3 months ago
on 2024-06-13
registry-auth-token
from 4.2.1 to 4.2.2 | 1 version ahead of your current version | 2 years ago
on 2022-06-16
shlex
from 2.1.0 to 2.1.2 | 2 versions ahead of your current version | 2 years ago
on 2022-06-24
simple-git
from 2.45.1 to 2.48.0 | 4 versions ahead of your current version | 3 years ago
on 2021-12-01
slugify
from 1.6.0 to 1.6.6 | 6 versions ahead of your current version | a year ago
on 2023-03-26
traverse
from 0.6.6 to 0.6.9 | 3 versions ahead of your current version | 5 months ago
on 2024-04-09
www-authenticate
from 0.6.2 to 0.6.3 | 1 version ahead of your current version | 2 years ago
on 2023-02-10
xmldoc
from 1.1.2 to 1.3.0 | 4 versions ahead of your current version | a year ago
on 2023-03-20
Issues fixed by the recommended upgrade:
SNYK-JS-FASTXMLPARSER-5668858
SNYK-JS-LUXON-3225081
SNYK-JS-OPENPGP-5871276
SNYK-JS-FASTXMLPARSER-3325616
SNYK-JS-FASTXMLPARSER-7573289
SNYK-JS-JSON5-3182856
SNYK-JS-MARKDOWNIT-2331914
npm:debug:20170905
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: