tree-gateway
tree-gateway copied to clipboard
TreeGateway
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
479/1000 Why? Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905 |
Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: typescript-rest
The new version differs by 136 commits.- 398e159 fix pipeline
- 3fa54c9 remove travis
- 076195b update CI/CD tool
- d93081f updating dependencies
- 70a2716 Merge pull request #144 from mr-short/patch-1
- af159a1 update dependencies
- 6e6e09c Merge pull request #148 from mr-short/multiple-security-decorators
- 1dbae06 Multiple security decorators
- 78b8c48 ServiceAuthenticator getRoles: add response param
- 7215bff Authenticator getRoles: add response param
- bc1491d new version
- fbc53ae new version
- fc22a52 Merge pull request #141 from abhisekp/fix-null-return
- c3a14b9 Merge pull request #143 from thiagobustamante/snyk-fix-ffa9b8c068604dd0964148211857f5df
- 3a7812a Merge pull request #142 from msieurtoph/patch-1
- 4f48f43 fix: package.json & package-lock.json to reduce vulnerabilities
- 70582d7 Wait for the reponse from async methods before executing postProcessors
- f6284c7 fix(service): Fix service invoker null return
- b976126 readme file
- 247edc8 Fix serviceFactory
- 3bddb02 remove tyoescript-ioc dependency
- e3b45df allow access the server router
- 6d43e26 add new immutable method
- 976bd27 fix travis deploy
Package name: typescript-rest-swagger
The new version differs by 141 commits.- 9444142 new version
- 70f7968 Merge pull request #125 from thiagobustamante/dependabot/npm_and_yarn/lodash-4.17.19
- 6cc5b44 Merge pull request #124 from alexandreMelloTW/updating-dependencies
- 470115a Bump lodash from 4.17.15 to 4.17.19
- ab66e5b Merge pull request #123 from TeselaGen/master
- 89e360f updating minimist
- 581f5cb updating [email protected]
- 105ab09 updating [email protected]
- 1ce12bf updating [email protected]
- 6b01c04 updating [email protected]
- 7a24c24 updating [email protected]
- 529e8b5 adding a more helpful error message when a type isn't found
- 40cca2b Merge pull request #1 from thiagobustamante/master
- 3a47f3c Merge pull request #108 from oranoran/fix/devDependencies
- 83ff9e1 Moved all dependencies to devDependencies to avoid dependency creep
- cc10432 fix travis
- ce35c40 fix release
- c591024 fix travis deploy
- a956a13 Merge branch 'master' of https://github.com/thiagobustamante/typescript-rest-swagger
- c2024a1 support union types
- 5dc6731 Merge pull request #101 from thiagobustamante/dependabot/npm_and_yarn/handlebars-4.5.3
- e474eeb Merge pull request #85 from thiagobustamante/dependabot/npm_and_yarn/diff-3.5.0
- f3e513f Merge pull request #86 from JulienSergent/hotfix/keep-module-typescript-rest
- 96b5fa9 Merge pull request #88 from Insalien/add-consumes-decorator
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
