docsify icon indicating copy to clipboard operation
docsify copied to clipboard
verified publisher icon docsifyjs

[Snyk] Upgrade prismjs from 1.23.0 to 1.24.1

Open snyk-bot opened this issue 4 years ago • 1 comments

Snyk has created this PR to upgrade prismjs from 1.23.0 to 1.24.1.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2021-07-03.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-PRISMJS-1314893		 584/1000
Why? Has a fix available, CVSS 7.4		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: prismjs from prismjs GitHub release notes
Commit messages
Package name: prismjs
  • 0fd01ea 1.24.1
  • 59db7ea Changelog for v1.24.1 (#2981)
  • 748ecdd Toolbar: Fixed styles being applies to nested elements (#2980)
  • 151121c Markdown: Fixed markdown not working in NodeJS (#2977)
  • 3432b4b 1.24.0
  • 46d0720 Updated `.npmignore` (#2971)
  • aef7f08 Changelog for v1.24.0 (#2965)
  • e9477d8 Markdown: Improved code snippets (#2967)
  • 4b55bd6 Made Match Braces and Custom Class compatible (#2947)
  • e8d3b50 ESLint: Added `regexp/strict` rule (#2944)
  • bfd7fde GraphQL: Fixed `definition-query` and `definition-mutation` tokens (#2964)
  • 14e3868 Fixed reST test
  • a7656de reST: Fixed `inline` pattern (#2946)
  • b4ac061 ESLint: Use cache (#2959)
  • 114e462 Elixir: Added missing keywords (#2958)
  • 42fabfe ESLint: Enabled `no-dupe-disjunctions` rule (#2951)
  • f471d2d Fixed problems reported by `regexp/no-dupe-disjunctions` (#2952)
  • d6ed8da Bump postcss from 7.0.32 to 7.0.36 (#2955)
  • ab7c995 JS: Added support for import assertions (#2953)
  • ac1d12f Liquid: Added Markup support, missing tokens, and other improvements (#2950)
  • abab910 JS Templates: Added SQL templates (#2945)
  • 34f24ac GraphQL: Added more detailed tokens (#2939)
  • 99f3ddc Tests: Automatically normalize line ends (#2934)
  • 8e93c5d Update `eslint-plugin-regexp` (#2942)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

snyk-bot avatar Jul 25 '21 00:07 snyk-bot

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/docsify-core/docsify-preview/Hyjp8qScWWXWuAamNMQAQjjQsmtu
✅ Preview: https://docsify-preview-git-snyk-upgrade-293513f07e-40f0e5-docsify-core.vercel.app

vercel[bot] avatar Jul 25 '21 00:07 vercel[bot]

close via conflict.

Koooooo-7 avatar Nov 03 '22 02:11 Koooooo-7