bus-starter
bus-starter copied to clipboard
node-ts
[Snyk] Security upgrade @node-ts/bus-rabbitmq from 1.0.5 to 1.0.13
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
713/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.4 |
Authorization Bypass SNYK-JS-URLPARSE-2407759 |
No | Proof of Concept |
|
718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5 |
Authorization Bypass SNYK-JS-URLPARSE-2407770 |
No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @node-ts/bus-rabbitmq
The new version differs by 18 commits.- 18c4616 Publish
- 97281e2 dependency upgrades
- 5d6fea3 Bump tar from 4.4.15 to 4.4.19 (#133)
- fbdd109 fix: upgrade amqplib from 0.6.0 to 0.8.0 (#150)
- bb5b24b Fix: Memory queue fail deletes other messages (#163)
- 0aad404 Publish
- 87a4315 port middleware (#160)
- cb11628 streamline ci plan
- 50c0422 Publish
- fbaf874 Publish
- 477e002 make bus-test public
- ba1fe9c Publish
- 29d8d7e release @ node-ts/bus-test
- c0b07fc Publish
- 22714a1 subdomain
- 5755e3b Publish
- 1552fc4 subdomain
- 5024e19 Publish
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
