osquery-node
osquery-node copied to clipboard
sidorares
[Snyk] Security upgrade thrift from 0.9.3 to 0.11.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
551/1000 Why? Recently disclosed, Has a fix available, CVSS 5.3 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835 |
No | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: thrift
The new version differs by 250 commits.- 327ebb6 Version 0.11.0
- fc0ff81 THRIFT-3580 THeader for Haskell
- 1310dc1 Version 0.11.0
- 1c7bf3e THRIFT-4398 Update EXTRA_DIST for "make dist"
- 2147466 THRIFT-4396 inconsistent (or plain wrong) version numbers in master/trunk
- 026c9d0 THRIFT-3686 Java processor should report internal error on uncaught exception
- 1541f0a THRIFT-3657 D TFileWriterTransport close should use non-priority send
- af56286 THRIFT-3610 Streamline exception handling in Python server handler
- 66c3dbf THRIFT-3602 Make Tornado server send exception on unexpected handler error
- 6f82640 THRIFT-3600 Make TTwisted server send exception on unexpected handler error
- 1ce7a5b THRIFT-2913: fix random CI build failures in lib/rb test
- 35f987d THRIFT-4392 reorder structs in plugin.thrift
- 44426c9 THRIFT-4395: fix rust build on xenial
- 20e16bc THRIFT-2013: add perl crosstest multiplexed client and server logic
- cde4d41 Fix remote client for HTTP transport
- 39eaae6 THRIFT-2013: update docker for artful (go back to lua 5.2) and enhance
- 6e883f9 THRIFT-4085: refresh docker for dotnet 2.0.3, add dart 1.24.2 to artful image
- 58402ff THRIFT-2013: add multiplex server and client test support to cpp language
- 87ad2bc THRIFT-4329: multiplexed processor, client and server for c_glib
- 95d5fb3 update the CONTRIBUTING readme to point to build instructions (third time is a charm)
- ad2ea3d update the CONTRIBUTING readme to point to build instructions (again)
- 388738d update the CONTRIBUTING readme to point to build instructions
- cfb0130 update docker build instructions
- 4f77ab8 THRIFT-4285 Move TX/RX methods from gen. code to library
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
