[Snyk] Upgrade eventemitter2 from 6.4.3 to 6.4.9

[lmartinez-2600hz]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade eventemitter2 from 6.4.3 to 6.4.9.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 6 versions ahead of your current version.
• The recommended version was released a year ago, on 2022-09-12.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Improper Input Validation SNYK-JS-URLPARSE-2407770	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIHTML-1296849	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-I18NEXT-1065979	512/1000 Why? Proof of Concept exploit, CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-NODEFORGE-598677	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Authorization Bypass SNYK-JS-URLPARSE-2407759	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-I18NEXT-585930	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Information Exposure SNYK-JS-EVENTSOURCE-2823375	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Improper Input Validation SNYK-JS-URLPARSE-1078283	512/1000 Why? Proof of Concept exploit, CVSS 8.1	No Known Exploit
	Open Redirect SNYK-JS-URLPARSE-1533425	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept
	Access Restriction Bypass SNYK-JS-URLPARSE-2401205	512/1000 Why? Proof of Concept exploit, CVSS 8.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: eventemitter2

• 6.4.9 - 2022-09-12
  

  6.4.9

• 6.4.8 - 2022-09-06
  

  6.4.8

• 6.4.7 - 2022-08-01
  

  6.4.7

• 6.4.6 - 2022-06-30
  

  6.4.6

• 6.4.5 - 2021-10-03
  

  6.4.5

• 6.4.4 - 2021-02-24
  

  Added

  • ETIMEDOUT code property to timeout errors @ HalleyAssist

  Fixed

  • prepending listeners to wildcard emitters @ Ilrilan
• 6.4.3 - 2020-06-22
  

  Fixed

  • ignoring the objectify option in wildcard mode (#265) @ DigitalBrainJS
  • waitFor listeners leakage issue (#262) @ DigitalBrainJS

from eventemitter2 GitHub release notes

Commit messages

Package name: eventemitter2

• 39313aa 6.4.9
• e031659 Revert "Optional strong type events for TypeScript (#291)"
• 15cd9d5 6.4.8
• c24b66b Optional strong type events for TypeScript (#291)
• 3485e7e 6.4.7
• d3d0add Update types (#290)
• 73ba284 6.4.6
• b1fe331 Add default export to type definitions. fixes #281 (#287)
• 265c69f Merge remote-tracking branch 'origin/master' into master
• 16a9320 Fixed `toObject` typo (#279);
• 9c88c2f 6.4.5
• 71cf92f Added test for fix #278;
• 4122969 Fixed invoking a wildcard listener when there is also a matching exact listener (#278);
• e80605f [Release 6.4.4] Added `ETIMEDOUT` code property to timeout errors; Fixed prepending listeners to wildcard emitters;
• 2eb5d5a Merge pull request #271 from Ilrilan/master
• 658fe05 Refactor test without nodeunit
• 1b162c6 Refactor test without nodeunit
• 20a1990 Refactor test without nodeunit
• aab7c88 Fix prependListener in wildcard mode
• 90a37aa Merge pull request #268 from HalleyAssist/master
• e5cb91c set ETIMEDOUT code on exception

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs