Skip to content
This repository has been archived by the owner on Oct 1, 2021. It is now read-only.

[Snyk] Security upgrade @loopback/testlab from 1.10.3 to 3.2.5 #113

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade @loopback/testlab from 1.10.3 to 3.2.5 #113

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 405/1000
Why? CVSS 8.1		 Prototype Pollution
SNYK-JS-AJV-584908		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @loopback/testlab The new version differs by 250 commits.
  • 2b7d2ef chore: publish release
  • ff8e7ee chore: update dependency @types/node to v10.17.34
  • 500d8ef chore: update dependency autocannon to ^6.4.0
  • 95b6a2b fix: improve handling of missing design-time type metadata
  • 4816cae feat(metadata): improve handling of missing design-time type metadata
  • e4671f0 feat(graphql): improve graphql server configuration
  • 5202fc3 feat(example-graphql): add subscriptions to the graphql example
  • 2985bad feat(graphql): add support for graphql subscriptions
  • 7dd71d1 chore: update dependency @microsoft/api-documenter to ^7.8.48
  • 0682ad5 chore: update dependency testcontainers to ^3.4.11
  • acae2a3 fix(rest): do not override customized openapi spec info object
  • fce91a2 feat(openapi-v3): export a constant for the default openapi spec info
  • 9fe798f chore: update typescript-eslint monorepo to ^4.1.1
  • 5b3c3f8 chore: update dependency casbin to ^5.1.5
  • 2884f8b chore: update dependency @microsoft/api-documenter to ^7.8.47
  • fec39b4 chore: lock file maintenance
  • e44cb59 chore: update dependency ajv to ^6.12.5
  • 475121d chore: sort keys in package.json
  • 6967cd7 chore: update commitlint monorepo to v11
  • e54ac13 chore: update dependency testcontainers to ^3.4.4
  • 9cbf0ba chore: update api-extractor packages
  • 0cfc88d chore: update dependency eslint to ^7.9.0
  • 4414556 chore: set NODE_OPTIONS=--max-old-space-size=2048
  • e5aff19 chore: update dependency @types/node to v10.17.32

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot