[Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.22.5 #173

NOUIY · 2023-11-17T02:32:28Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @snyk/code-client from 4.12.4 to 4.22.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 33 versions ahead of your current version.
The recommended version was released 22 days ago, on 2023-10-26.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	No Known Exploit
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342073	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342082	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	No Known Exploit
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @snyk/code-client

4.22.5 - 2023-10-26
4.22.5 (2023-10-26)

Bug Fixes
- add extra check to validate org id, and not send requests that will fail in the api-gateway (8c0a3b9)
4.22.4 - 2023-10-19
4.22.4 (2023-10-19)

Bug Fixes
- upgrade @ types/sarif from 2.1.4 to 2.1.5 (dba4b30)
4.22.3 - 2023-10-05
4.22.3 (2023-10-05)

Bug Fixes
- add orgId to code-client calls (5369805)
4.22.2 - 2023-10-05
4.22.2 (2023-10-05)

Bug Fixes
- use orgId from options (90c5496)
4.22.1 - 2023-09-28
4.22.1 (2023-09-28)

Bug Fixes
- placeholder org-id fix (16b5e43)
4.22.0 - 2023-09-13
4.22.0 (2023-09-13)

Bug Fixes
- format tests (3974598)
Features
- add routing to GW option for sast (a00b52f)
4.21.0 - 2023-09-11
4.21.0 (2023-09-11)

Bug Fixes
- add basic .snyk exclude rule collection tests (9e885e5)
- deduplicate redundant exclude rules (0f98613)
- negative overrides file handling (83274f1)
- nested .snyk support for global exclude rule collection (6dec274)
- skip ignore files from directories excluded by top-level .snyk rules (51786f6)
Features
- split exclude and ignore rules as file policies (b8fae05)
4.20.5 - 2023-08-28
4.20.5 (2023-08-28)

Bug Fixes
- upgrade fast-glob from 3.3.0 to 3.3.1 (#201) (f217469)
4.20.4 - 2023-08-15
4.20.4 (2023-08-15)

Bug Fixes
- upgrade @ types/lodash.union from 4.6.6 to 4.6.7 (303f164)
- upgrade ignore from 5.1.8 to 5.2.4 (02ac77d)
4.20.3 - 2023-08-15
4.20.3 (2023-08-15)

Bug Fixes
- upgrade @ types/lodash.pick from 4.4.6 to 4.4.7 (31ab640)
4.20.2 - 2023-08-15
4.20.1 - 2023-08-04
4.20.0 - 2023-07-26
4.19.1 - 2023-07-21
4.19.0 - 2023-07-14
4.18.7 - 2023-07-13
4.18.6 - 2023-06-28
4.18.5 - 2023-05-22
4.18.4 - 2023-05-10
4.18.3 - 2023-05-02
4.18.2 - 2023-04-28
4.18.1 - 2023-04-03
4.18.0 - 2023-03-15
4.17.1 - 2023-03-10
4.17.0 - 2023-02-22
4.16.4 - 2023-02-21
4.16.3 - 2023-02-21
4.16.2 - 2023-02-21
4.16.1 - 2023-02-20
4.16.0 - 2023-02-20
4.15.0 - 2023-01-25
4.14.0 - 2022-11-17
4.13.0 - 2022-10-06
4.12.4 - 2022-09-26

from @snyk/code-client GitHub release notes

Commit messages

Package name: @snyk/code-client

f2f6aa4 Merge pull request chore: increment version in package.json for release snyk/vscode-extension#209 from snyk/fix/PUL2-898/org-validation
8c0a3b9 fix: add extra check to validate org id, and not send requests that will fail in the api-gateway
38352a9 Merge pull request [Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.23.7 #208 from snyk/snyk-upgrade-6d32386aa907bf8509c3fda814ea60c5
dba4b30 fix: upgrade @ types/sarif from 2.1.4 to 2.1.5
1296621 Merge pull request [Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.23.5 #206 from snyk/chore/asset-classification-20231012
6c0096e chore: asset classification
0fc951e Merge pull request [Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.23.5 #205 from snyk/fix/fedramp_urls
5369805 fix: add orgId to code-client calls
f84f737 Merge pull request [Snyk] Upgrade string-argv from 0.3.1 to 0.3.2 #204 from snyk/fix/org-id-placeholder
90c5496 fix: use orgId from options
47624ab Merge pull request [Snyk] Upgrade vscode-languageserver-textdocument from 1.0.8 to 1.0.10 #203 from snyk/fix/org-id-placeholder
16b5e43 fix: placeholder org-id fix
768d57e Merge pull request [Snyk] Upgrade rxjs from 7.5.5 to 7.8.1 #202 from snyk/route-sast-to-gw
eac6db6 Update tests/httpUtils.spec.ts
6cf5639 Merge pull request [Snyk] Upgrade @amplitude/experiment-node-server from 1.3.0 to 1.9.0 #200 from snyk/fix/ZEN-558/file-ignores-excludes
3974598 fix: format tests
a00b52f feat: add routing to GW option for sast
d669c23 chore: replace flatMap with union for Node 10 support
d0b2ae3 chore: non-mutating rule collection
8156f0e chore: filePolicies arg required
b8fae05 feat: split exclude and ignore rules as file policies
83274f1 fix: negative overrides file handling
6dec274 fix: nested .snyk support for global exclude rule collection
f217469 fix: upgrade fast-glob from 3.3.0 to 3.3.1 ([Snyk] Upgrade: , , #201)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade @snyk/code-client from 4.12.4 to 4.22.5. See this package in npm: https://www.npmjs.com/package/@snyk/code-client See this project in Snyk: https://app.snyk.io/org/nexuscompute/project/f8ef472e-24dd-48f6-a0a1-8c239ab16c04?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.22.5 #173

[Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.22.5 #173

NOUIY commented Nov 17, 2023

4.22.5 (2023-10-26)

Bug Fixes

4.22.4 (2023-10-19)

Bug Fixes

4.22.3 (2023-10-05)

Bug Fixes

4.22.2 (2023-10-05)

Bug Fixes

4.22.1 (2023-09-28)

Bug Fixes

4.22.0 (2023-09-13)

Bug Fixes

Features

4.21.0 (2023-09-11)

Bug Fixes

Features

4.20.5 (2023-08-28)

Bug Fixes

4.20.4 (2023-08-15)

Bug Fixes

4.20.3 (2023-08-15)

Bug Fixes

[Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.22.5 #173

Are you sure you want to change the base?

[Snyk] Upgrade @snyk/code-client from 4.12.4 to 4.22.5 #173

Conversation

NOUIY commented Nov 17, 2023

Snyk has created this PR to upgrade @snyk/code-client from 4.12.4 to 4.22.5.

4.22.5 (2023-10-26)

Bug Fixes

4.22.4 (2023-10-19)

Bug Fixes

4.22.3 (2023-10-05)

Bug Fixes

4.22.2 (2023-10-05)

Bug Fixes

4.22.1 (2023-09-28)

Bug Fixes

4.22.0 (2023-09-13)

Bug Fixes

Features

4.21.0 (2023-09-11)

Bug Fixes

Features

4.20.5 (2023-08-28)

Bug Fixes

4.20.4 (2023-08-15)

Bug Fixes

4.20.3 (2023-08-15)

Bug Fixes