[Snyk] Upgrade: lodash, adm-zip, body-parser, cfenv, consolidate, dustjs-helpers, dustjs-linkedin, ejs, errorhandler, express, express-fileupload, express-session, file-type, hbs, humanize-ms, jquery, marked, moment, mongodb, mongoose, ms, npmconf, st, stream-buffers, tap, typeorm, validator #1328
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
lodash
⚠️ This is a major version upgrade, and may be a breaking change | 2 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 3 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 2 months ago
⚠️ This is a major version upgrade, and may be a breaking change | a month ago
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
⚠️ This is a major version upgrade, and may be a breaking change | 24 days ago
⚠️ This is a major version upgrade, and may be a breaking change | 3 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 21 days ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 6 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 3 years ago
⚠️ This is a major version upgrade, and may be a breaking change | a month ago
from 4.17.4 to 4.17.21 | 14 versions ahead of your current version | 4 years ago
on 2021-02-20
adm-zip
from 0.4.7 to 0.5.15 | 23 versions ahead of your current version | a month ago
on 2024-08-05
body-parser
from 1.9.0 to 1.20.2 | 37 versions ahead of your current version | 2 years ago
on 2023-02-22
cfenv
from 1.2.2 to 1.2.4 | 2 versions ahead of your current version | 3 years ago
on 2021-04-07
consolidate
from 0.14.5 to 1.0.4 | 7 versions ahead of your current version
on 2024-07-10
dustjs-helpers
from 1.5.0 to 1.7.4 | 9 versions ahead of your current version | 7 years ago
on 2017-12-09
dustjs-linkedin
from 2.5.0 to 3.0.1 | 13 versions ahead of your current version
on 2021-12-29
ejs
from 1.0.0 to 3.1.10 | 47 versions ahead of your current version
on 2024-04-12
errorhandler
from 1.2.0 to 1.5.1 | 17 versions ahead of your current version | 5 years ago
on 2019-05-09
express
from 4.12.4 to 4.19.2 | 29 versions ahead of your current version | 6 months ago
on 2024-03-25
express-fileupload
from 0.0.5 to 1.5.1 | 44 versions ahead of your current version
on 2024-07-13
express-session
from 1.17.2 to 1.18.0 | 2 versions ahead of your current version | 8 months ago
on 2024-01-28
file-type
from 8.1.0 to 19.4.1 | 86 versions ahead of your current version
on 2024-08-14
hbs
from 4.0.4 to 4.2.0 | 6 versions ahead of your current version | 3 years ago
on 2021-11-17
humanize-ms
from 1.0.1 to 1.2.1 | 3 versions ahead of your current version | 7 years ago
on 2017-05-19
jquery
from 2.2.4 to 3.7.1 | 21 versions ahead of your current version
on 2023-08-28
marked
from 0.3.5 to 14.1.0 | 138 versions ahead of your current version
on 2024-08-26
moment
from 2.15.1 to 2.30.1 | 33 versions ahead of your current version | 9 months ago
on 2023-12-27
mongodb
from 3.5.9 to 6.8.0 | 195 versions ahead of your current version
on 2024-06-27
mongoose
from 4.2.4 to 8.6.0 | 592 versions ahead of your current version
on 2024-08-28
ms
from 0.7.3 to 2.1.3 | 6 versions ahead of your current version
on 2020-12-08
npmconf
from 0.0.24 to 2.1.3 | 49 versions ahead of your current version
on 2018-05-11
st
from 0.2.4 to 3.0.0 | 20 versions ahead of your current version
on 2021-05-20
stream-buffers
from 3.0.2 to 3.0.3 | 1 version ahead of your current version | 3 months ago
on 2024-06-17
tap
from 11.1.5 to 21.0.1 | 255 versions ahead of your current version
on 2024-08-13
typeorm
from 0.2.24 to 0.3.20 | 526 versions ahead of your current version | 8 months ago
on 2024-01-26
validator
from 13.5.2 to 13.12.0 | 5 versions ahead of your current version | 4 months ago
on 2024-05-09
Issues fixed by the recommended upgrade:
SNYK-JS-SETVALUE-450213
SNYK-JS-SETVALUE-1540541
SNYK-JS-ADMZIP-1065796
npm:adm-zip:20180415
SNYK-JS-HANDLEBARS-1056767
SNYK-JS-HANDLEBARS-173692
SNYK-JS-LODASH-6139239
SNYK-JS-LODASH-73638
SNYK-JS-EXPRESSFILEUPLOAD-473997
SNYK-JS-JQUERY-567880
npm:negotiator:20160616
SNYK-JS-AJV-584908
SNYK-JS-ANSIREGEX-1583908
SNYK-JS-ANSIREGEX-1583908
SNYK-JS-ANSIREGEX-1583908
SNYK-JS-EXPRESSFILEUPLOAD-595969
SNYK-JS-HANDLEBARS-1056767
SNYK-JS-HANDLEBARS-469063
SNYK-JS-HANDLEBARS-480388
SNYK-JS-DECODEURICOMPONENT-3149970
SNYK-JS-ANSIREGEX-1583908
SNYK-JS-ASYNC-2441827
SNYK-JS-BL-608877
SNYK-JS-HANDLEBARS-534478
SNYK-JS-DICER-2311764
SNYK-JS-MICROMATCH-6838728
SNYK-JS-LODASH-608086
SNYK-JS-LODASH-6139239
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-450202
SNYK-JS-LODASH-567746
SNYK-JS-LODASH-608086
SNYK-JS-MONGOOSE-5777721
npm:qs:20170213
SNYK-JS-QS-3153490
SNYK-JS-SETVALUE-1540541
npm:mongoose:20160116
SNYK-JS-MQUERY-1050858
SNYK-JS-MQUERY-1089718
SNYK-JS-QS-3153490
npm:qs:20170213
SNYK-JS-QS-3153490
SNYK-JS-SETVALUE-450213
SNYK-JS-TYPEORM-590152
SNYK-JS-UNSETVALUE-2400660
SNYK-JS-Y18N-1021887
SNYK-JS-Y18N-1021887
npm:npmconf:20180512
npm:st:20171013
npm:fresh:20170908
npm:negotiator:20160616
npm:negotiator:20160616
SNYK-JS-MIXINDEEP-450212
SNYK-JS-MOMENT-2440688
SNYK-JS-MONGODB-473855
SNYK-JS-MONGOOSE-2961688
SNYK-JS-HANDLEBARS-567742
SNYK-JS-HANDLEBARS-1279029
SNYK-JS-LODASH-73639
npm:lodash:20180130
SNYK-JS-HIGHLIGHTJS-1045326
SNYK-JS-HIGHLIGHTJS-1048676
SNYK-JS-HANDLEBARS-1279029
SNYK-JS-EXPRESS-6474509
SNYK-JS-BABELTRAVERSE-5962463
SNYK-JS-HANDLEBARS-534988
SNYK-JS-DUSTJSLINKEDIN-1089257
npm:dustjs-linkedin:20160819
SNYK-JS-HANDLEBARS-174183
SNYK-JS-HANDLEBARS-469063
SNYK-JS-HANDLEBARS-480388
SNYK-JS-HANDLEBARS-534478
SNYK-JS-HANDLEBARS-534988
SNYK-JS-INI-1048974
SNYK-JS-INI-1048974
SNYK-JS-JQUERY-565129
SNYK-JS-LODASH-73638
npm:marked:20150520
npm:marked:20170112
npm:marked:20170815
SNYK-JS-JSONSCHEMA-1920922
SNYK-JS-KERBEROS-568900
npm:marked:20170907
npm:marked:20180225
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-450202
SNYK-JS-LODASH-567746
SNYK-JS-HANDLEBARS-567742
SNYK-JS-HOSTEDGITINFO-1088355
SNYK-JS-ISTANBULREPORTS-2328088
SNYK-JS-JQUERY-174006
SNYK-JS-LODASH-73639
SNYK-JS-MARKED-174116
SNYK-JS-MARKED-2342073
SNYK-JS-MARKED-2342082
SNYK-JS-MARKED-451540
SNYK-JS-MARKED-584281
npm:jquery:20150627
npm:marked:20170815-1
SNYK-JS-LODASH-1018905
SNYK-JS-MINIMIST-559764
SNYK-JS-MINIMIST-559764
SNYK-JS-LODASH-1018905
SNYK-JS-REQUEST-3361831
npm:semver:20150403
SNYK-JS-MPATH-1577289
SNYK-JS-PATHPARSE-1077067
SNYK-JS-TOUGHCOOKIE-5672873
SNYK-JS-UGLIFYJS-1727251
SNYK-JS-UGLIFYJS-1727251
SNYK-JS-UNDERSCORE-1080984
SNYK-JS-VALIDATOR-1090599
SNYK-JS-VALIDATOR-1090600
SNYK-JS-VALIDATOR-1090601
SNYK-JS-VALIDATOR-1090602
SNYK-JS-XML2JS-5414874
SNYK-JS-YARGSPARSER-560381
SNYK-JS-YARGSPARSER-560381
npm:st:20140206
npm:mem:20180117
npm:ms:20151024
SNYK-JS-MINIMIST-559764
npm:moment:20161019
SNYK-JS-MONGOOSE-1086688
SNYK-JS-MONGOOSE-472486
SNYK-JS-KINDOF-537849
SNYK-JS-MINIMIST-2429795
SNYK-JS-MINIMIST-2429795
SNYK-JS-MINIMIST-2429795
npm:debug:20170905
npm:debug:20170905
npm:mime:20170907
npm:mime:20170907
npm:ms:20170412
npm:ms:20170412
npm:ms:20170412
SNYK-JS-MINIMIST-2429795
npm:moment:20170905
Release notes
Package name: lodash
Bump to v4.17.21
Bump to v4.17.20.
Bump to v4.17.19
Rebuild lodash and docs
4.17.15
Package name: adm-zip
What's Changed
New Contributors
Full Changelog: v0.5.14...v0.5.15
Fixed an issue introduced on version 0.5.13 requiring a new mandatory parameter on the inflater on nodejs version >= 15
Fixed extraction error
v0.5.9
v0.5.8
v0.5.7
Package name: body-parser
strict
eval
usage withFunction
constructorprocess
to check for listeners__proto__
keyspb
) support<...