[Snyk] Upgrade @oclif/command from 1.5.19 to 1.8.16 #66

snyk-bot · 2022-04-04T10:34:31Z

Snyk has created this PR to upgrade @oclif/command from 1.5.19 to 1.8.16.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 24 versions ahead of your current version.
The recommended version was released 4 months ago, on 2021-12-17.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary File Write SNYK-JS-TAR-1579155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-LODASHES-2434285	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Command Injection SNYK-JS-LODASHES-2434284	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434283	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary Code Execution SNYK-JS-HANDLEBARS-534478	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-AWSSDK-1059424	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-TRIMOFFNEWLINES-1296850	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-RAMDA-1582370	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-PATHVAL-596926	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service SNYK-JS-NODEFETCH-674311	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-NODEFETCH-2342118	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434289	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-FLAT-596927	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-HANDLEBARS-534988	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-DOTPROP-543489	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @oclif/command

1.8.16 - 2021-12-17
1.8.16 (2021-12-17)
1.8.15 - 2021-12-14
1.8.15 (2021-12-14)

Bug Fixes
- bump @ oclif/help (#303) (d088346)
1.8.14 - 2021-12-14
1.8.14 (2021-12-14)

Bug Fixes
- remove @ oclif/plugin-help (#302) (3a00d2a)
1.8.13 - 2021-12-10
1.8.13 (2021-12-10)

Bug Fixes
- bump deps (#298) (938a11c)
- recursive installation failure due to dep cycle (18af8a4)
1.8.13 (2021-12-10)

Bug Fixes
- bump deps (#298) (938a11c)
- recursive installation failure due to dep cycle (18af8a4)
1.8.12 - 2021-12-09
1.8.12 (2021-12-09)

Bug Fixes
- bump plugin-help versions (#297) (1af07cd)
- bump version to 1.8.12 (32d9d93)
1.8.12 (2021-12-09)

Bug Fixes
- bump plugin-help versions (#297) (1af07cd)
- bump version to 1.8.12 (32d9d93)
1.8.11 - 2021-12-09
1.8.11 (2021-12-09)

Bug Fixes
- bump deps (#296) (9daa780)
1.8.10 - 2021-12-08
1.8.10 (2021-12-08)

Bug Fixes
- remove transient dep on lodash.template (#295) (77e135c)
1.8.9 - 2021-12-06
1.8.9 (2021-12-06)

Bug Fixes
- more dep bumps (#289) (468abae)
1.8.8 - 2021-12-06
1.8.8 (2021-12-06)

Bug Fixes
- bump-deps (#283) (4c7aee6)
1.8.7 - 2021-12-01
1.8.7 (2021-12-01)

Bug Fixes
- bump deps (#282) (5504b70)
1.8.6 - 2021-11-29
1.8.5 - 2021-11-29
1.8.4 - 2021-11-23
1.8.3 - 2021-11-18
1.8.2 - 2021-11-18
1.8.1 - 2021-11-18
1.8.0 - 2020-08-03
1.7.0 - 2020-06-29
1.6.1 - 2020-05-05
1.6.0 - 2020-05-01
1.6.0-rc1.2 - 2020-04-22
1.6.0-rc1.1 - 2020-04-22
1.6.0-rc1 - 2020-04-22
1.5.20 - 2020-04-20
1.5.19 - 2019-09-05

from @oclif/command GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade @oclif/command from 1.5.19 to 1.8.16. See this package in npm: https://www.npmjs.com/package/@oclif/command See this project in Snyk: https://app.snyk.io/org/hafixo/project/8c113c33-5ae1-4654-b7ce-9d9a473dbe1b?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade @oclif/command from 1.5.19 to 1.8.16 #66

[Snyk] Upgrade @oclif/command from 1.5.19 to 1.8.16 #66

snyk-bot commented Apr 4, 2022

1.8.16 (2021-12-17)

1.8.15 (2021-12-14)

Bug Fixes

1.8.14 (2021-12-14)

Bug Fixes

1.8.13 (2021-12-10)

Bug Fixes

1.8.13 (2021-12-10)

Bug Fixes

1.8.12 (2021-12-09)

Bug Fixes

1.8.12 (2021-12-09)

Bug Fixes

1.8.11 (2021-12-09)

Bug Fixes

1.8.10 (2021-12-08)

Bug Fixes

1.8.9 (2021-12-06)

Bug Fixes

1.8.8 (2021-12-06)

Bug Fixes

1.8.7 (2021-12-01)

Bug Fixes

[Snyk] Upgrade @oclif/command from 1.5.19 to 1.8.16 #66

Are you sure you want to change the base?

[Snyk] Upgrade @oclif/command from 1.5.19 to 1.8.16 #66

Conversation

snyk-bot commented Apr 4, 2022

Snyk has created this PR to upgrade @oclif/command from 1.5.19 to 1.8.16.

1.8.16 (2021-12-17)

1.8.15 (2021-12-14)

Bug Fixes

1.8.14 (2021-12-14)

Bug Fixes

1.8.13 (2021-12-10)

Bug Fixes

1.8.13 (2021-12-10)

Bug Fixes

1.8.12 (2021-12-09)

Bug Fixes

1.8.12 (2021-12-09)

Bug Fixes

1.8.11 (2021-12-09)

Bug Fixes

1.8.10 (2021-12-08)

Bug Fixes

1.8.9 (2021-12-06)

Bug Fixes

1.8.8 (2021-12-06)

Bug Fixes

1.8.7 (2021-12-01)

Bug Fixes