[Snyk] Upgrade i18next from 19.8.0 to 21.8.14 #8

MarcelRaschke · 2022-08-20T03:04:45Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade i18next from 19.8.0 to 21.8.14.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

The recommended version is 89 versions ahead of your current version.
The recommended version was released a month ago, on 2022-07-13.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Access Restriction Bypass SNYK-JS-XMLHTTPREQUESTSSL-1255647	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary Code Injection SNYK-JS-XMLHTTPREQUESTSSL-1082936	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Input Validation SNYK-JS-URLPARSE-2407770	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TMPL-1583443	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary File Write SNYK-JS-TAR-1579155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-SOCKETIOPARSER-1056752	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-SIMPLEGET-2361683	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Privilege Management SNYK-JS-SHELLJS-2332187	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-PROTOBUFJS-2441248	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Directory Traversal SNYK-JS-MOMENT-2440688	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-MERGEDEEP-1070277	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-LODASHES-2434285	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Command Injection SNYK-JS-LODASHES-2434284	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434283	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Inadequate Encryption Strength SNYK-JS-KEYPAIR-1730326	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-JUSTSAFESET-1316267	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-I18NEXT-1065979	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Command Injection SNYK-JS-FINDPROCESS-1090284	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-CHARTJS-1018716	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-ASYNC-2441827	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Authorization Bypass SNYK-JS-URLPARSE-2407759	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Access Restriction Bypass SNYK-JS-URLPARSE-2401205	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Open Redirect SNYK-JS-URLPARSE-1533425	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Input Validation SNYK-JS-URLPARSE-1078283	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Insecure Defaults SNYK-JS-SOCKETIO-1024859	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-RAMDA-1582370	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PROMPTS-1729737	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-PATHVAL-596926	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Command Injection SNYK-JS-NODENOTIFIER-1035794	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-NODEFETCH-2342118	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-NESTEDPROPERTY-1022154	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-NESTEDPROPERTY-1022154	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-NANOID-2332193	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434289	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-I18NEXT-585930	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HTMLPARSESTRINGIFY2-1079307	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HAPISTATEHOOD-2769251	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-EVENTSOURCE-2823375	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-POLISHED-1298071	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: i18next

21.8.14 - 2022-07-13
- allow overriding keyPrefix option t function returned from getFixedT (does not work for normal t function)
21.8.13 - 2022-07-06
- types: new optional unescape option for react-i18next
21.8.12 - 2022-07-04
- fix: respect pluralSeparator for special _zero handling
21.8.11 - 2022-06-27
- fix: types should always come first in exports 1796
21.8.10 - 2022-06-16
- types: fix loaded event result
21.8.9 - 2022-06-07
- fix: deepFind for null values 1790
21.8.8 - 2022-06-03
- fix: loadNamespaces() doesn't keep resolving order when the second request completes before the first one 1785
21.8.7 - 2022-06-02
21.8.7
21.8.6 - 2022-06-02
- fix: regression introduced in v21.6.11, respect appendNamespaceToMissingKey for parseMissingKeyHandler 1507
21.8.5 - 2022-05-29
- fix: interpolation with $ in values resets nextIndex to wrong position with skipOnVariables 1782
21.8.4 - 2022-05-23
21.8.3 - 2022-05-18
21.8.2 - 2022-05-13
21.8.1 - 2022-05-11
21.8.0 - 2022-05-08
21.7.1 - 2022-05-06
21.7.0 - 2022-05-06
21.6.16 - 2022-04-11
21.6.15 - 2022-04-10
21.6.14 - 2022-03-09
21.6.13 - 2022-03-03
21.6.12 - 2022-02-23
21.6.11 - 2022-02-07
21.6.10 - 2022-01-26
21.6.9 - 2022-01-25
21.6.8 - 2022-01-25
21.6.7 - 2022-01-21
21.6.6 - 2022-01-11
21.6.5 - 2022-01-04
21.6.4 - 2021-12-28
21.6.3 - 2021-12-18
21.6.2 - 2021-12-16
21.6.1 - 2021-12-16
21.6.0 - 2021-12-08
21.5.6 - 2021-12-07
21.5.5 - 2021-12-07
21.5.4 - 2021-11-29
21.5.3 - 2021-11-23
21.5.2 - 2021-11-16
21.5.1 - 2021-11-16
21.5.0 - 2021-11-15
21.4.2 - 2021-11-09
21.4.1 - 2021-11-08
21.4.0 - 2021-11-02
21.3.3 - 2021-10-21
21.3.2 - 2021-10-16
21.3.1 - 2021-10-13
21.3.0 - 2021-10-12
21.2.6 - 2021-10-10
21.2.5 - 2021-10-10
21.2.4 - 2021-10-02
21.2.3 - 2021-10-01
21.2.2 - 2021-10-01
21.2.1 - 2021-10-01
21.2.0 - 2021-09-29
21.1.1 - 2021-09-27
21.1.0 - 2021-09-24
21.0.2 - 2021-09-23
21.0.1 - 2021-09-21
21.0.0 - 2021-09-20
20.6.1 - 2021-09-08
20.6.0 - 2021-09-01
20.5.0 - 2021-08-31
20.4.0 - 2021-08-10
20.3.5 - 2021-07-25
20.3.4 - 2021-07-20
20.3.3 - 2021-07-14
20.3.2 - 2021-06-17
20.3.1 - 2021-05-28
20.3.0 - 2021-05-22
20.2.4 - 2021-05-15
20.2.3 - 2021-05-15
20.2.2 - 2021-04-26
20.2.1 - 2021-04-07
20.2.0 - 2021-04-06
20.1.0 - 2021-03-24
20.0.0 - 2021-03-22
19.9.2 - 2021-03-09
19.9.1 - 2021-03-01
19.9.0 - 2021-02-24
19.8.9 - 2021-02-17
19.8.8 - 2021-02-16
19.8.7 - 2021-02-02
19.8.6 - 2021-02-01
19.8.5 - 2021-01-28
19.8.4 - 2020-11-18
19.8.3 - 2020-10-25
19.8.2 - 2020-10-06
19.8.1 - 2020-10-03
19.8.0 - 2020-10-02

from i18next GitHub release notes

Commit messages

Package name: i18next

26a4d27 21.8.14
b259638 allow overriding keyPrefix option t function returned from getFixedT remove ensureMFS call when generating share link ipfs/ipfs-webui#1801
db70987 update sponsors
b1697ca 21.8.13
b3c012a types: new optional unescape option for react-i18next
aa941d8 21.8.12
1967376 fix: respect pluralSeparator for special _zero handling Upgraded to repo version 10 and lost webui ipfs/ipfs-webui#1705
c211cf7 docs: correct some links of PRs and issues (chore(deps): bump ws from 6.2.1 to 6.2.2 ipfs/ipfs-webui#1799)
37d3dcc 21.8.11
c2f4807 release
a61d81c fix: `types` should always come first in `exports` (chore(deps): bump dns-packet from 1.3.1 to 1.3.4 ipfs/ipfs-webui#1796)
41e9a60 contributing info
2fb4b25 21.8.10
48e837f types: fix loaded event result
0bff38b 21.8.9
c63146e fix: deepFind for null values, fixes 1790
b1f6c36 21.8.8
674223d fix: loadNamespaces() does not keep resolving order when the second request completes before the first one Removing more than one file via bottom drawer's "Remove" does not work ipfs/ipfs-webui#1785
960e55b update changelog
194d22b 21.8.7
98c9833 format options trim and remove \
f4f1a99 21.8.6
4ea8ab1 fix: regression introduced in v21.6.11, respect `appendNamespaceToMissingKey` for `parseMissingKeyHandler`
11dd536 npm downloads badge