-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Fix for 1 vulnerabilities #106
base: master
Are you sure you want to change the base?
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-Y18N-1021887
Hard-Coded Secrets (111)
grafana/docs/sources/http_api/auth.md Line 127 in 4bd2033
grafana/docs/sources/http_api/data_source.md Line 302 in 4bd2033
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/scripts/deploy.sh Line 22 in 4bd2033
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/scripts/deploy.sh Line 30 in 4bd2033
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/scripts/deploy.sh Line 43 in 4bd2033
grafana/packages/jaeger-ui-components/src/TraceTimelineViewer/SpanDetail/KeyValuesTable.test.js Line 54 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 19 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 20 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 21 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 22 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 23 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 24 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 25 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 26 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 27 in 4bd2033
grafana/pkg/plugins/manifest_test.go Line 30 in 4bd2033
grafana/pkg/util/encoding_test.go Line 31 in 4bd2033
Line 13 in 4bd2033
grafana/public/app/core/utils/richHistory.ts Line 374 in 4bd2033
Line 514 in 4bd2033
Line 515 in 4bd2033
grafana/pkg/models/datasource_cache_test.go Line 412 in 4bd2033
grafana/packages/grafana-ui/src/components/DataSourceSettings/TLSAuthSettings.tsx Line 79 in 4bd2033
grafana/pkg/setting/setting_test.go Line 85 in 4bd2033
grafana/pkg/setting/setting_test.go Line 91 in 4bd2033
Line 2240 in 4bd2033
Line 936 in 4bd2033
grafana/docs/sources/http_api/user.md Line 365 in 4bd2033
grafana/docs/sources/http_api/org.md Line 336 in 4bd2033
grafana/docs/sources/http_api/org.md Line 418 in 4bd2033
grafana/docs/sources/http_api/auth.md Line 21 in 4bd2033
Line 84 in 4bd2033
Line 82 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 12 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 27 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 30 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 42 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 84 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 111 in 4bd2033
grafana/devenv/docker/ha_test/alerts.sh Line 117 in 4bd2033
Line 1330 in 4bd2033
Line 2086 in 4bd2033
Line 2793 in 4bd2033
grafana/devenv/docker/blocks/graphite1/conf/opt/graphite/webapp/graphite/local_settings.py Line 208 in 4bd2033
More info on how to fix Hard-Coded Secrets in General, Python and Javascript. Insecure Use of Dangerous Function (14)Line 56 in 4bd2033
More info on how to fix Insecure Use of Dangerous Function in Javascript and Python. Information Disclosure (3)
grafana/scripts/webpack/webpack.common.js Line 22 in 4bd2033
More info on how to fix Information Disclosure in Javascript. Insecure File Management (37)
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/install/bin/githubRelease.js Line 42 in 4bd2033
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/install/bin/githubRelease.js Line 47 in 4bd2033
grafana/packages/grafana-toolkit/docker/grafana-plugin-ci-alpine/install/bin/githubRelease.js Line 48 in 4bd2033
More info on how to fix Insecure File Management in Javascript and Python. Insecure Use of Regular Expressions (6)grafana/packages/jaeger-ui-components/src/TraceTimelineViewer/SpanDetail/AccordianLogs.test.js Line 59 in 4bd2033
grafana/public/vendor/bootstrap/bootstrap.js Line 1170 in 4bd2033
grafana/public/vendor/flot/jquery.flot.js Line 32 in 4bd2033
grafana/scripts/webpack/webpack.hot.js Line 113 in 4bd2033
More info on how to fix Insecure Use of Regular Expressions in Javascript. Insecure Use of Language/Framework API (1)
More info on how to fix Insecure Use of Language/Framework API in Python. Insecure Processing of Data (3)
More info on how to fix Insecure Processing of Data in Python and Javascript. Vulnerable Libraries (1)
More info on how to fix Vulnerable Libraries in Go. 👉 Go to the dashboard for detailed results. 📥 Happy? Share your feedback with us. |
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, CVSS 7.3
SNYK-JS-Y18N-1021887
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: jest
The new version differs by 49 commits.See the full diff
Package name: webpack
The new version differs by 250 commits.See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic