Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade @sanity/google-maps-input from 2.1.6 to 2.6.0 #51

Open
wants to merge 1 commit into
base: next
Choose a base branch
from
Open

[Snyk] Upgrade @sanity/google-maps-input from 2.1.6 to 2.6.0 #51

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade @sanity/google-maps-input from 2.1.6 to 2.6.0.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 32 versions ahead of your current version.
  • The recommended version was released 23 days ago, on 2021-03-04.
Release notes
Package name: @sanity/google-maps-input
  • 2.6.0 - 2021-03-04

    Upgrade the Command Line Interface (CLI) with:

    npm install --global @ sanity/cli

    Upgrade Sanity Studio with:

    sanity upgrade

    ✨ Highlights

    Other features

    • Adds ability to delete incomplete uploads in the UI

    🐛 Notable bugfixes

    • Fixes issue with message saying "Files not supported 'unknown.txt'" sometimes appearing on drag'n'drop in studio
    • Fixes various focus and paste related visual issues in image and file inputs

    📓 Full changelog

    Author Message Commit
    Bjørge Næss chore: add depcheck script for checking monorepo packages 03be7ab
    Bjørge Næss ci(cypress): read env vars from local .env 1f35fe1
    Bjørge Næss ci(cypress): run e2e tests on the studio production build 85c54c3
    Bjørge Næss ci(cypress) build all monorepo packages before building test-studio e2f5292
    Bjørge Næss chore(base): fix layer=true React props warning 83891a9
    Bjørge Næss chore(imagetool) Disable eslint rules causing errors 11576f1
    Bjørge Næss chore(base) Add JSX to eslint globals a747217
    Benedicte Emilie Brækken chore(form-builder) Fix lint error 7e4668c
    Benedicte Emilie Brækken chore(form-builder) Ignore no-console console.warn 29a1bfc
    Marius Lundgård chore(form-builder): disable import/no-unresolved rule in TS file 735d35f
    Benedicte Emilie Brækken refactor(base): expose ScrollContainer as package export in addition to part 0a755c9
    Bjørge Næss fix(base): import legacy scroll container/monitor from components 6ebf786
    Bjørge Næss fix(form-builder): use capture for scroll listener in ScrollContainer d892fed
    Bjørge Næss fix(form-builder): Only show form field header in FormFieldSet when a title prop is given 766ad10
    Bjørge Næss perf(desk-tool): always re-use same focus path instance d79a5da
    Marius Lundgård fix(base): increase z-index of change indicator wrapper on hover so icon is not hidden 3abf1cb
    Marius Lundgård refactor(examples): add more validation examples 01b85f0
    Marius Lundgård perf(form-builder): use memoization to prevent unecessary rerendering of primitive inputs ca4e0d7
    Bjørge Næss fix(base): make sure ToggleButton's delegate button gets type="button" 2675be8
    Marius Lundgård refactor(base): add support for using toasts in studio 1667a23
    Marius Lundgård refactor(desk-tool): replace snackbars with toasts 54bf01f
    Marius Lundgård fix(base): introduce a z-offset for toasts fc3ac66
    Bjørge Næss fix(base): add workaround for duplicate error toasts in dev 3c6921c
    Bjørge Næss fix(form-builder): add new Alert component 4da7b5e
    Bjørge Næss refactor(form-builder): use new alert and formfield components in reference input cbfa44c
    Bjørge Næss chore(form-builder): remove stories adfbc0f
    Bjørge Næss refactor(form-builder): cleanup typings a35b8aa
    Bjørge Næss fix(base): export change indicators from base/components bd15312
    Bjørge Næss refactor(form-builder): add transitional components and legacy parts fb87224
    Bjørge Næss refactor(form-builder): migrate image and file inputs to Sanity UI ab3e476
    Bjørge Næss fix(types): add asset source typings 631bd1e
    Bjørge Næss fix(form-builder): disable support for datatransfer with kind=string b2682a3
    Bjørge Næss fix(form-builder) give image and file inputs proper focus ring style c6a9a3a
    Bjørge Næss fix(form-builder): add padding to the AssetBackground ba22132
    Bjørge Næss fix(form-builder) add padding to default asset source dialog 3d8f9a4
    Bjørge Næss fix(form-builder): add onClose handler on default asset source dialog 893bf44
    Bjørge Næss fix(form-builder): Prevent layout shift when selecting/uploading image 6f11969
    Bjørge Næss perf(form-builder): integrate perf fixes from main a997183
    Marius Lundgård refactor(form-builder): improve use of @ sanity/ui in FileInput 55665eb
    Marius Lundgård style(form-builder): disable eslint rules and move todo comment f8a3913
    Marius Lundgård refactor(form-builder): adjust spacing and fix lint warnings c8875b0
    Marius Lundgård refactor(form-builder): improve UI of DefaultSource 7a0a1bf
    Marius Lundgård refactor(form-builder): improve styles of image and file inputs b2f8056
    Marius Lundgård fix(form-builder): fix typo in image upload placeholder ee9b6fd
    Bjørge Næss fix(form-builder): make the "Paste"-text on file & image input fade in/out on focus/blur a6aed52
    Marius Lundgård fix(form-builder): disable focus of ImageInput and FileInput when read-only b2f286a
    Marius Lundgård refactor(form-builder): do not render fieldset level when ImageInput and FileInput only has asset e7d50e6
    Bjørge Næss fix(form-builder): make the Paste-text on file & image input fade in/out on focus/blur b79cec2
    Bjørge Næss fix(form-builder): add workaround for safari rendering select file button as native button b2422e9
  • 2.5.1-canary.79 - 2021-03-03
  • 2.5.0 - 2021-03-02
    Read more
  • 2.4.4-canary.81 - 2021-03-01
  • 2.4.4-canary.75 - 2021-02-26
  • 2.4.3 - 2021-02-25

    Upgrade the Command Line Interface (CLI) with:

    npm install --global @ sanity/cli

    Upgrade Sanity Studio with:

    sanity upgrade

    🐛 Notable bugfixes

    • Fixes an issue that made the document actions render behind the document editor in some cases.
    • Fixes minor CSS issues of Studio hints.

    📓 Full changelog

    Author Message Commit
    Bjørge Næss ci(cypress): increase pageLoadTimeout 963fc4d
    Marius Lundgård fix(desk-tool): fix pane footer’s z-offset (#2326) 3a09818
    Marius Lundgård chore: update @ sanity/ui 7fea9ef
    Marius Lundgård fix(default-layout): fix position of SideCar 4780eab
    Marius Lundgård fix(studio-hints): add missing border style 36ab406
  • 2.4.1 - 2021-02-23
    Read more
  • 2.4.0 - 2021-02-22
    Read more
  • 2.3.9-canary.32 - 2021-02-19
  • 2.3.8 - 2021-02-18
    Read more
  • 2.3.7 - 2021-02-16
    Read more
  • 2.3.7-canary.22 - 2021-02-12
  • 2.3.6 - 2021-02-11
    Read more
  • 2.3.5 - 2021-02-10
  • 2.3.5-canary.23 - 2021-02-12
  • 2.3.5-canary.22 - 2021-02-11
  • 2.3.5-canary.18 - 2021-02-10
  • 2.3.5-canary.17 - 2021-02-10
  • 2.3.4 - 2021-02-09
  • 2.3.3 - 2021-02-04
  • 2.3.2 - 2021-02-02
  • 2.3.0 - 2021-02-01
  • 2.2.6 - 2021-02-01
  • 2.2.6-ui-layers.22 - 2021-01-29
  • 2.2.6-ui-layers.19 - 2021-01-28
  • 2.2.5 - 2021-01-28
  • 2.2.4 - 2021-01-27
  • 2.2.3 - 2021-01-26
  • 2.2.2 - 2021-01-26
  • 2.2.0 - 2021-01-25
  • 2.1.7-next.22 - 2021-01-22
  • 2.1.7-next.21 - 2021-01-21
  • 2.1.6 - 2021-01-14
from @sanity/google-maps-input GitHub release notes
Commit messages
Package name: @sanity/google-maps-input
  • b02bf58 v2.6.0
  • b2422e9 fix(form-builder): add workaround for safari rendering select file button as native button
  • b79cec2 fix(form-builder): make the `Paste`-text on file & image input fade in/out on focus/blur
  • e7d50e6 refactor(form-builder): do not render fieldset level when ImageInput and FileInput only has asset
  • b2f286a fix(form-builder): disable focus of ImageInput and FileInput when read-only
  • a6aed52 fix(form-builder): make the "Paste"-text on file & image input fade in/out on focus/blur
  • ee9b6fd fix(form-builder): fix typo in image upload placeholder
  • b2f8056 refactor(form-builder): improve styles of image and file inputs
  • 7a0a1bf refactor(form-builder): improve UI of DefaultSource
  • c8875b0 refactor(form-builder): adjust spacing and fix lint warnings
  • f8a3913 style(form-builder): disable eslint rules and move todo comment
  • 55665eb refactor(form-builder): improve use of `@ sanity/ui` in FileInput
  • a997183 perf(form-builder): integrate perf fixes from main
  • 6f11969 fix(form-builder): Prevent layout shift when selecting/uploading image
  • 893bf44 fix(form-builder): add `onClose` handler on default asset source dialog
  • 3d8f9a4 fix(form-builder) add padding to default asset source dialog
  • ba22132 fix(form-builder): add padding to the AssetBackground
  • c6a9a3a fix(form-builder) give image and file inputs proper focus ring style
  • b2682a3 fix(form-builder): disable support for datatransfer with kind=string
  • 631bd1e fix(types): add asset source typings
  • ab3e476 refactor(form-builder): migrate image and file inputs to Sanity UI
  • fb87224 refactor(form-builder): add transitional components and legacy parts
  • bd15312 fix(base): export change indicators from base/components
  • a35b8aa refactor(form-builder): cleanup typings

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@mistaken-pull-closer
Copy link

Thanks for your submission.

It appears that you've created a pull request using one of our repository's branches. Since this is
almost always a mistake, we're going to go ahead and close this. If it was intentional, please
let us know what you were intending and we can see about reopening it.

Thanks again!

@mistaken-pull-closer mistaken-pull-closer bot added the invalid This doesn't seem right label Mar 27, 2021
@pull-dog
Copy link

pull-dog bot commented Mar 27, 2021
edited
Loading

*Ruff* 🐶 I wasn't able to find any Docker Compose files in your repository at any of the given paths in the pull-dog.json configuration file, or the default docker-compose.yml file 😩 Make sure the given paths are correct.

Files checked:

  • docker-compose.yml
What is this?

Pull Dog is a GitHub app that makes test environments for your pull requests using Docker, from a docker-compose.yml file you specify. It takes 19 seconds to set up (we counted!) and there's a free plan available.

Visit our website to learn more.

Commands
  • @pull-dog up to reprovision or provision the server.
  • @pull-dog down to delete the provisioned server.
Troubleshooting

Need help? Don't hesitate to file an issue in our repository

Configuration

{
  "isLazy": false,
  "dockerComposeYmlFilePaths": [
    "docker-compose.yml"
  ],
  "expiry": "00:00:00",
  "conversationMode": "singleComment"
}

Trace ID
e2ac6050-8f52-11eb-9208-f775dd234442

@guardrails
Copy link

guardrails bot commented Mar 27, 2021

⚠️ We detected security issues in this pull request:
Mode: paranoid | Total findings: 189 | Considered vulnerability: 0

Hard-Coded Secrets (36)

sanity/examples/blog-studio/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/blog-studio/config/.checksums

Line 4 in 6a22520

"@sanity/data-aspects": "ba5c2649cc1b1c39ae92b7daf2661f95fa79d7325073ffd410245d2717b240e9",

sanity/examples/blog-studio/config/.checksums

Line 5 in 6a22520

"@sanity/google-maps-input": "57ae3a403ce6a070b31ec6fa1f3c8339cafa66661eaddba1d4d5ee3cc2197ec2",

sanity/examples/blog-studio/config/.checksums

Line 6 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f",

sanity/examples/blog-studio/config/.checksums

Line 7 in 6a22520

"@sanity/form-builder": "b38478227ba5e22c91981da4b53436df22e48ff25238a55a973ed620be5068aa"

sanity/examples/blog-studio/config/@sanity/google-maps-input.json

Line 2 in 6a22520

"apiKey": "AIzaSyDwxpdp6WJwj9VjoVCjEudljhkR1inzhSE",

sanity/examples/clean-studio/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/clean-studio/config/.checksums

Line 4 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f",

sanity/examples/clean-studio/config/.checksums

Line 5 in 6a22520

"@sanity/data-aspects": "d199e2c199b3e26cd28b68dc84d7fc01c9186bf5089580f2e2446994d36b3cb6"

sanity/examples/design-studio/config/@sanity/google-maps-input.json

Line 2 in 6a22520

"apiKey": "AIzaSyDwxpdp6WJwj9VjoVCjEudljhkR1inzhSE",

sanity/examples/ecommerce-studio/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/ecommerce-studio/config/.checksums

Line 4 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f",

sanity/examples/ecommerce-studio/config/.checksums

Line 5 in 6a22520

"@sanity/data-aspects": "d199e2c199b3e26cd28b68dc84d7fc01c9186bf5089580f2e2446994d36b3cb6"

sanity/examples/example-studio/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/example-studio/config/.checksums

Line 4 in 6a22520

"@sanity/data-aspects": "ba5c2649cc1b1c39ae92b7daf2661f95fa79d7325073ffd410245d2717b240e9",

sanity/examples/example-studio/config/.checksums

Line 5 in 6a22520

"@sanity/storybook": "526dea3b461fda217e7150d12395d0ec639cba0155c05a084b85bcf2c44995a3",

sanity/examples/example-studio/config/.checksums

Line 6 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f",

sanity/examples/example-studio/config/.checksums

Line 7 in 6a22520

"@sanity/form-builder": "b38478227ba5e22c91981da4b53436df22e48ff25238a55a973ed620be5068aa"

sanity/examples/movies-studio/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/movies-studio/config/.checksums

Line 4 in 6a22520

"@sanity/data-aspects": "ba5c2649cc1b1c39ae92b7daf2661f95fa79d7325073ffd410245d2717b240e9",

sanity/examples/movies-studio/config/.checksums

Line 5 in 6a22520

"@sanity/google-maps-input": "57ae3a403ce6a070b31ec6fa1f3c8339cafa66661eaddba1d4d5ee3cc2197ec2",

sanity/examples/movies-studio/config/.checksums

Line 6 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f"

sanity/examples/movies-studio/config/@sanity/google-maps-input.json

Line 2 in 6a22520

"apiKey": "AIzaSyC1J6PVAOELsy1vyTh-x38GadFv70g2Qcc",

sanity/examples/storybook/config/.checksums

Line 3 in 6a22520

"@sanity/default-layout": "bb034f391ba508a6ca8cd971967cbedeb131c4d19b17b28a0895f32db5d568ea",

sanity/examples/storybook/config/.checksums

Line 4 in 6a22520

"@sanity/data-aspects": "ba5c2649cc1b1c39ae92b7daf2661f95fa79d7325073ffd410245d2717b240e9",

sanity/examples/storybook/config/.checksums

Line 5 in 6a22520

"@sanity/google-maps-input": "57ae3a403ce6a070b31ec6fa1f3c8339cafa66661eaddba1d4d5ee3cc2197ec2",

sanity/examples/storybook/config/.checksums

Line 6 in 6a22520

"@sanity/storybook": "526dea3b461fda217e7150d12395d0ec639cba0155c05a084b85bcf2c44995a3",

sanity/examples/storybook/config/.checksums

Line 7 in 6a22520

"@sanity/default-login": "6fb6d3800aa71346e1b84d95bbcaa287879456f2922372bb0294e30b968cd37f",

sanity/examples/storybook/config/.checksums

Line 8 in 6a22520

"@sanity/form-builder": "b38478227ba5e22c91981da4b53436df22e48ff25238a55a973ed620be5068aa"

sanity/packages/@sanity/base/src/datastores/presence/mock-events.ts

Line 46 in 6a22520

{_key: '1685e372c40f'},

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/fromTheWild3/input.html

Line 29 in 6a22520

{"data":{"componentType":"socialSharing","clientSideRendering":false,"socialSharing":{"ampExperience":false,"componentVariation":"social-sharing-inline","isFavArticleEnabled":false,"openInNewWindowText":"Opens in new window","componentPosition":3,"globalPageUrls":{"profilePagePath":""},"locale":"en-GB","chineseLocaleFlag":false,"pdfServiceUrl":"","randomNumber":"387e15f84e912450e220526b344e8b2c","componentName":"socialSharing","headline":"Share this article","isFavRecipesEnabled":false,"isWebOptimized":true,"isFavProductEnabled":false,"brandName":"magnumv2","cookielessExperience":false,"favouritesText":{"favConfirmCTALabel":"Saved! <br>Product saved on your favourites list.","favButtonCTALabel":"Add to favourites","favButtonCTALabelActive":"Added to favourites"},"rtl":"false","socialMedia":[{"name":"facebook","title":"Share to facebook","url":"https://www.facebook.com/?u=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"like-share","label":"facebook","category":"referral","type":"trackEvent"}},{"name":"twitter","title":"Share to twitter","url":"https://twitter.com/intent/tweet?url=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"followOntwitter-twitter","label":"twitter","category":"referral","type":"trackEvent"}},{"name":"email","title":"Share to email","url":"mailto:?https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"email","label":"email","category":"referral","type":"trackEvent"}}],"componentNotSupportedMessage":"The feature is not available on your device, to enjoy the full experience, please visit our website on desktop, tablets or smartphones.","market":"en_gb","errorPagePath":"","isEnabled":true,"anchorTitle":"Click here to go to link","style":{"type":"","class":""},"componentExperienceVariant":"default","additionalBrands":[]},"viewType":"social-sharing-inline","randomNumber":"387e15f84e912450e220526b344e8b2c","isContainer":false,"resourceType":"unilever-iea/components/socialSharing"}}

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/fromTheWild3/input.html

Line 178 in 6a22520

{"data":{"componentType":"socialSharing","clientSideRendering":false,"socialSharing":{"ampExperience":false,"componentVariation":"social-sharing-inline","isFavArticleEnabled":false,"openInNewWindowText":"Opens in new window","componentPosition":14,"globalPageUrls":{"profilePagePath":""},"locale":"en-GB","chineseLocaleFlag":false,"pdfServiceUrl":"","randomNumber":"0e705745c5517a4ac6936dcf0db892aa","componentName":"socialSharing","headline":"Share this article","isFavRecipesEnabled":false,"isWebOptimized":true,"isFavProductEnabled":false,"brandName":"magnumv2","cookielessExperience":false,"favouritesText":{"favConfirmCTALabel":"Saved! <br>Product saved on your favourites list.","favButtonCTALabel":"Add to favourites","favButtonCTALabelActive":"Added to favourites"},"rtl":"false","socialMedia":[{"name":"facebook","title":"Share to facebook","url":"https://www.facebook.com/?u=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"like-share","label":"facebook","category":"referral","type":"trackEvent"}},{"name":"twitter","title":"Share to twitter","url":"https://twitter.com/intent/tweet?url=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"followOntwitter-twitter","label":"twitter","category":"referral","type":"trackEvent"}},{"name":"email","title":"Share to email","url":"mailto:?https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html&text=Rebecca+Minkoff%27s+Dream+Magnum&Subject=Rebecca+Minkoff%27s+Dream+Magnum&body=https%3A%2F%2Fwww.magnumicecream.com%2Fuk%2Fstories%2Ffashion%2Frebecca-minkoff-dream-magnum.html","containertag":{"action":"email","label":"email","category":"referral","type":"trackEvent"}}],"componentNotSupportedMessage":"The feature is not available on your device, to enjoy the full experience, please visit our website on desktop, tablets or smartphones.","market":"en_gb","errorPagePath":"","isEnabled":true,"anchorTitle":"Click here to go to link","style":{"type":"","class":""},"componentExperienceVariant":"default","additionalBrands":[]},"viewType":"social-sharing-inline","randomNumber":"0e705745c5517a4ac6936dcf0db892aa","isContainer":false,"resourceType":"unilever-iea/components/socialSharing"}}

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/fromTheWild3/input.html

Line 389 in 6a22520

{"data":{"componentType":"relatedProducts","clientSideRendering":false,"relatedProducts":{"ampExperience":false,"componentVariation":"defaultView","openInNewWindowText":"Opens in new window","componentPosition":19,"multiBuyProductsConfig":{"multiBuySupported":false,"multiBuyEnabled":false,"multiBuyAllowAddRemove":false,"multiBuyDefaultProductSelection":false},"globalPageUrls":{"profilePagePath":""},"locale":"en-GB","ctaLabel":"","products":{"static":{"size":"size","showPrice":"","zoom":{"label":"","enabled":"985x985"},"productCountlabel":"productCountlabel","retail":"RRP"},"shopNow":null,"buyItNow":false,"review":{"feedDomainUrl":"https://www.magnumicecream.com","referer":"https://www.magnumicecream.com","brandName":"Magnum","apiKey":"cbecfec7-4176-48b4-b957-75fe9fea58fa","multipleProductViewSupported":"true","syndication":"true","serviceURI":"//eu.kritique.io/widget/resources/js/RR_widget.js","apiBasePath":"http://eu.kritique.io/api/v1","serviceProviderName":"kritique","enabled":"true","recordsCount":"10","pageNo":"1","brandId":"1000000013","sortBy":"ratedon","id":"rr-widget","imageSize":"310x310","localeName":"en-gb-2.0","localeId":"1000000056","sitesource":"Magnum-en-gb"},"limit":3000,"quickView":false,"title":"","productRating":true,"productList":[{"title":"Magnum Almond Ice Cream 4 x 100ml","productCategory":null,"customBodyClass":"noTransparentHeader","ilsProductName":null,"primaryCategory":"Classic Multipack; Core","description":"Multipack","productID":"8712100837975","currencySymbol":"","currencySymbolLocation":"left","price":"0.00","isPriceProvided":true,"averageRating":"","enableCustomizationBadges":true,"isCustomizableProduct":false,"personalizableLabel":"personalisable","awards":[],"ratings":{"entityType":"product","identifierValue":"8712100837975","viewType":"inline","identifierType":"EAN","uniqueId":"8712100837975"},"productsDetail":[{"ilsProductName":"","storeLocatorResultUrl":"https://www.magnumicecream.com/uk/where-to-buy/where-to-buy-results.8712100837975.html","productID":"","tryThisDesctiption":"Multipack","longPageDescription":"Velvety smooth vanilla ice cream covered in cracking Magnum milk chocolate and almond pieces","productSize":"","identifierValue":"8712100837975","identifierType":"EAN","shortTitle":"Magnum Almond Ice Cream 4 x 100ml","retail":"RRP","hasVideos":false,"disableBuyItNow":false,"productImage":"","ean":"8712100837975","ingredientsDisclaimer":"","price":"","labelInsightId":"","aboutThisProductBullets":"","productTag":"","ingredients":[{"description":"Reconstituted skimmed MILK, sugar, cocoa butter¹, water, ALMONDS, coconut oil, skimmed MILK powder, glucose syrup, butteroil (MILK), glucose-fructose syrup, whey solids (MILK), cocoa mass¹, emulsifiers (E471, E442, E476), exhausted vanilla bean pieces, stabilisers (E410, E412, E407), natural vanilla flavouring¹ (with MILK), flavouring, colour (E160). May contain other nuts. Gluten free. ¹Rainforest Alliance Certified™","label":"Ingredient","productName":"Magnum Almond Ice Cream 4 x 100ml"}],"productNames":[{"name":"Magnum Almond Ice Cream 4 x 100ml"}],"nutritionFacts":[{"details":[{"text":"Serving Size 100ml=73g"},{"text":"Servings Per Container 4x 100ml"},{"text":" NRV= Nutrient Reference Values\n\n*% of Reference intake of an average adult (8400kJ/2000kcal)\n\n"}],"label":"Nutrition","factTable":[{"rowCSS":"","columnData":[{"cssClass":"","value":""},{"cssClass":"","value":"Per 100g"},{"cssClass":"","value":"Per 100ml"},{"cssClass":"","value":"Amount Per Portion"},{"cssClass":"","value":"Percentage Per Portion"}],"row":["","Per 100g","Per 100ml","Amount Per Portion","Percentage Per Portion"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Calories"},{"cssClass":"","value":"1419kJ/339kcal"},{"cssClass":"","value":"1036kJ/247kcal"},{"cssClass":"","value":"1036kJ/247kcal"},{"cssClass":"","value":"12%"}],"row":["Calories","1419kJ/339kcal","1036kJ/247kcal","1036kJ/247kcal","12%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Total Fat"},{"cssClass":"","value":"21g"},{"cssClass":"","value":"15g"},{"cssClass":"","value":"15g"},{"cssClass":"","value":"21%"}],"row":["Total Fat","21g","15g","15g","21%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Saturated Fat"},{"cssClass":"","value":"13g"},{"cssClass":"","value":"9.5g"},{"cssClass":"","value":"9.5g"},{"cssClass":"","value":"48%"}],"row":["Saturated Fat","13g","9.5g","9.5g","48%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Salt"},{"cssClass":"","value":"0.13g"},{"cssClass":"","value":"0.1g"},{"cssClass":"","value":"0.1g"},{"cssClass":"","value":"2%"}],"row":["Salt","0.13g","0.1g","0.1g","2%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Total Carbohydrate"},{"cssClass":"","value":"32g"},{"cssClass":"","value":"23g"},{"cssClass":"","value":"23g"},{"cssClass":"","value":"9%"}],"row":["Total Carbohydrate","32g","23g","23g","9%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Sugars"},{"cssClass":"","value":"29g"},{"cssClass":"","value":"21g"},{"cssClass":"","value":"21g"},{"cssClass":"","value":"23%"}],"row":["Sugars","29g","21g","21g","23%"]},{"rowCSS":"","columnData":[{"cssClass":"","value":"Protein"},{"cssClass":"","value":"4.9g"},{"cssClass":"","value":"3.6g"},{"cssClass":"","value":"3.6g"},{"cssClass":"","value":"7%"}],"row":["Protein","4.9g","3.6g","3.6g","7%"]}],"productName":"Magnum Almond Ice Cream 4 x 100ml","disclaimer":""}],"imageType":"","shortPageDescription":"Multipack","isPriceProvided":true,"images":[{"path":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png","fileName":"","extension":"png","isNotAdaptiveImage":"false","title":"PNG - OPTIMISED Magnum V2 Product Pack images","url":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png","altImage":"PNG - OPTIMISED Magnum V2 Product Pack images","zoomImage":{"path":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png.ulenscale.reviewCount.png","fileName":"","extension":"png","isNotAdaptiveImage":"false","title":"PNG - OPTIMISED Magnum V2 Product Pack images","url":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png.ulenscale.reviewCount.png","altImage":"PNG - OPTIMISED Magnum V2 Product Pack images"},"thumbImage":{"path":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png","fileName":"","extension":"png","isNotAdaptiveImage":"false","title":"PNG - OPTIMISED Magnum V2 Product Pack images","url":"https://www.magnumicecream.com/content/dam/unilever/magnum/global/pack_design/2d/ice_cream/all/magnum_almond_ice_cream_4_x_100ml-1179940.png.ulenscale.100x100.png","altImage":"PNG - OPTIMISED Magnum V2 Product Pack images"},"videoId":"","hasVideo":false}],"shortProductDescription":"","howToUseDescription":"","shortIdentifierValue":"","tryThisTitle":"","perfectForHeadingsAndDescription":"","aboutThisProductDescription":"","allergy":[{"description":"Contains milk and almonds. May contain soy and other nuts. Gluten free.\n\n\n\nFor the most up to date information always check the packaging.","label":"Allergy","productName":"Magnum Almond Ice Cream 4 x 100ml"}],"howToUseTitle":"","unit":"1","aboutThisProductTitle":"","EANparent":"","name":"Magnum Almond Ice Cream 4 x 100ml","smartProductId":"f0fb9409-0712-439c-9112-cc888513127d","skuid":"8712100837975","altTextImages":"","isIngredientsArray":true,"perfectForTitle":""}],"containertag":{"productLoad":{"productID":"8712100837975","primaryCategory":"Classic Multipack; Core","productVariations":"1","action":"productInfo","label":"Magnum Almond Ice Cream 4 x 100ml","category":"other","type":"trackEvent"},"productClick":{"action":"productClick","attributes":{"nonInteraction":"1"},"label":{"attributes":{"productVariations":"1","listPosition":""},"category":{"primaryCategory":"Classic Multipack; Core"},"productInfo":{"quantity":"1","productID":"8712100837975","price":"0.00","brand":"magnumv2","productName":"Magnum Almond Ice Cream 4 x 100ml"}},"category":"custom","type":"productclick"},"productQuickView":null,"productImpression":{"action":"productImpression","attributes":{"nonInteraction":"1"},"label":{"attributes":{"productVariations":"1","listPosition":""},"category":{"primaryCategory":"Classic Multipack; Core"},"productInfo":{"quantity":"1","productID":"8712100837975","price":"0.00","brand":"magnumv2","productName":"Magnum Almond Ice Cream 4 x 100ml"}},"category":"custom","type":"productImpression"},"shopNow":null,"ratingreview":{"action":"ratingreview","label":"Magnum Almond Ice Cream 4 x 100ml","category":"other","type":"trackEvent"},"dropdown":{"action":"dropdown","label":"dropdown","category":"custom","type":"trackEvent"},"zoom":{"productID":"8712100837975","primaryCategory":"Classic Multipack; Core","productVariations":"1","action":"widgets","label":"zoom","category":"custom","type":"trackEvent"}},"externalProduct":false,"textLink":{"label":"Find Out More","url":"https://www.magnumicecream.com/uk/products/icecream-classics/magnum-almond-ice-cream-4-x-100ml.html"},"productTag":[{"path":"/etc/tags/unilever/ice-cream/product/ingredient/nuts/almond","name":"almond","id":"unilever:ice-cream/product/ingredient/nuts/almond","title":"almond"},{"path":"/etc/tags/unilever/ice-cream/product/brand/magnum","name":"magnum","id":"unilever:ice-cream/product/brand/magnum","title":"Magnum"},{"path":"/etc/tags/unilever/ice-cream/product/type/ice-cream/classic","name":"classic","id":"unilever:ice-cream/product/type/ice-cream/classic","title":"classic"},{"path":"/etc/tags/unilever/ice-cream/product/site-home/ice-cream","name":"ice-cream","id":"unilever:ice-cream/product/site-home/ice-cream","title":"ice-cream"},{"path":"/etc/tags/unilever/ice-cream/product/ingredient/chocolate/milk","name":"milk","id":"unilever:ice-cream/product/ingredient/chocolate/milk","title":"chocolate milk"}],"quickViewLabel":"","compareTextLabel":"Compare","productInfoLabel":"nutrition","isNewProduct":"","isfeatureTagsPresent":false,"appliedFeatureTags":[],"isFeatureTagInteractionEnabled":true,"interactionFeatureTags":[],"subContentType":"","shopNow":null}]},"storeLocator":{"regex":"^([A-Pa-pR-UWYZr-uwyzr0-9][A-Ha-hK-Yk-y0-9][AEHMNPRTVXYaehmnprtvxy0-9]?[ABEHMNPRVWXYabehmnprvwxy0-9]? {1,2}[0-9][ABD-HJLN-UW-Zabd-hjln-uw-z]{2}|GIR 0AA)$","isLocationBasedSearchEnabled":true,"storeLocatorUrl":"https://www.magnumicecream.com/uk/where-to-buy/where-to-buy-results.html","productUpcCode":"","defaultRadiusForSearch":"5","storeLocatorEnabled":false,"ctaLabels":{"buyInStore":"Where to Buy In Store","postalCodeFieldHelpText":"Enter your postcode","gpsShareLocation":"GPS location","goCta":"Go","errorMessage":"Invalid postcode","resetFilterCta":"Reset","yourLocation":"Your location","errorFindingLocation":"Unable to detect location"}},"geoCodeApi":"//maps.googleapis.com/maps/api/geocode/json?key=AIzaSyAu30u84IIKTG2FAdDdoEsFflkNTDiRqaQ&latlng=","randomNumber":"bf13732a856639dd5eb07282341a08c9","componentName":"relatedProducts","brandName":"magnumv2","multiBuyProductsCtaLabels":{"addProductCtaLabel":"Add to bundle","removeProductCtaLabel":"Remove from bundle","NotAvailableCtaLabel":"Not available for purchase","addToBagHeadingText":"Buy these products as a bundle","noProductsSelectedCtaLabel":"Select products to add to bag","addSingleProductToBagCtaLabel":"Add 1 product to bag","addMultipleProductsToBagCtaLabel":"Add placeholderForCountOfSelectedProducts products to bag"},"heading":"SELECT YOUR INDULGENCE","cookielessExperience":false,"favouritesText":{"favConfirmCTALabel":"Saved! <br>Product saved on your favourites list.","favButtonCTALabel":"Add to favourites","favButtonCTALabelActive":"Added to favourites"},"geoCodeFlag":true,"rtl":"false","componentNotSupportedMessage":"The feature is not available on your device, to enjoy the full experience, please visit our website on desktop, tablets or smartphones.","displayVideoIcon":false,"market":"en_gb","subHeading":"<p style=\"\">PRODUCTS</p>","errorPagePath":"","anchorTitle":"Click here to go to link","style":{"type":"","class":""},"componentExperienceVariant":"default","additionalBrands":[]},"viewType":"defaultView","randomNumber":"bf13732a856639dd5eb07282341a08c9","isContainer":false,"resourceType":"unilever-iea/components/relatedProducts"}}

sanity/examples/test-studio/config/@sanity/google-maps-input.json

Line 2 in 6a22520

"apiKey": "AIzaSyDwxpdp6WJwj9VjoVCjEudljhkR1inzhSE",

sanity/packages/@sanity/validation/test/strings.test.js

Line 105 in 6a22520

await expect(rule.validate('http://foo:bar@sanity.io/')).resolves.toHaveLength(0)

sanity/packages/@sanity/validation/test/strings.test.js

Line 110 in 6a22520

await expect(rule.validate('http://foo:bar@sanity.io/')).resolves.toMatchSnapshot(

More info on how to fix Hard-Coded Secrets in General.

Insecure File Management (96)

sanity/babel.config.js

Line 5 in 6a22520

const babelrc = JSON.parse(fs.readFileSync(path.join(__dirname, '.babelrc'), 'utf8'))

sanity/packages/@sanity/base/scripts/writeRequiredUIVersion.js

Line 18 in 6a22520

fs.writeFileSync(builtFile, template(pkg.dependencies['@sanity/ui'] || 'latest'))

sanity/packages/@sanity/cli/scripts/pack.js

Line 34 in 6a22520

const babelRc = JSON.parse(fse.readFileSync(path.join(basedir, '.babelrc'), 'utf8'))

sanity/packages/@sanity/cli/scripts/pack.js

Line 113 in 6a22520

fse.chmodSync(outputPath, 0o755)

sanity/packages/@sanity/cli/scripts/pack.js

Line 126 in 6a22520

const content = fse.readFileSync(outputPath, 'utf8')

sanity/packages/@sanity/cli/scripts/pack.js

Line 129 in 6a22520

fse.writeFileSync(outputPath, normalized, 'utf8')

sanity/packages/@sanity/cli/src/actions/init-project/bootstrapTemplate.js

Line 70 in 6a22520

await fse.writeFile(filePath, content, {flag: 'wx'})

sanity/packages/@sanity/cli/src/actions/init-project/initProject.js

Line 539 in 6a22520

const workDirIsEmpty = (await fse.readdir(workDir)).length === 0

sanity/packages/@sanity/cli/src/actions/init-project/initProject.js

Line 647 in 6a22520

const content = fs.readdirSync(dir)

sanity/packages/@sanity/cli/src/cli.js

Line 71 in 6a22520

const hasManifest = fse.existsSync(path.join(workDir, 'sanity.json'))

sanity/packages/@sanity/cli/src/commands/codemod/codemodCommand.js

Line 64 in 6a22520

const hasGitIgnore = fs.existsSync(path.join(workDir, '.gitignore'))

sanity/packages/@sanity/cli/src/commands/upgrade/upgradeDependencies.js

Line 11 in 6a22520

const stats = await fse.lstat(modPath).catch(noop)

sanity/packages/@sanity/cli/src/commands/upgrade/upgradeDependencies.js

Line 86 in 6a22520

const hasLockFile = fse.existsSync(yarnLockPath) // eslint-disable-line no-sync

sanity/packages/@sanity/cli/src/commands/upgrade/upgradeDependencies.js

Line 88 in 6a22520

await fse.unlink(yarnLockPath)

sanity/packages/@sanity/cli/src/scripts/package-yarn.js

Line 30 in 6a22520

res.pipe(fse.createWriteStream(destination, writeFlags).on('close', writeHeader))

sanity/packages/@sanity/cli/src/scripts/package-yarn.js

Line 44 in 6a22520

const bundle = await fse.readFile(destination, writeFlags)

sanity/packages/@sanity/cli/src/scripts/package-yarn.js

Line 53 in 6a22520

await fse.writeFile(destination, licensed, writeFlags)

sanity/packages/@sanity/cli/src/util/getProjectDefaults.js

Line 28 in 6a22520

return fse

sanity/packages/@sanity/cli/src/util/getProjectDefaults.js

Line 70 in 6a22520

const readme = await fse.readFile(readmePath, {encoding: 'utf8'})

sanity/packages/@sanity/client/src/scripts/print-bundle-size.js

Line 13 in 6a22520

fs.readFile(bundlePath, (bundleErr, bundle) => {

sanity/packages/@sanity/client/src/scripts/print-bundle-size.js

Line 16 in 6a22520

fs.readFile(minPath, (minErr, minBundle) => {

sanity/packages/@sanity/client/test/client.test.js

Line 1337 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1344 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath))

sanity/packages/@sanity/client/test/client.test.js

Line 1353 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1360 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath), {contentType: 'image/jpeg'})

sanity/packages/@sanity/client/test/client.test.js

Line 1369 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1377 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath), options)

sanity/packages/@sanity/client/test/client.test.js

Line 1386 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1394 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath), options)

sanity/packages/@sanity/client/test/client.test.js

Line 1403 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1411 in 6a22520

.observable.assets.upload('image', fs.createReadStream(fixturePath))

sanity/packages/@sanity/client/test/client.test.js

Line 1422 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1429 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath), {label: label})

sanity/packages/@sanity/client/test/client.test.js

Line 1438 in 6a22520

const isFile = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1445 in 6a22520

.assets.upload('file', fs.createReadStream(fixturePath))

sanity/packages/@sanity/client/test/client.test.js

Line 1454 in 6a22520

const isImage = (body) => bufferFrom(body, 'hex').compare(fs.readFileSync(fixturePath)) === 0

sanity/packages/@sanity/client/test/client.test.js

Line 1461 in 6a22520

.assets.upload('image', fs.createReadStream(fixturePath))

sanity/packages/@sanity/core/src/actions/build/buildStaticAssets.js

Line 102 in 6a22520

await fse.writeFile(

sanity/packages/@sanity/core/src/actions/build/buildStaticAssets.js

Line 125 in 6a22520

await fse.writeFile(

sanity/packages/@sanity/core/src/actions/build/compressJavascript.js

Line 18 in 6a22520

await fse.unlink(inputFile)

sanity/packages/@sanity/core/src/actions/deploy/deployAction.js

Line 109 in 6a22520

const stats = await fse.stat(sourceDir)

sanity/packages/@sanity/core/src/actions/deploy/deployAction.js

Line 121 in 6a22520

const content = await fse.readdir(sourceDir)

sanity/packages/@sanity/core/src/actions/deploy/deployAction.js

Line 127 in 6a22520

const stats = await fse.stat(sourceDir)

sanity/packages/@sanity/core/src/actions/deploy/deployAction.js

Line 138 in 6a22520

await fse.stat(path.join(sourceDir, 'index.html'))

sanity/packages/@sanity/core/src/actions/exec/babel.js

Line 8 in 6a22520

const content = fs.readFileSync(path.join(process.cwd(), '.babelrc'))

sanity/packages/@sanity/core/src/actions/exec/execScript.js

Line 21 in 6a22520

if (!(await fse.exists(scriptPath))) {

sanity/packages/@sanity/core/src/actions/graphql/registerBabelLoader.js

Line 9 in 6a22520

babelConfig = JSON.parse(fs.readFileSync(configPath, 'utf8'))

sanity/packages/@sanity/core/src/commands/dataset/exportDatasetCommand.js

Line 128 in 6a22520

let dstStats = await fse.stat(dstPath).catch(noop)

sanity/packages/@sanity/core/src/commands/dataset/exportDatasetCommand.js

Line 138 in 6a22520

dstStats = await fse.stat(finalPath).catch(noop)

sanity/packages/@sanity/core/src/commands/dataset/importDatasetCommand.js

Line 77 in 6a22520

const fileStats = await fse.stat(sourceFile).catch(() => null)

sanity/packages/@sanity/core/src/commands/dataset/importDatasetCommand.js

Line 83 in 6a22520

inputStream = sourceIsFolder ? sourceFile : await fse.createReadStream(sourceFile)

sanity/packages/@sanity/core/src/commands/documents/createDocumentsCommand.js

Line 65 in 6a22520

const content = json5.parse(await fse.readFile(contentPath, 'utf8'))

sanity/packages/@sanity/core/src/commands/documents/createDocumentsCommand.js

Line 86 in 6a22520

chokidar.watch(tmpFile).on('change', () => {

sanity/packages/@sanity/core/src/commands/documents/createDocumentsCommand.js

Line 95 in 6a22520

await fse.unlink(tmpFile).catch(noop)

sanity/packages/@sanity/core/src/commands/documents/createDocumentsCommand.js

Line 101 in 6a22520

content = json5.parse(await fse.readFile(filePath, 'utf8'))

sanity/packages/@sanity/core/src/commands/documents/createDocumentsCommand.js

Line 128 in 6a22520

await fse.unlink(tmpFile).catch(noop)

sanity/packages/@sanity/core/src/commands/install/installCommand.js

Line 48 in 6a22520

if (!fse.existsSync(configPath)) {

sanity/packages/@sanity/core/src/commands/install/installCommand.js

Line 56 in 6a22520

fse.existsSync(dstPath)

sanity/packages/@sanity/core/src/commands/uninstall/uninstallCommand.js

Line 65 in 6a22520

return fse.unlink(configPath)

sanity/packages/@sanity/core/src/util/checkStudioDependencyVersions.js

Line 152 in 6a22520

return JSON.parse(fs.readFileSync(filePath, 'utf8'))

sanity/packages/@sanity/default-login/src/util/openWindow.js

Line 16 in 6a22520

const win = window.open(url, target, features)

sanity/packages/@sanity/export/src/AssetHandler.js

Line 198 in 6a22520

await fse.unlink(tmpPath)

sanity/packages/@sanity/export/src/AssetHandler.js

Line 309 in 6a22520

miss.pipe(stream, hasher, fse.createWriteStream(filePath), (err) => {

sanity/packages/@sanity/export/src/export.js

Line 52 in 6a22520

options.outputPath === '-' ? process.stdout : fse.createWriteStream(options.outputPath)

sanity/packages/@sanity/imagetool/example/app.js

Line 16 in 6a22520

res.type('text/html').send(fs.readFileSync(path.join(__dirname, 'public', 'index.html')))

sanity/packages/@sanity/import-cli/src/sanity-import.js

Line 161 in 6a22520

return Promise.resolve(source === '-' ? process.stdin : fs.createReadStream(source))

sanity/packages/@sanity/import/src/importFromFolder.js

Line 23 in 6a22520

const stream = fse.createReadStream(dataFile)

sanity/packages/@sanity/import/src/validateOptions.js

Line 74 in 6a22520

const stats = fse.statSync(path)

sanity/packages/@sanity/import/test/import.test.js

Line 19 in 6a22520

const getFixtureStream = (fix) => fs.createReadStream(getFixturePath(fix), 'utf8')

sanity/packages/@sanity/import/test/import.test.js

Line 21 in 6a22520

fs.readFileSync(getFixturePath(fix), 'utf8').trim().split('\n').map(JSON.parse)

sanity/packages/@sanity/resolver/src/readManifest.js

Line 10 in 6a22520

return parseManifest(fse.readFileSync(manifestPath), options)

sanity/packages/@sanity/resolver/src/readManifest.js

Line 49 in 6a22520

return fse

sanity/packages/@sanity/resolver/src/resolvePlugins.js

Line 153 in 6a22520

return JSON.parse(fs.readFileSync(file, {encoding: 'utf8'}))

sanity/packages/@sanity/resolver/src/resolver.js

Line 237 in 6a22520

return fs.realpathSync(dstPath)

sanity/packages/@sanity/server/src/configs/webpack.config.js

Line 172 in 6a22520

const content = fs.readFileSync(filePath)

sanity/packages/@sanity/webpack-integration/src/v3/extractCssCustomProperties.js

Line 12 in 6a22520

const readFile = util.promisify(fs.readFile)

sanity/packages/@sanity/webpack-integration/src/v3/index.js

Line 21 in 6a22520

parsed = dotenv.parse(fs.readFileSync(envFile, {encoding: 'utf8'}))

sanity/packages/@sanity/webpack-integration/src/v3/resolveStyleImport.js

Line 64 in 6a22520

rp.realpath(path, (err, real) => {

sanity/scripts/normalizeDependencyVersions.js

Line 26 in 6a22520

.map((file) => fs.readFileSync(file, 'utf8'))

sanity/scripts/normalizeDependencyVersions.js

Line 116 in 6a22520

fs.writeFileSync(manifestPath, json, 'utf-8')

sanity/scripts/symlinkDependencies.js

Line 22 in 6a22520

const rootPackages = fs.readdirSync(pkgPath).filter(notSanity)

sanity/scripts/symlinkDependencies.js

Line 23 in 6a22520

const sanityPackages = fs.readdirSync(path.join(pkgPath, '@sanity')).map(prefix)

sanity/scripts/symlinkDependencies.js

Line 37 in 6a22520

const targetRootPackages = fs.readdirSync(targetDepsPath).filter(notSanity)

sanity/scripts/symlinkDependencies.js

Line 38 in 6a22520

const targetSanityPackages = fs.readdirSync(path.join(targetDepsPath, '@sanity')).map(prefix)

sanity/scripts/symlinkDependencies.js

Line 65 in 6a22520

fs.symlinkSync(sourceDepDir, targetDepDir, 'dir')

sanity/scripts/updateLicenses.js

Line 8 in 6a22520

const readLicense = fs.readFile(path.join(process.cwd(), 'LICENSE'), 'utf-8')

sanity/scripts/updateLicenses.js

Line 14 in 6a22520

await fs.writeFile(targetPath, licenseTxt)

sanity/scripts/utils/readPackages.js

Line 15 in 6a22520

content: JSON.parse(fs.readFileSync(filePath, 'utf8')),

sanity/scripts/utils/transformPkgs.js

Line 8 in 6a22520

fs.writeFileSync(pkg.path, `${JSON.stringify(result, null, 2)}\n`)

sanity/scripts/validateCommitMessage.js

Line 8 in 6a22520

const msg = fs.readFileSync(commitMsgPath, 'utf8').trim()

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/index.test.ts

Line 7 in 6a22520

describe('HtmlDeserializer', () => {

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/index.test.ts

Line 14 in 6a22520

const dir = path.resolve(__dirname, test)

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/index.test.ts

Line 15 in 6a22520

const input = fs.readFileSync(path.resolve(dir, 'input.html')).toString()

sanity/packages/@sanity/util/src/reduceConfig.ts

Line 35 in 6a22520

// eslint-disable-next-line no-sync

sanity/packages/@sanity/util/test/util.test.ts

Line 82 in 6a22520

const emptyPath = path.join(__dirname, '__temp__')

sanity/packages/@sanity/util/test/util.test.ts

Line 84 in 6a22520

const isEmpty = await pathIsEmpty(emptyPath)

More info on how to fix Insecure File Management in Javascript and Typescript.

Insecure Use of Regular Expressions (23)

sanity/examples/test-studio/schemas/validation.js

Line 211 in 6a22520

.regex(/^(?:[A-Z][^\s]*\s?)+$/)

sanity/packages/@sanity/cli/scripts/pack.js

Line 127 in 6a22520

const replaceRegex = new RegExp(escapeRegex(`*** ${replacePath}`), 'ig')

sanity/packages/@sanity/cli/src/actions/init-project/promptForDatasetName.js

Line 53 in 6a22520

(acc, char) => acc.replace(new RegExp(escapeRegex(char), 'g'), chalk.red.bold(char)),

sanity/packages/@sanity/code-input/src/groq.js

Line 96 in 6a22520

regex: /(\])((?:\s*\.)?)/,

sanity/packages/@sanity/code-input/src/groq.js

Line 232 in 6a22520

regex: /-?(?:0|[1-9]\d*)(?:(?:\.\d+)?(?:[eE][+-]?\d+)?)?/,

sanity/packages/@sanity/code-input/src/groq.js

Line 390 in 6a22520

regex: /([_A-Za-z][_0-9A-Za-z]*)(?:(\s*)(asc|desc))?/,

sanity/packages/@sanity/code-input/src/groq.js

Line 398 in 6a22520

regex: /(\])(?:(\s*)(asc|desc))?/,

sanity/packages/@sanity/code-input/src/groq.js

Line 514 in 6a22520

regex: /([_A-Za-z][_0-9A-Za-z]*)(\s*)((?:\[\s*\])?)(\s*)(\->)/,

sanity/packages/@sanity/code-input/src/groq.js

Line 525 in 6a22520

regex: /(?:([_A-Za-z][_0-9A-Za-z]*)|([@^]))(\s*)((?:\[\s*\])?)(\s*)(\.)/,

sanity/packages/@sanity/core/src/actions/cors/addCorsOrigin.js

Line 126 in 6a22520

host = host.replace(portReplacement, ':*').replace(new RegExp(wildcardReplacement, 'g'), '*')

sanity/packages/@sanity/default-login/src/CorsCheck.js

Line 59 in 6a22520

window.location.href.replace(new RegExp(`${window.location.pathname}$`), '')

sanity/packages/@sanity/desk-tool/src/components/StructureError.js

Line 18 in 6a22520

.replace(new RegExp(` \\(https?:\\/\\/${window.location.host}`, 'g'), ' (')

sanity/packages/@sanity/desk-tool/src/utils/parsePanesSegment.js

Line 7 in 6a22520

const panePattern = /^([.a-z0-9_-]+),?({.*?})?(?:(;|$))/i

sanity/packages/@sanity/desk-tool/src/utils/parsePanesSegment.js

Line 10 in 6a22520

/^(?:[A-Za-z0-9+/]{4})*(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?$/.test(str)

sanity/packages/@sanity/export/src/AssetHandler.js

Line 291 in 6a22520

const [, , asset, ext] = assetId.match(/^(image|file)-(.*?)(-[a-z]+)?$/) || []

sanity/packages/@sanity/validation/src/Rule.js

Line 234 in 6a22520

return schemeIsString ? new RegExp(`^${escapeRegex(scheme)}$`) : scheme

sanity/packages/@sanity/validation/src/validators/dateValidator.js

Line 6 in 6a22520

const isoDate = /^(?:[-+]\d{2})?(?:\d{4}(?!\d{2}\b))(?:(-?)(?:(?:0[1-9]|1[0-2])(?:\1(?:[12]\d|0[1-9]|3[01]))?|W(?:[0-4]\d|5[0-2])(?:-?[1-7])?|(?:00[1-9]|0[1-9]\d|[12]\d{2}|3(?:[0-5]\d|6[1-6])))(?![T]$|[T][\d]+Z$)(?:[T\s](?:(?:(?:[01]\d|2[0-3])(?:(:?)[0-5]\d)?|24\:?00)(?:[.,]\d+(?!:))?)(?:\2[0-5]\d(?:[.,]\d+)?)?(?:[Z]|(?:[+-])(?:[01]\d|2[0-3])(?::?[0-5]\d)?)?)?)?$/

sanity/packages/@sanity/validation/src/validators/numberValidator.js

Line 4 in 6a22520

const precisionRx = /(?:\.(\d+))?(?:[eE]([+-]?\d+))?$/

sanity/packages/@sanity/validation/src/validators/stringValidator.js

Line 5 in 6a22520

const emailRegex = /^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/

sanity/packages/@sanity/field/src/paths/helpers.ts

Line 11 in 6a22520


sanity/packages/@sanity/field/src/types/portableText/diff/helpers.ts

Line 40 in 6a22520

.concat(TextSymbols.SEGMENT_START_SYMBOL)

sanity/packages/@sanity/field/src/types/portableText/diff/helpers.ts

Line 41 in 6a22520

const symbolRegex = new RegExp(`${allSymbols.join('|')}`, 'g')

sanity/packages/@sanity/util/src/pathUtils.ts

Line 11 in 6a22520

More info on how to fix Insecure Use of Regular Expressions in Javascript and Typescript.

Insecure Use of Language/Framework API (3)

sanity/packages/@sanity/base/src/components/Document.js

Line 63 in 6a22520

<script dangerouslySetInnerHTML={{__html: errorHandler}} />

sanity/packages/@sanity/base/src/components/Document.js

Line 64 in 6a22520

<script dangerouslySetInnerHTML={{__html: scriptLoader}} />

sanity/packages/@sanity/client/test/client.test.js

Line 21 in 6a22520

Buffer.from ? Buffer.from(content, enc) : new Buffer(content, enc) // eslint-disable-line no-buffer-constructor

More info on how to fix Insecure Use of Language/Framework API in Javascript.

Insecure Use of Dangerous Function (21)

sanity/packages/@sanity/base/src/components/SanityIntlProvider.js

Line 35 in 6a22520

const localeData = require(`react-intl/locale-data/${languagePrefix}`)

sanity/packages/@sanity/cli/src/commands/codemod/codemodCommand.js

Line 2 in 6a22520

const childProcess = require('child_process')

sanity/packages/@sanity/core/src/actions/exec/execScript.js

Line 1 in 6a22520

const spawn = require('child_process').spawn

sanity/packages/@sanity/core/src/actions/graphql/registerBabelLoader.js

Line 23 in 6a22520

babelConfig = require(path.join(basePath, 'babel.config.js'))

sanity/packages/@sanity/core/src/util/requireContext.js

Line 34 in 6a22520

const klaw = require(klawPath)

sanity/packages/@sanity/core/src/util/requireContext.js

Line 35 in 6a22520

const resolveFrom = require(resolvePath)

sanity/packages/@sanity/core/src/util/requireContext.js

Line 91 in 6a22520

const context = (key) => require(context.resolve(key))

sanity/packages/@sanity/plugin-loader/loader.js

Line 107 in 6a22520

const sanityConfig = require(path.join(basePath, 'sanity.json'))

sanity/packages/@sanity/plugin-loader/test/loader.test.js

Line 32 in 6a22520

t.is(require(part), func1)

sanity/packages/@sanity/plugin-loader/test/loader.test.js

Line 33 in 6a22520

t.is(require(`all:${part}`), overrides[part])

sanity/packages/@sanity/server/bin/sanity-server.js

Line 18 in 6a22520

const getServer = require(sourceFolder + target).default

sanity/packages/@sanity/server/src/baseServer.js

Line 99 in 6a22520

.map((part) => getDefaultModule(require(part.path)))

sanity/packages/@sanity/server/src/configs/isSanityMonorepo.js

Line 12 in 6a22520

const pkg = require(configPath)

sanity/packages/@sanity/state-router/perf/benchmark.js

Line 44 in 6a22520

const example = require(`./examples/${exampleName}.js`)

sanity/packages/@sanity/storybook/src/server/fork.js

Line 3 in 6a22520

const fork = require('child_process').fork

sanity/packages/@sanity/storybook/src/server/server.js

Line 53 in 6a22520

return require(path.join(basePath, 'config', '@sanity', 'storybook.json'))

sanity/packages/create-sanity/index.js

Line 3 in 6a22520

const child_process = require('child_process')

sanity/scripts/normalizeDependencyVersions.js

Line 105 in 6a22520

const manifest = require(manifestPath)

sanity/scripts/runTsc.js

Line 1 in 6a22520

const childProcess = require('child_process')

sanity/scripts/symlinkDependencies.js

Line 32 in 6a22520

const targetPkg = require(path.join(targetPath, 'package.json'))

sanity/packages/@sanity/block-tools/test/tests/HtmlDeserializer/index.test.ts

Line 16 in 6a22520

const expected = JSON.parse(fs.readFileSync(path.resolve(dir, 'output.json'), 'utf-8'))

More info on how to fix Insecure Use of Dangerous Function in Javascript and Typescript.

Insecure Processing of Data (3)

sanity/packages/@sanity/dashboard/src/containers/WidgetContainer.js

Line 33 in 6a22520

<NotFoundWidget title={<>Not found: "{config.name}"</>}>

sanity/packages/@sanity/default-login/src/CorsCheck.js

Line 112 in 6a22520

developer on this project, you could also have a look at the browser's dev console and see

sanity/examples/example-studio/components/FunkyEditor/FunkyEditor.js

Line 36 in 6a22520

deserialize(el, next, block) {

More info on how to fix Insecure Processing of Data in Javascript.

Insecure Use of Crypto (5)

sanity/packages/@sanity/desk-tool/src/panes/documentPane/documentHistory/history/utils.ts

Line 5 in 6a22520

if (a && b) {

sanity/packages/@sanity/mutator/src/jsonpath/parse.ts

Line 50 in 6a22520

const value = pattern[key]

sanity/packages/@sanity/export/src/AssetHandler.js

Line 298 in 6a22520

const md5 = crypto.createHash('md5')

sanity/packages/@sanity/export/src/AssetHandler.js

Line 299 in 6a22520

const sha1 = crypto.createHash('sha1')

sanity/packages/@sanity/import/src/util/getHashedBufferForUri.js

Line 12 in 6a22520

const hash = crypto.createHash('sha1')

More info on how to fix Insecure Use of Crypto in Typescript and Javascript.

Insecure Access Control (2)

sanity/packages/@sanity/form-builder/src/patch/primitive.ts

Line 42 in 6a22520


sanity/packages/@sanity/form-builder/src/patch/string.ts

Line 41 in 6a22520

More info on how to fix Insecure Access Control in Typescript.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
invalid This doesn't seem right
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot