[Snyk] Upgrade wechaty from 0.29.72 to 0.33.1

[snyk-bot]

Snyk has created this PR to upgrade wechaty from 0.29.72 to 0.33.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 53 versions ahead of your current version.
• The recommended version was released 4 days ago, on 2020-03-07.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Prototype Pollution SNYK-JS-DOTPROP-543489	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESSTAR-559095	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	Proof of Concept

Release notes

Package name: wechaty

• 0.33.1 - 2020-03-07
• 0.32.5 - 2020-03-06
• 0.32.4 - 2020-03-04
• 0.32.3 - 2020-03-02
• 0.32.2 - 2020-02-26
• 0.32.1 - 2020-02-25
• 0.31.26 - 2020-02-25
• 0.31.25 - 2020-02-25
• 0.31.24 - 2020-02-25
• 0.31.23 - 2020-02-25
• 0.31.22 - 2020-02-23
• 0.31.21 - 2020-02-23
• 0.31.20 - 2020-02-23
• 0.31.19 - 2020-02-23
• 0.31.18 - 2020-02-23
• 0.31.17 - 2020-02-20
• 0.31.16 - 2020-02-20
• 0.31.15 - 2020-02-19
• 0.31.14 - 2020-02-19
• 0.31.13 - 2020-02-19
• 0.31.12 - 2020-02-18
• 0.31.11 - 2020-02-18
• 0.31.9 - 2020-02-14
• 0.31.8 - 2020-02-14
• 0.31.7 - 2020-02-12
• 0.31.6 - 2020-02-12
• 0.31.5 - 2020-02-11
• 0.31.4 - 2020-02-10
• 0.31.3 - 2020-02-08
• 0.31.2 - 2020-02-08
• 0.31.1 - 2020-02-08
• 0.30.23 - 2020-02-10
• 0.30.22 - 2020-02-08
• 0.30.21 - 2020-02-08
• 0.30.20 - 2020-02-08
• 0.30.19 - 2020-02-08
• 0.30.18 - 2020-02-08
• 0.30.17 - 2020-02-08
• 0.30.16 - 2020-02-08
• 0.30.15 - 2020-02-08
• 0.30.14 - 2020-02-08
• 0.30.13 - 2020-02-08
• 0.30.12 - 2020-02-08
• 0.30.11 - 2020-02-08
• 0.30.10 - 2020-02-08
• 0.30.9 - 2020-02-08
• 0.30.8 - 2020-02-08
• 0.30.7 - 2020-02-08
• 0.30.6 - 2020-02-08
• 0.30.5 - 2020-02-08
• 0.30.4 - 2020-02-08
• 0.30.3 - 2020-02-08
• 0.30.2 - 2020-02-08
• 0.29.72 - 2020-02-08

from wechaty GitHub release notes

Commit messages

Package name: wechaty

• 54eb88f 0.33.1
• ede129b simpilify the Accesory class (#1924)
• 13092f7 0.33.0
• ae67b2b 0.32.5
• a8c0c41 code clean
• eb34a56 0.32.4
• 3778589 Merge branch 'master' of github.com:wechaty/wechaty
• b037e1a 0.32.3
• 105eae2 update hostie version
• 31c265f Image bug (#1921)
• 2a643ea 0.32.2
• 74bd88e fix scan status for padplus (https://github.com/ScanStatus not set right wechaty-puppet-padplus#161)
• c9654fd 0.32.1
• e59943d Upgrade docker base image & node.js (#1920)
• afe5c26 0.31.26
• 64dfd50 restore pkg-jq
• 0a63cde 0.31.25
• 0b9fc44 use bright green for badge
• dcbb8da 0.31.24
• 20ed652 use NODE_AUTH_TOKEN instead of NPM_TOKEN
• 8d26694 0.31.23
• d5f6824 use green version of powered by wechaty badge
• 0fb8f99 0.31.22
• 3314f4f upgrade eslint-config (https://github.com/wechaty dependency modules deep cleaning wechaty#1917)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # (snyk:metadata:{"dependencies":[{"name":"wechaty","from":"0.29.72","to":"0.33.1"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/zixia/project/b5f7ac54-cd6e-4f42-9f57-a24e736a743f?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"b5f7ac54-cd6e-4f42-9f57-a24e736a743f","env":"prod","prType":"upgrade","vulns":["SNYK-JS-DOTPROP-543489","SNYK-JS-DECOMPRESSTAR-559095","SNYK-JS-DECOMPRESS-557358"],"issuesToFix":[{"issueId":"SNYK-JS-DOTPROP-543489","severity":"medium","title":"Prototype Pollution","exploitMaturity":"proof-of-concept"},{"issueId":"SNYK-JS-DECOMPRESSTAR-559095","severity":"medium","title":"Arbitrary File Write via Archive Extraction (Zip Slip)","exploitMaturity":"proof-of-concept"},{"issueId":"SNYK-JS-DECOMPRESS-557358","severity":"medium","title":"Arbitrary File Write via Archive Extraction (Zip Slip)","exploitMaturity":"proof-of-concept"}],"upgrade":["SNYK-JS-DOTPROP-543489","SNYK-JS-DECOMPRESSTAR-559095","SNYK-JS-DECOMPRESS-557358"],"upgradeInfo":{"versionsDiff":53,"publishedDate":"2020-03-07T03:37:44.245Z"},"templateVariants":[],"hasFixes":true,"isMajorUpgrade":false,"isBreakingChange":false})

[CLAassistant]

All committers have signed the CLA.