Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade js-beautify from 1.10.1 to 1.14.11 #89

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

ch-snyk-sa
Copy link

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade js-beautify from 1.10.1 to 1.14.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 27 versions ahead of your current version.
  • The recommended version was released 2 months ago, on 2023-11-07.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-JSBEAUTIFY-2311652
479/1000
Why? Has a fix available, CVSS 5.3
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: js-beautify
  • 1.14.11 - 2023-11-07
    No content.
  • 1.14.10 - 2023-11-07

    Release: 1.14.10

  • 1.14.9 - 2023-07-20
    No content.
  • 1.14.8 - 2023-06-01
    No content.
  • 1.14.7 - 2022-10-21

    Release: 1.14.7

  • 1.14.6 - 2022-08-21
    No content.
  • 1.14.5 - 2022-08-07
    No content.
  • 1.14.4 - 2022-06-20
    No content.
  • 1.14.3 - 2022-04-09
    No content.
  • 1.14.2 - 2022-03-29
    No content.
  • 1.14.1 - 2022-03-28
  • 1.14.0 - 2021-06-14
  • 1.13.13 - 2021-04-16
  • 1.13.11 - 2021-04-13
  • 1.13.8 - 2021-04-13
  • 1.13.7 - 2021-04-13
  • 1.13.6 - 2021-04-13
  • 1.13.5 - 2021-01-26
  • 1.13.4 - 2021-01-12
  • 1.13.3 - 2021-01-12
  • 1.13.2 - 2021-01-12
  • 1.13.1 - 2021-01-09
  • 1.13.0 - 2020-08-20
  • 1.12.0 - 2020-08-13
  • 1.11.0 - 2020-04-05
  • 1.10.3 - 2020-01-14
  • 1.10.2 - 2019-08-06
  • 1.10.1 - 2019-07-17
from js-beautify GitHub release notes
Commit messages
Package name: js-beautify
  • 53e3f9a Merge remote-tracking branch 'origin/staging/main' into staging/release
  • dd95b10 Bump version numbers for 1.14.11
  • 631a82c Update Changelog
  • 60b7c93 Add one missed integrity hash
  • 60b4759 Merge pull request #2216 from beautify-web/staging/release
  • 6f3e5fe Merge pull request #2215 from beautify-web/staging/main
  • 340b577 Release: 1.14.10
  • 13bb155 Merge remote-tracking branch 'origin/staging/main' into staging/release
  • 4944f58 Bump version numbers for 1.14.10
  • 5a27c90 Update Changelog
  • a6698f0 Update milestone-publish.yml
  • 425755f Merge pull request #2195 from sobolevn/patch-1
  • 99347ac Merge pull request #2209 from likendev/fix/sri-hash-update
  • 8feaca4 fix: replace dracula to darcula
  • 9d638cb fix: updated SRI hash to sha512
  • cb270b3 fix: update SRI verification hash
  • 8314a12 Merge pull request #2203 from beautify-web/dependabot/npm_and_yarn/webpack-5.89.0
  • 48c8ef4 Merge pull request #2206 from beautify-web/dependabot/github_actions/actions/setup-node-4
  • f176cec Bump actions/setup-node from 3 to 4
  • 5674bd8 Bump webpack from 5.88.2 to 5.89.0
  • a101b70 Merge pull request #2200 from beautify-web/dependabot/npm_and_yarn/glob-10.3.10
  • d5c8e9c Bump glob from 10.3.4 to 10.3.10
  • 33d9bf2 Use raw strings to define a regex in `packer.py`
  • 6cf6782 Merge pull request #2192 from beautify-web/dependabot/github_actions/actions/checkout-4

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants