[Snyk] Upgrade js-beautify from 1.10.2 to 1.14.11

[ch-snyk-sa]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade js-beautify from 1.10.2 to 1.14.11.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 26 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2023-11-07.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-JSBEAUTIFY-2311652	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-2429795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: js-beautify

• 1.14.11 - 2023-11-07
  No content.
• 1.14.10 - 2023-11-07
  

  Release: 1.14.10

• 1.14.9 - 2023-07-20
  No content.
• 1.14.8 - 2023-06-01
  No content.
• 1.14.7 - 2022-10-21
  

  Release: 1.14.7

• 1.14.6 - 2022-08-21
  No content.
• 1.14.5 - 2022-08-07
  No content.
• 1.14.4 - 2022-06-20
  No content.
• 1.14.3 - 2022-04-09
  No content.
• 1.14.2 - 2022-03-29
  No content.
• 1.14.1 - 2022-03-28
• 1.14.0 - 2021-06-14
• 1.13.13 - 2021-04-16
• 1.13.11 - 2021-04-13
• 1.13.8 - 2021-04-13
• 1.13.7 - 2021-04-13
• 1.13.6 - 2021-04-13
• 1.13.5 - 2021-01-26
• 1.13.4 - 2021-01-12
• 1.13.3 - 2021-01-12
• 1.13.2 - 2021-01-12
• 1.13.1 - 2021-01-09
• 1.13.0 - 2020-08-20
• 1.12.0 - 2020-08-13
• 1.11.0 - 2020-04-05
• 1.10.3 - 2020-01-14
• 1.10.2 - 2019-08-06

from js-beautify GitHub release notes

Commit messages

Package name: js-beautify

• 53e3f9a Merge remote-tracking branch 'origin/staging/main' into staging/release
• dd95b10 Bump version numbers for 1.14.11
• 631a82c Update Changelog
• 60b7c93 Add one missed integrity hash
• 60b4759 Merge pull request #2216 from beautify-web/staging/release
• 6f3e5fe Merge pull request #2215 from beautify-web/staging/main
• 340b577 Release: 1.14.10
• 13bb155 Merge remote-tracking branch 'origin/staging/main' into staging/release
• 4944f58 Bump version numbers for 1.14.10
• 5a27c90 Update Changelog
• a6698f0 Update milestone-publish.yml
• 425755f Merge pull request #2195 from sobolevn/patch-1
• 99347ac Merge pull request #2209 from likendev/fix/sri-hash-update
• 8feaca4 fix: replace dracula to darcula
• 9d638cb fix: updated SRI hash to sha512
• cb270b3 fix: update SRI verification hash
• 8314a12 Merge pull request #2203 from beautify-web/dependabot/npm_and_yarn/webpack-5.89.0
• 48c8ef4 Merge pull request #2206 from beautify-web/dependabot/github_actions/actions/setup-node-4
• f176cec Bump actions/setup-node from 3 to 4
• 5674bd8 Bump webpack from 5.88.2 to 5.89.0
• a101b70 Merge pull request #2200 from beautify-web/dependabot/npm_and_yarn/glob-10.3.10
• d5c8e9c Bump glob from 10.3.4 to 10.3.10
• 33d9bf2 Use raw strings to define a regex in `packer.py`
• 6cf6782 Merge pull request #2192 from beautify-web/dependabot/github_actions/actions/checkout-4

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs