Title: [Snyk] Security upgrade cross-fetch from 2.2.3 to 3.0.6 by snyk-bot · Pull Request #6 · gladguy/Zilliqa-JavaScript-Library · GitHub
Open Graph Title: [Snyk] Security upgrade cross-fetch from 2.2.3 to 3.0.6 by snyk-bot · Pull Request #6 · gladguy/Zilliqa-JavaScript-Library
X Title: [Snyk] Security upgrade cross-fetch from 2.2.3 to 3.0.6 by snyk-bot · Pull Request #6 · gladguy/Zilliqa-JavaScript-Library
Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable dependencies to a fixed version: packages/zilliqa-js-core/package.json Vulnerabilities that will be fixed With an upgrade: Severity Priority Score (*) Issue Breaking Change Exploit Maturity 591/1000 Why? Recently disclosed, Has a fix available, CVSS 5.9 Denial of Service SNYK-JS-NODEFETCH-674311 Yes No Known Exploit (*) Note that the real score may have changed since the PR was raised. Commit messages Package name: cross-fetch The new version differs by 152 commits. 14afdc1 3.0.6 1d277e5 updated node-fetch to 2.6.1. fa4f96f updated dev dependencies. d5d7b9d Bump codecov from 3.7.0 to 3.7.1 55a319e Updated text about isomorphic-fetch in README c1354d3 3.0.5 a1da5de upgraded mocha to 8+. bb2955a updated minor and patch version of dev dependencies. 84328c7 updated dev dependencies. 7cffb05 updated who's using section on README. 0a95aef move "whatwg-fetch" in devDependencies 7466f27 updated supported environments section on README. 04ccbb2 updated supported node version. 65dbae4 added tags to the package. c3980f8 updated rollup module. d88fcc1 updated lint-staged module. e03d559 updated nyc module. ea6cea4 updated semver module. 06d4c56 updated ora module. 4e1f857 upgraded node to version 10 due some dependencies incompatibility. 48ae773 updated husky module. 5fb0f3f updated nock module. 038ff61 updated mocha module. 69c5b54 updated sinon module. See the full diff Check the changes in this PR to ensure they won't cause issues with your project. Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs. For more information: 🧐 View latest project report 🛠 Adjust project settings 📚 Read more about Snyk's upgrade and patch logic
Open Graph Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe...
X Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe...
Opengraph URL: https://github.com/gladguy/Zilliqa-JavaScript-Library/pull/6
X: @github
Domain: patch-diff.githubusercontent.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:e8cb23f2-8d79-0b07-ab33-d3e5a107a5b6 |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | EB46:10A5C:3DA5789:532147F:697B1265 |
| html-safe-nonce | 8cf92de8a04d871af0e7cf401bb3a71cbf6d3e1a7163fa60dd370efc6a4a7660 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFQjQ2OjEwQTVDOjNEQTU3ODk6NTMyMTQ3Rjo2OTdCMTI2NSIsInZpc2l0b3JfaWQiOiI1OTQyMjQ2NDg2MTUwMzk1ODkiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ== |
| visitor-hmac | c8ab4649763baa0fb556ab6babdd7950966a9bac3a576580b0fedc9eedbfbdbc |
| hovercard-subject-tag | pull_request:485481393 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/gladguy/Zilliqa-JavaScript-Library/pull/6/files |
| twitter:image | https://avatars.githubusercontent.com/u/19733683?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/u/19733683?s=400&v=4 |
| og:image:alt | Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 7ce8ed0a54c4730aeca4e6abacfc6490365fc42e25480b86883054df3f9181c8 |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/gladguy/Zilliqa-JavaScript-Library git https://github.com/gladguy/Zilliqa-JavaScript-Library.git |
| octolytics-dimension-user_id | 2222905 |
| octolytics-dimension-user_login | gladguy |
| octolytics-dimension-repository_id | 272172007 |
| octolytics-dimension-repository_nwo | gladguy/Zilliqa-JavaScript-Library |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | true |
| octolytics-dimension-repository_parent_id | 122440022 |
| octolytics-dimension-repository_parent_nwo | Zilliqa/zilliqa-js |
| octolytics-dimension-repository_network_root_id | 122440022 |
| octolytics-dimension-repository_network_root_nwo | Zilliqa/zilliqa-js |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | d7bfc78137af9a4828305e52ab993fce981d7085 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width