Open
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MIXINDEEP-450212 - https://snyk.io/vuln/SNYK-JS-ONHEADERS-10773729 - https://snyk.io/vuln/SNYK-JS-PATHPARSE-1077067 - https://snyk.io/vuln/SNYK-JS-QS-14724253 - https://snyk.io/vuln/SNYK-JS-QS-3153490 - https://snyk.io/vuln/SNYK-JS-REQUEST-3361831 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-SETVALUE-1540541 - https://snyk.io/vuln/SNYK-JS-SETVALUE-450213 - https://snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873 - https://snyk.io/vuln/SNYK-JS-TYPEORM-590152 - https://snyk.io/vuln/SNYK-JS-UGLIFYJS-1727251 - https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984 - https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660 - https://snyk.io/vuln/SNYK-JS-VALIDATOR-1090599 - https://snyk.io/vuln/SNYK-JS-VALIDATOR-1090601 - https://snyk.io/vuln/SNYK-JS-VALIDATOR-1090602 - https://snyk.io/vuln/SNYK-JS-Y18N-1021887 - https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381 - https://snyk.io/vuln/npm:adm-zip:20180415 - https://snyk.io/vuln/SNYK-JS-JQUERY-565129 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/SNYK-JS-LODASH-567746 - https://snyk.io/vuln/npm:mongoose:20160116 - https://snyk.io/vuln/npm:npmconf:20180512 - https://snyk.io/vuln/SNYK-JS-JQUERY-567880 - https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969 - https://snyk.io/vuln/SNYK-JS-LODASH-6139239 - https://snyk.io/vuln/SNYK-JS-JQUERY-174006 - https://snyk.io/vuln/SNYK-JS-LODASH-450202 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-FORMDATA-10841150 - https://snyk.io/vuln/SNYK-JS-LODASH-73638 - https://snyk.io/vuln/npm:ejs:20161128 - https://snyk.io/vuln/npm:marked:20150520 - https://snyk.io/vuln/npm:lodash:20180130 - https://snyk.io/vuln/SNYK-JS-DICER-2311764 - https://snyk.io/vuln/SNYK-JS-LODASH-73639 - https://snyk.io/vuln/SNYK-JS-BABELTRAVERSE-5962463 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534478 - https://snyk.io/vuln/npm:dustjs-linkedin:20160819 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1056767 - https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-473997 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534988 - https://snyk.io/vuln/npm:moment:20161019 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-15309438 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-15353389 - https://snyk.io/vuln/SNYK-JS-AJV-584908 - https://snyk.io/vuln/npm:jquery:20150627 - https://snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970 - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-BRACES-6838727 - https://snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230 - https://snyk.io/vuln/npm:st:20140206 - https://snyk.io/vuln/SNYK-JS-AJV-15274295 - https://snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922 - https://snyk.io/vuln/SNYK-JS-INI-1048974 - https://snyk.io/vuln/SNYK-JS-LODASH-15053838 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029 - https://snyk.io/vuln/SNYK-JS-MINIMIST-559764 - https://snyk.io/vuln/npm:ejs:20161130-1 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-567742 - https://snyk.io/vuln/npm:ejs:20161130 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-469063 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/npm:qs:20170213 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-480388 - https://snyk.io/vuln/npm:negotiator:20160616 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-173692 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-174183 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/npm:ms:20151024 - https://snyk.io/vuln/npm:mem:20180117 - https://snyk.io/vuln/npm:ms:20170412 - https://snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355 - https://snyk.io/vuln/SNYK-JS-DIFF-14917201 - https://snyk.io/vuln/SNYK-JS-KINDOF-537849 - https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795 - https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-9789073 - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 - https://snyk.io/vuln/npm:semver:20150403 - https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818 - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 - https://snyk.io/vuln/SNYK-JS-ISTANBULREPORTS-2328088
Owner
Author
⛔ Snyk checks have failed. 8 issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 85 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.jsonpackage-lock.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-MIXINDEEP-450212
SNYK-JS-ONHEADERS-10773729
SNYK-JS-PATHPARSE-1077067
SNYK-JS-QS-14724253
SNYK-JS-QS-3153490
SNYK-JS-REQUEST-3361831
SNYK-JS-SEMVER-3247795
SNYK-JS-SETVALUE-1540541
SNYK-JS-SETVALUE-450213
SNYK-JS-TOUGHCOOKIE-5672873
SNYK-JS-TYPEORM-590152
SNYK-JS-UGLIFYJS-1727251
SNYK-JS-UNDERSCORE-1080984
SNYK-JS-UNSETVALUE-2400660
SNYK-JS-VALIDATOR-1090599
SNYK-JS-VALIDATOR-1090601
SNYK-JS-VALIDATOR-1090602
SNYK-JS-Y18N-1021887
SNYK-JS-YARGSPARSER-560381
npm:adm-zip:20180415
SNYK-JS-JQUERY-565129
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-567746
npm:mongoose:20160116
npm:npmconf:20180512
SNYK-JS-JQUERY-567880
SNYK-JS-EXPRESSFILEUPLOAD-595969
SNYK-JS-LODASH-6139239
SNYK-JS-JQUERY-174006
SNYK-JS-LODASH-450202
SNYK-JS-LODASH-608086
SNYK-JS-FORMDATA-10841150
SNYK-JS-LODASH-73638
npm:ejs:20161128
npm:marked:20150520
npm:lodash:20180130
SNYK-JS-DICER-2311764
SNYK-JS-LODASH-73639
SNYK-JS-BABELTRAVERSE-5962463
SNYK-JS-HANDLEBARS-534478
npm:dustjs-linkedin:20160819
SNYK-JS-HANDLEBARS-1056767
SNYK-JS-EXPRESSFILEUPLOAD-473997
SNYK-JS-HANDLEBARS-534988
npm:moment:20161019
SNYK-JS-MINIMATCH-15309438
SNYK-JS-MINIMATCH-15353389
SNYK-JS-AJV-584908
npm:jquery:20150627
SNYK-JS-DECODEURICOMPONENT-3149970
SNYK-JS-ANSIREGEX-1583908
SNYK-JS-BRACES-6838727
SNYK-JS-CROSSSPAWN-8303230
npm:st:20140206
SNYK-JS-AJV-15274295
SNYK-JS-JSONSCHEMA-1920922
SNYK-JS-INI-1048974
SNYK-JS-LODASH-15053838
SNYK-JS-HANDLEBARS-1279029
SNYK-JS-MINIMIST-559764
npm:ejs:20161130-1
SNYK-JS-HANDLEBARS-567742
npm:ejs:20161130
SNYK-JS-HANDLEBARS-469063
SNYK-JS-INFLIGHT-6095116
npm:qs:20170213
SNYK-JS-HANDLEBARS-480388
npm:negotiator:20160616
SNYK-JS-HANDLEBARS-173692
SNYK-JS-HANDLEBARS-174183
SNYK-JS-LODASH-1018905
npm:ms:20151024
npm:mem:20180117
npm:ms:20170412
SNYK-JS-HOSTEDGITINFO-1088355
SNYK-JS-DIFF-14917201
SNYK-JS-KINDOF-537849
SNYK-JS-MINIMIST-2429795
SNYK-JS-BRACEEXPANSION-9789073
SNYK-JS-JSYAML-13961110
npm:semver:20150403
SNYK-JS-MICROMATCH-6838728
SNYK-JS-MINIMATCH-3050818
SNYK-JS-COOKIE-8163060
SNYK-JS-ISTANBULREPORTS-2328088
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
🦉 Prototype Pollution
🦉 Cross-site Scripting (XSS)
🦉 More lessons are available in Snyk Learn