Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Security upgrade docsify from 4.12.1 to 4.12.2 #161

Merged
merged 1 commit into from
Jan 8, 2022

Conversation

snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Jan 8, 2022

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 539/1000
Why? Has a fix available, CVSS 6.5
Cross-site Scripting (XSS)
SNYK-JS-DOCSIFY-1090577
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: docsify The new version differs by 70 commits.
  • e424a9d chore: update test snapshots.
  • e80238d chore: add changelog 4.12.2
  • e405120 [build] 4.12.2
  • c90c6a4 style: allow devs to test both build and tests at the same time (#1707)
  • 5cac06d Merge pull request #1688 from docsifyjs/docker-local
  • aa91d9e Merge branch 'develop' into docker-local
  • 40e7749 fix: upgrade debug from 4.3.2 to 4.3.3 (#1692)
  • 6fbff47 Merge branch 'develop' into docker-local
  • c454335 update: commands.
  • 47cd3b6 Merge pull request #1683 from iNuanfeng/develop
  • 3399977 Merge branch 'develop' into develop
  • 40a5fa8 Merge pull request #1685 from docsifyjs/classes
  • a5b34c2 update: integration.
  • ba2127b update: rebuild.
  • 9200174 update: remove user.
  • 1a836c9 test:docker locally.
  • 5e0f68c convert Docsify and mixins to ES classes
  • f03eb79 fix sidebar height style in Mobile Chrome
  • cefe3f8 fix: upgrade node-fetch from 2.6.5 to 2.6.6 (#1668)
  • 760e0c7 docs: update noCompileLinks documentation (#1666)
  • c3cdadc fix: Cannot read property 'tagName' of null (#1655)
  • 57dc8a9 docs: Update nameLink in configuration.md (#1653)
  • d16e657 fix: upgrade node-fetch from 2.6.4 to 2.6.5 (#1654)
  • a5cf85b docs: add nameLink for change logo redirect. (#1651)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

@sy-records sy-records merged commit e9ea2c1 into master Jan 8, 2022
@sy-records sy-records deleted the snyk-fix-ddd44a58d5d262d5fef684e9b03358ef branch January 8, 2022 11:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants