[Snyk] Upgrade @ledgerhq/hw-transport-node-hid from 6.20.0 to 6.27.1

[snyk-bot]

Snyk has created this PR to upgrade @ledgerhq/hw-transport-node-hid from 6.20.0 to 6.27.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 8 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2022-04-13.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Information Exposure SNYK-JS-SIMPLEGET-2361683	547/1000 Why? Proof of Concept exploit, CVSS 8.8	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @ledgerhq/hw-transport-node-hid

• 6.27.1 - 2022-04-13
  

  v6.27.1

• 6.27.1-fts.6 - 2022-04-04
• 6.25.1-alpha.3 - 2022-02-21
• 6.24.2-monorepo.4 - 2022-03-11
• 6.24.2-monorepo.3 - 2022-03-10
• 6.24.2-monorepo.1 - 2022-03-10
• 6.24.2-monorepo.0 - 2022-03-10
• 6.24.1 - 2022-02-04
• 6.20.0 - 2021-12-16

from @ledgerhq/hw-transport-node-hid GitHub release notes

Commit messages

Package name: @ledgerhq/hw-transport-node-hid

• 9639f96 v6.27.1
• 23ba9fa Bugfix/live 1799: Nano S Plus storage - Adjust size value (Complete the dev details in the readme for Taquito Package @taquito/tezbridge-wallet #835)
• f9554d5 LIVE-1819 FTS support (Complete the dev details in the readme for Taquito Package @taquito/remote-signer #831)
• 9e4a9d3 CAL biweekly update (Complete the dev details in the readme for Taquito Package @taquito/utils #834)
• 4f1c16e enable countervalue again (Examples in Metadata Explorer are not working with current nodes #823)
• 8697336 Bump minimist from 1.2.5 to 1.2.6 (Produce a more accurate estimate of batch operations by being more specific about the size of the individual operation #829)
• 00756c6 v6.28.0
• 4b61a05 v6.28.0
• 990c34c Merge pull request Support endorsement with slot in Taquito@9 for Florence #824 from LedgerHQ/feat/LL-1766 (add ETH Goerli)
• 02fa8ea Merge pull request Update Taquito website to use Florencenet #822 from LedgerHQ/bugfix/LIVE-1173-remove-old-trc-10-btt
• 3fca4c3 add ETH Goerli
• ebe3967 add ETH goerli
• a724ae0 remove btt commented
• e10edd2 LIVE-1173: remove old btt trc10
• 2d5a946 Apply some changes on stacks parameters (chore: Configure all workflows to run on private runners #820)
• 1494514 set upper case in first letter of name (Added a token for the type never in the Michelson Encoder #821)
• 53cbb0a change filecoin color (Move all jobs in the GitHub workflows to run on private GitHub runners #819)
• f3ccaba v6.27.0
• bbc9ea2 update axios
• 72ada08 Add Nervos to currencies.ts (Upgrading v9 #813)
• bfa5a2d CAL update (galphanet integration(All existing features, new protocol features not tracked in this issue) #817)
• a4c4c66 Add Cardano testnet currency support (Updated beacon-sdk to v2.2.5 #814)
• 5101f23 solana update explorer address urls (Fixed live examples - wallet API documentation #811)
• e57b91c 6 decimals for elrond WUSDC (Issue-638 Removed post install step #812)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[github-actions]

New packages have been deployed to the preview repository at https://npm.preview.tezostaquito.io/.

Published packages:

npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/
npm i @taquito/[email protected] --registry https://npm.preview.tezostaquito.io/

[roxaneletourneau]

The dependency update will need investigation because of the following error: