[Snyk] Upgrade joi from 17.3.0 to 17.12.0

[MRdevX]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade joi from 17.3.0 to 17.12.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 26 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2024-01-17.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-ASYNC-2441827	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-ASYNC-2441827	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-VIZION-565230	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MONGOOSE-2961688	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MONGOOSE-5777721	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-NODEMAILER-1038834	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SIDEWAYFORMULA-3317169	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-SWAGGERUIDIST-2314884	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Mature
	Server-side Request Forgery (SSRF) SNYK-JS-SWAGGERUIDIST-6056393	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-MONGODB-5871303	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-MONGOOSE-1086688	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SYSTEMINFORMATION-1043753	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-MQUERY-1050858	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MQUERY-1089718	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-NETMASK-1089716	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-NETMASK-6056519	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Directory Traversal SNYK-JS-MOMENT-2440688	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-SYSTEMINFORMATION-1050436	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-SYSTEMINFORMATION-1074913	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Mature
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Arbitrary Command Injection SNYK-JS-SYSTEMINFORMATION-1243748	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	HTTP Header Injection SNYK-JS-NODEMAILER-1296415	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NODEMAILER-6219989	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MPATH-1577289	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Denial of Service (DoS) SNYK-JS-SYSTEMINFORMATION-1073627	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-SYSTEMINFORMATION-1078290	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Improper Input Validation SNYK-JS-SYSTEMINFORMATION-1244526	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SYSTEMINFORMATION-1047312	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: joi

• 17.12.0 - 2024-01-17
  

  17.12.0

• 17.11.1 - 2024-01-15
  

  17.11.1

• 17.11.0 - 2023-10-04
  

  17.11.0

• 17.10.2 - 2023-09-17
  

  17.10.2

• 17.10.1 - 2023-08-31
  

  17.10.1

• 17.10.0 - 2023-08-27
  

  17.10.0

• 17.9.2 - 2023-04-24
  

  17.9.2

• 17.9.1 - 2023-03-21
  

  17.9.1

• 17.9.0 - 2023-03-20
  

  17.9.0

• 17.8.4 - 2023-03-14
• 17.8.3 - 2023-02-21
• 17.8.2 - 2023-02-21
• 17.8.1 - 2023-02-19
• 17.8.0 - 2023-02-19
• 17.7.1 - 2023-02-10
• 17.7.0 - 2022-11-01
• 17.6.4 - 2022-10-22
• 17.6.3 - 2022-10-11
• 17.6.2 - 2022-09-29
• 17.6.1 - 2022-09-22
• 17.6.0 - 2022-01-26
• 17.5.0 - 2021-12-02
• 17.4.3 - 2021-12-01
• 17.4.2 - 2021-08-01
• 17.4.1 - 2021-07-11
• 17.4.0 - 2021-02-08
• 17.3.0 - 2020-10-24

from joi GitHub release notes

Commit messages

Package name: joi

• e7687b1 17.12.0
• adba13c Merge pull request #3014 from hapijs/feat/hex-prefix
• 336a338 feat: improve over #3011
• b532225 add tests
• 821b268 allow hex with prefix
• fb5926c 17.11.1
• 6d11457 chore: bump packages to latest versions
• 5451b3b Fix for #2874
• 83c2fa7 fix: do not override existing labels of underlying schemas in alternatives
• fe89d2d fix: LanguageMessages type now supports languages in TypeScript
• 9f60493 Merge pull request #3013 from hapijs/fix/multiple-precision
• cf2b6fa chore: add v17 branch to CI targets
• a06fbe2 fix: precision issue on number().multiple()
• aed0920 17.11.0
• ea6557c Merge pull request #2988 from hapijs/feat/custom-expression-functions
• 6a835c1 feat: allow custom expression functions
• 01bff41 17.10.2
• 81348f4 Merge pull request #2986 from hapijs/fix/missing-template-reference
• df7f8d2 fix: missing template reference should return null
• 89d7d51 17.10.1
• 9ead10b Merge pull request #2983 from hapijs/fix/error-return-type
• 0cce812 fix: allow any.error() return type to be ErrorReport[]
• b655785 17.10.0
• 087b43b property metas in Description

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs