Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Security upgrade typedoc from 0.15.8 to 0.17.5 #11

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Dec 9, 2020

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3
Regular Expression Denial of Service (ReDoS)
SNYK-JS-HIGHLIGHTJS-1048676
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: typedoc The new version differs by 157 commits.
  • b2a5421 chore: Bump version to 0.17.5
  • 8fb1258 chore: Fixed test for map declaration type (#1282)
  • 829f147 chore: Fix lint
  • d222fb6 chore: Upgrade dependencies
  • 8708143 Merge branch 'library-mode'
  • b03a13b chore: Fix typos is bounds check
  • 42de2af feat: Number options may require min and max values (#1278)
  • 4067f2c fix: Do not silently swallow missing include/media file errors (#1277)
  • d5c2d47 fix: Fix extends option in tsconfig.json doesn't work (#1273)
  • 91644a9 feat: Add detecting read-only properties (#1268)
  • 8c2b698 fix: Improve output for object's computed property names (#1275)
  • 262a89c feat: Remove Result object
  • b870905 fix: Enable lax overloads only in release
  • 2f38fc5 chore: Bump version to 0.17.4
  • 532a621 chore: Update issue templates
  • d3af643 chore: Upgrade dependencies
  • c73eaaf feat: Generate search index before rendering theme (#1252)
  • c296503 fix(options): Map type options should not have their default value validated (#1250)
  • 2e63096 chore: Bump version to 0.17.3
  • f629446 chore: Rebuild specs
  • 96ba7f9 chore: Upgrade theme dependency
  • 2983acf fix: Empty legend on most pages
  • 66eba4a chore: Bump version to 0.17.2
  • 7994456 fix: Pin marked to 0.8.0

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant