[Snyk] Upgrade: , swarm-js, typescript #276

BitcoinOutput · 2024-09-13T00:06:46Z

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

@types/node
from 12.20.13 to 12.20.55 | 42 versions ahead of your current version | 2 years ago
on 2022-06-07
swarm-js
from 0.1.40 to 0.1.42 | 1 version ahead of your current version | 2 years ago
on 2022-09-08
typescript
from 3.9.9 to 3.9.10 | 1 version ahead of your current version | 3 years ago
on 2021-06-16

Issues fixed by the recommended upgrade:

Issue	Score	Exploit Maturity
Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	481	No Known Exploit
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	481	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577916	481	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577917	481	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577918	481	Proof of Concept
Information Exposure SNYK-JS-SIMPLEGET-2361683	481	Proof of Concept
Arbitrary File Overwrite SNYK-JS-TAR-1536528	481	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	481	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	481	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	481	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579155	481	No Known Exploit
Prototype Poisoning SNYK-JS-QS-3153490	481	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	481	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	481	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	481	Proof of Concept
Open Redirect SNYK-JS-EXPRESS-6474509	481	No Known Exploit
Cross-site Scripting SNYK-JS-EXPRESS-7926867	481	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	481	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	481	No Known Exploit
Cross-site Scripting SNYK-JS-SEND-7926862	481	No Known Exploit
Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	481	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	481	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	481	Proof of Concept

Release notes

Package name: @types/node

12.20.55 - 2022-06-07
12.20.54 - 2022-05-31
12.20.53 - 2022-05-31
12.20.52 - 2022-05-12
12.20.51 - 2022-05-10
12.20.50 - 2022-04-26
12.20.49 - 2022-04-24
12.20.48 - 2022-04-14
12.20.47 - 2022-03-07
12.20.46 - 2022-02-14
12.20.45 - 2022-02-10
12.20.44 - 2022-02-10
12.20.43 - 2022-02-01
12.20.42 - 2022-01-17
12.20.41 - 2022-01-04
12.20.40 - 2022-01-01
12.20.39 - 2021-12-26
12.20.38 - 2021-12-20
12.20.37 - 2021-11-08
12.20.36 - 2021-10-25
12.20.35 - 2021-10-25
12.20.34 - 2021-10-22
12.20.33 - 2021-10-13
12.20.32 - 2021-10-13
12.20.31 - 2021-10-13
12.20.30 - 2021-10-13
12.20.29 - 2021-10-12
12.20.28 - 2021-10-05
12.20.27 - 2021-09-25
12.20.26 - 2021-09-21
12.20.25 - 2021-09-14
12.20.24 - 2021-09-07
12.20.23 - 2021-08-31
12.20.22 - 2021-08-31
12.20.21 - 2021-08-26
12.20.20 - 2021-08-21
12.20.19 - 2021-08-04
12.20.18 - 2021-08-01
12.20.17 - 2021-07-24
12.20.16 - 2021-07-07
12.20.15 - 2021-06-07
12.20.14 - 2021-06-02
12.20.13 - 2021-05-12

from @types/node GitHub release notes

Package name: swarm-js

0.1.42 - 2022-09-08
0.1.40 - 2020-03-04

from swarm-js GitHub release notes

Package name: typescript

3.9.10 - 2021-06-16
This release ships both an overall performance improvement, along with a mitigation for a performance regression when upgrading to Node.js 16. See the change for more details.
3.9.9 - 2021-02-10

from typescript GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.
Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade: - @types/node from 12.20.13 to 12.20.55. See this package in npm: https://www.npmjs.com/package/@types/node - swarm-js from 0.1.40 to 0.1.42. See this package in npm: https://www.npmjs.com/package/swarm-js - typescript from 3.9.9 to 3.9.10. See this package in npm: https://www.npmjs.com/package/typescript See this project in Snyk: https://app.snyk.io/org/debuggineffect/project/d75a464a-a911-4cc9-96fe-f82cfe490c72?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade: , swarm-js, typescript #276

[Snyk] Upgrade: , swarm-js, typescript #276

BitcoinOutput commented Sep 13, 2024

[Snyk] Upgrade: , swarm-js, typescript #276

Are you sure you want to change the base?

[Snyk] Upgrade: , swarm-js, typescript #276

Conversation

BitcoinOutput commented Sep 13, 2024

Snyk has created this PR to upgrade multiple dependencies.

Issues fixed by the recommended upgrade: