Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade @nestjs/cli from 9.2.0 to 10.3.2 #279

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade @nestjs/cli from 9.2.0 to 10.3.2 #279

wants to merge 1 commit into from

Conversation

snyk-io[bot]
Copy link

@snyk-io snyk-io bot commented Jul 19, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade @nestjs/cli from 9.2.0 to 10.3.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

  • The recommended version is 41 versions ahead of your current version.

  • The recommended version was released on 5 months ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Uncontrolled resource consumption
SNYK-JS-BRACES-6838727		 44 Proof of Concept
high severity Inefficient Regular Expression Complexity
SNYK-JS-MICROMATCH-6838728		 44 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 44 Proof of Concept
high severity Sandbox Bypass
SNYK-JS-WEBPACK-3358798		 44 Proof of Concept
medium severity Denial of Service (DoS)
SNYK-JS-GRAPHQL-5905181		 44 Proof of Concept
medium severity Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		 44 Proof of Concept
medium severity Cross-site Scripting (XSS)
SNYK-JS-SERIALIZEJAVASCRIPT-6147607		 44 Proof of Concept
low severity Information Exposure
SNYK-JS-APOLLOSERVERCORE-5876618		 44 No Known Exploit
Release notes
Package name: @nestjs/cli
  • 10.3.2 - 2024-02-07
    • Merge pull request #2502 from micalevisk/fix/issue-2458 (195dc7b)
    • Merge pull request #2503 from nestjs/renovate/chokidar-3.x (42b15e1)
    • fix(deps): update dependency chokidar to v3.6.0 (e256345)
    • style: fix formatting (be2f7e6)
    • feat: check only the major slice on nestjs dep mismatch (4c89de4)
    • chore(deps): update typescript-eslint monorepo to v6.21.0 (ec761a4)
    • chore(deps): update dependency lint-staged to v15.2.2 (8b7083e)
    • chore(deps): update dependency @ swc/core to v1.4.0 (9cac3ff)
    • chore(deps): update dependency @ swc/cli to v0.3.9 (49a5267)
  • 10.3.1 - 2024-02-05
    • chore: sync package lock (dcfa4c5)
    • Merge pull request #2439 from nestjs/renovate/nest-monorepo (b8769b5)
    • Merge branch 'fix-swc' of https://github.com/noahw3/nest-cli (1ec9cce)
    • Merge pull request #2488 from nestjs/renovate/swc-cli-0.x (9f25482)
    • Merge pull request #2476 from kishorliv/update-gitignore (73ad8a2)
    • Merge pull request #2469 from nestjs/renovate/webpack-5.x (da825e6)
    • Merge pull request #2453 from nestjs/renovate/cimg-node-21.x (bdf71bc)
    • Merge pull request #2446 from micalevisk/fix/issue-2434 (bc3c0f8)
    • Merge pull request #2365 from nestjs/renovate/angular-cli-monorepo (c76a9b0)
    • Merge pull request #2497 from ianzone/swc-apply-tsconfig-sourcemap (cd8827f)
    • Update swc-defaults.ts to apply tsconfig source map options. (5eddbea)
    • chore(deps): update dependency prettier to v3.2.5 (3ddd7a5)
    • chore(deps): update dependency husky to v9.0.10 (21dcde0)
    • chore(deps): update dependency @ types/node to v20.11.16 (d8dfc99)
    • chore(deps): update dependency @ types/jest to v29.5.12 (112c5a8)
    • fix(deps): update dependency webpack to v5.90.1 (ab7e580)
    • fix: update default swc config to be compatible with @ swc/cli@^0.3.0 (1a10fbd)
    • chore(deps): update dependency @ swc/cli to v0.3.6 (1d3e056)
    • chore(deps): update dependency @ swc/core to v1.3.107 (901be09)
    • chore(deps): update dependency @ types/node to v20.11.15 (02a73f1)
    • chore(deps): update dependency @ types/node to v20.11.14 (02459c5)
    • fix(deps): update angular-cli monorepo to v17.1.2 (e18f00e)
    • chore(deps): update dependency lint-staged to v15.2.1 (e74f6c6)
    • chore(deps): update dependency @ types/node to v20.11.13 (edbd64d)
    • chore(deps): update dependency @ types/node to v20.11.11 (b45e8bc)
    • chore(deps): update typescript-eslint monorepo to v6.20.0 (c5d0395)
    • chore(deps): update dependency husky to v9.0.7 (e8af9e7)
    • chore(deps): update dependency @ types/node to v20.11.10 (84574fc)
    • chore(deps): update dependency @ types/node to v20.11.8 (24b2b1a)
    • refactor: add more files and directories in gitignore (086aef8)
    • chore(deps): update dependency @ types/node to v20.11.7 (16644de)
    • chore(deps): update dependency husky to v9.0.6 (d73c38f)
    • chore(deps): update dependency husky to v9.0.5 (08b6aa6)
    • chore(deps): update commitlint monorepo to v18.6.0 (cea5a33)
    • chore(deps): update dependency husky to v9 (7ef15ce)
    • chore(deps): update dependency @ types/node to v20.11.6 (0e1b2be)
    • chore(deps): update dependency release-it to v17.0.3 (a6c72db)
    • chore(deps): update typescript-eslint monorepo to v6.19.1 (0a9fab5)
    • chore(deps): update dependency ts-jest to v29.1.2 (0e860d6)
    • chore(deps): update dependency @ swc/cli to v0.1.65 (5f9e498)
    • chore(deps): update commitlint monorepo to v18.5.0 (aeef7b4)
    • chore(deps): update dependency @ swc/cli to v0.1.64 (d10f9c1)
    • chore(deps): update dependency @ swc/core to v1.3.105 (9b4a40f)
    • chore(deps): update dependency prettier to v3.2.4 (a5bf70d)
    • chore(deps): update dependency @ swc/core to v1.3.104 (6cc73d4)
    • chore(deps): update dependency @ types/node to v20.11.5 (1ac4b97)
    • chore(deps): update dependency prettier to v3.2.3 (ea68d68)
    • chore(deps): update node.js to v21.6 (7ba622d)
    • chore(deps): update dependency @ types/node to v20.11.4 (88e82e9)
    • chore(deps): update dependency @ types/node to v20.11.3 (20e8fbb)
    • chore(deps): update typescript-eslint monorepo to v6.19.0 (5c3a027)
    • chore(deps): update dependency @ types/node to v20.11.2 (579d5c3)
    • style: fix formatting (b44b23a)
    • chore(deps): update dependency @ swc/core to v1.3.103 (d20e076)
    • chore(deps): update dependency @ types/node to v20.11.1 (93e2b0b)
    • fix: crash when some file config was found without permissions (5b747ac)
    • perf: switch to sync version instead from the promise api of 'fs' module (da74662)
    • chore(deps): update dependency prettier to v3.2.2 (da9cbe0)
    • chore(deps): update dependency prettier to v3.2.1 (5651532)
    • chore(deps): update dependency prettier to v3.2.0 (6c868fd)
    • chore(deps): update dependency @ types/node to v20.11.0 (f4373ef)
    • chore(deps): update dependency @ types/node to v20.10.8 (8d4c1d8)
    • chore(deps): update typescript-eslint monorepo to v6.18.1 (52af7a5)
    • fix(deps): update dependency @ nestjs/schematics to v10.1.0 (6b3fb23)
  • 10.3.0 - 2024-01-08
    • Merge pull request #2396 from GreGosPhaTos/feature/issues-1929 (4dd9447)
    • Merge pull request #2361 from nestjs/renovate/nest-monorepo (f8d5db0)
    • Merge pull request #2374 from nestjs/renovate/major-angular-cli-monorepo (e43c8f6)
    • Merge pull request #2389 from nestjs/renovate/typescript-5.x (480fda3)
    • Merge pull request #2382 from nestjs/renovate/cimg-node-21.x (8f9fc32)
    • Merge pull request #2403 from chamsou123/issue-2400-patch (c3cfc0d)
    • chore(deps): update dependency @ types/node to v20.10.7 (31bfda2)
    • chore(deps): update commitlint monorepo to v18.4.4 (040ed67)
    • chore(deps): update typescript-eslint monorepo to v6.18.0 (65bdb63)
    • fix(deps): update angular-cli monorepo to v17 (7a79b82)
    • chore(deps): update node.js to v21.5 (05a71e4)
    • chore(deps): update typescript-eslint monorepo to v6.17.0 (6617460)
    • chore(deps): update dependency @ swc/core to v1.3.102 (7d15b12)
    • chore(deps): update dependency @ types/node to v20.10.6 (e27381b)
    • chore(deps): update typescript-eslint monorepo to v6.16.0 (9454d1d)
    • chore(deps): update typescript-eslint monorepo to v6.15.0 (8fe8368)
    • chore(deps): update dependency @ swc/core to v1.3.101 (a390cd6)
    • chore(deps): update dependency @ types/node to v20.10.5 (f7a40d0)
    • chore(deps): update dependency eslint to v8.56.0 (7c34e37)
    • chore(deps): update typescript-eslint monorepo to v6.14.0 (a95b21e)
    • chore(deps): update dependency prettier to v3.1.1 (476f886)
    • chore(deps): update dependency release-it to v17.0.1 (66543f8)
    • chore(deps): update dependency @ types/node to v20.10.4 (bb36399)
    • fix(deps): update dependency typescript to v5.3.3 (80dc9f0)
    • chore(deps): update dependency @ types/jest to v29.5.11 (a322174)
    • chore(deps): update typescript-eslint monorepo to v6.13.2 (958ed28)
    • chore(deps): update dependency @ types/node to v20.10.3 (04662d0)
    • chore(deps): update dependency lint-staged to v15.2.0 (87a38c7)
    • chore(deps): update dependency eslint-config-prettier to v9.1.0 (77f807e)
    • chore(deps): update dependency eslint to v8.55.0 (0ab63a2)
    • chore(deps): update dependency @ types/node to v20.10.2 (c4a7425)
    • chore(deps): update dependency @ swc/core to v1.3.100 (e635057)
    • chore(deps): update dependency @ types/node to v20.10.1 (0531ef1)
    • chore(deps): update typescript-eslint monorepo to v6.13.1 (6592920)
    • chore(deps): update typescript-eslint monorepo to v6.13.0 (1f075f1)
    • refactor: Implement osName, remove os-name package (ab55b2d)
    • feat: add warning message for the info command (d29182f)
    • chore(deps): update dependency @ types/node to v20.10.0 (609bb5c)
    • chore(deps): update dependency @ types/node to v20.9.5 (a73fe57)
    • feat: add warning message for the info command (305c3dd)
    • feat: add warning message for the info command (32b9380)
    • chore(deps): update dependency @ types/node to v20.9.4 (2998fbc)
    • chore(deps): update dependency @ types/jest to v29.5.10 (ac5df03)
    • chore(deps): update dependency @ types/node to v20.9.3 (4dc64e8)
    • chore(deps): update dependency @ swc/core to v1.3.99 (deab264)
    • chore(deps): update commitlint monorepo to v18.4.3 (db2f726)
    • chore(deps): update dependency @ types/jest to v29.5.9 (7fea472)
    • chore(deps): update typescript-eslint monorepo to v6.12.0 (11a7461)
    • chore(deps): update dependency @ types/node to v20.9.2 (7ac639b)
    • chore(deps): update dependency eslint to v8.54.0 (7af3ce3)
    • chore(deps): update dependency @ types/node to v20.9.1 (6a29660)
    • chore(deps): update dependency @ swc/cli to v0.1.63 (5af7263)
    • chore(deps): update commitlint monorepo to v18.4.2 (7ec7576)
    • chore(deps): update dependency ts-loader to v9.5.1 (6094178)
    • chore(deps): update typescript-eslint monorepo to v6.11.0 (7439da6)
    • chore(deps): update dependency prettier to v3.1.0 (4936cb6)
    • chore(deps): update dependency @ commitlint/cli to v18.4.1 (566e0d5)
    • chore(deps): update dependency lint-staged to v15.1.0 (e30b642)
    • chore(deps): update dependency release-it to v17 (6965a80)
    • chore(deps): update commitlint monorepo to v18.4.0 (256e637)
    • chore(deps): update dependency @ types/node to v20.9.0 (69434e3)
    • chore(deps): update dependency @ types/jest to v29.5.8 (c20d88a)
    • chore(deps): update dependency @ types/webpack-node-externals to v3.0.4 (3b0fa60)
    • chore(deps): update dependency @ types/shelljs to v0.8.15 (7a204bb)
    • chore(deps): update typescript-eslint monorepo to v6.10.0 (2f32f19)
    • chore(deps): update dependency @ swc/core to v1.3.96 (e93af4c)
    • chore(deps): update dependency eslint to v8.53.0 (4f93e71)
    • chore(deps): update dependency @ types/node to v20.8.10 (56a4d52)
    • chore(deps): update dependency @ types/jest to v29.5.7 (3e0accd)
    • chore(deps): update typescript-eslint monorepo to v6.9.1 (262f0aa)
    • fix(deps): update dependency @ nestjs/schematics to v10.0.3 (cd1699e)
  • 10.2.1 - 2023-10-30
    • Merge pull request #2355 from nestjs/renovate/angular-cli-monorepo (b827393)
    • Merge pull request #2357 from nestjs/renovate/cimg-node-21.x (eb5b341)
    • Merge pull request #2360 from nestjs/renovate/fork-ts-checker-webpack-plugin-9.x (caba0dc)
    • Merge pull request #2359 from micalevisk/patch-1 (0c1ac7c)
    • fix(deps): update dependency fork-ts-checker-webpack-plugin to v9.0.2 (abe8f5b)
    • fix: when running start on dir paths with blank spaces (b3874f5)
    • chore(deps): update node.js to v21.1 (89880ff)
    • chore(deps): update dependency @ commitlint/cli to v18.2.0 (59ce182)
    • chore(deps): update dependency @ types/node to v20.8.9 (4cf169b)
    • fix(deps): update angular-cli monorepo to v16.2.8 (b52f9d5)
    • chore(deps): update commitlint monorepo to v18.1.0 (ad69f2d)
    • chore(deps): update dependency @ swc/core to v1.3.95 (8e58506)
    • chore(deps): update dependency @ types/node to v20 (7f2d709)
    • chore(deps): update typescript-eslint monorepo to v6.9.0 (ad212b1)
    • Merge pull request #2348 from nestjs/renovate/nest-monorepo (ec7e6e5)
    • Merge pull request

@snyk-io
feat: upgrade @nestjs/cli from 9.2.0 to 10.3.2
43fedca 
Snyk has created this PR to upgrade @nestjs/cli from 9.2.0 to 10.3.2.

See this package in npm:
@nestjs/cli

See this project in Snyk:
https://app.snyk.io/org/cachiman/project/e8a09aad-d984-41b5-b868-fc0ac0b05847?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
@google-cla Google CLA
Copy link

google-cla bot commented Jul 19, 2024

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Jul 19, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants