[Snyk] Upgrade react-scripts from 3.0.1 to 3.4.4 #503

felayo · 2024-11-01T18:34:22Z

Snyk has created this PR to upgrade react-scripts from 3.0.1 to 3.4.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 15 versions ahead of your current version.
The recommended version was released on 4 years ago.

Issues fixed by the recommended upgrade:

Issue	Score	Exploit Maturity
Improper Input Validation SNYK-JS-URLPARSE-2407770	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WEBSOCKETEXTENSIONS-570623	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	427	Proof of Concept
Prototype Pollution SNYK-JS-NODEFORGE-598677	427	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	427	No Known Exploit
Cryptographic Issues SNYK-JS-ELLIPTIC-571484	427	Proof of Concept
Prototype Pollution SNYK-JS-INI-1048974	427	Proof of Concept
Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	427	Proof of Concept
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	427	Proof of Concept
Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	427	No Known Exploit
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-8172694	427	No Known Exploit
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-8187303	427	Proof of Concept
Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	427	No Known Exploit
Improper Handling of Extra Parameters SNYK-JS-FOLLOWREDIRECTS-6141137	427	Proof of Concept
Remote Code Execution (RCE) SNYK-JS-HANDLEBARS-1056767	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	427	No Known Exploit
Prototype Pollution SNYK-JS-AJV-584908	427	No Known Exploit
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	427	No Known Exploit
Code Injection SNYK-JS-LODASH-1040724	427	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-450202	427	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-567746	427	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	427	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-6139239	427	Proof of Concept
Prototype Pollution SNYK-JS-MERGEDEEP-1070277	427	No Known Exploit
Arbitrary Code Execution SNYK-JS-ESLINTUTILS-460220	427	No Known Exploit
Denial of Service (DoS) SNYK-JS-WS-7266574	427	Proof of Concept
Denial of Service (DoS) SNYK-JS-WS-7266574	427	Proof of Concept
Prototype Pollution SNYK-JS-Y18N-1021887	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TMPL-1583443	427	Proof of Concept
Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-536840	427	No Known Exploit
Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	427	Proof of Concept
Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6056521	427	No Known Exploit
Prototype Pollution SNYK-JS-HANDLEBARS-469063	427	No Known Exploit
Denial of Service (DoS) SNYK-JS-HANDLEBARS-480388	427	No Known Exploit
Prototype Pollution SNYK-JS-MIXINDEEP-450212	427	Proof of Concept
Arbitrary Code Execution SNYK-JS-HANDLEBARS-534478	427	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-1540541	427	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-450213	427	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-1540541	427	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-450213	427	Proof of Concept
Access Restriction Bypass SNYK-JS-URLPARSE-2401205	427	Proof of Concept
Authorization Bypass SNYK-JS-URLPARSE-2407759	427	Proof of Concept
Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	427	Proof of Concept
Command Injection SNYK-JS-NODENOTIFIER-1035794	427	No Known Exploit
Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	427	Proof of Concept
Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	427	No Known Exploit
Timing Attack SNYK-JS-ELLIPTIC-511941	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	427	Proof of Concept
Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	427	No Known Exploit
Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	427	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577916	427	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577917	427	Proof of Concept
Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577918	427	Proof of Concept
Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	427	Proof of Concept
Prototype Pollution SNYK-JS-DOTPROP-543489	427	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	427	Proof of Concept
Prototype Pollution SNYK-JS-HAPIHOEK-548452	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HTMLMINIFIER-3091181	427	Proof of Concept
Information Exposure SNYK-JS-EVENTSOURCE-2823375	427	Proof of Concept
Open Redirect SNYK-JS-EXPRESS-6474509	427	No Known Exploit
Cross-site Scripting SNYK-JS-EXPRESS-7926867	427	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PROMPTS-1729737	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	427	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	427	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	427	No Known Exploit
Prototype Pollution SNYK-JS-HANDLEBARS-1279029	427	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	427	Proof of Concept
Prototype Pollution SNYK-JS-HANDLEBARS-567742	427	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	427	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	427	Proof of Concept
Denial of Service (DoS) SNYK-JS-SOCKJS-575261	427	Proof of Concept
Improper Input Validation SNYK-JS-URLPARSE-1078283	427	No Known Exploit
Open Redirect SNYK-JS-URLPARSE-1533425	427	Proof of Concept
Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	427	No Known Exploit
Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	427	No Known Exploit
Validation Bypass SNYK-JS-KINDOF-537849	427	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	427	Proof of Concept
Cross-site Scripting SNYK-JS-SEND-7926862	427	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	427	Proof of Concept
Prototype Pollution SNYK-JS-HANDLEBARS-534988	427	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	427	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	427	Proof of Concept

Release notes

Package name: react-scripts

3.4.4 - 2020-10-20
3.4.3 - 2020-08-12
3.4.2 - 2020-08-11
3.4.1 - 2020-03-21
3.4.0 - 2020-02-14
3.3.1 - 2020-01-31
3.3.0 - 2019-12-05
3.3.0-next.80 - 2019-12-04
3.3.0-next.62 - 2019-11-14
3.3.0-next.39 - 2019-10-24
3.3.0-next.38 - 2019-10-24
3.2.0 - 2019-10-03
3.1.2 - 2019-09-19
3.1.1 - 2019-08-13
3.1.0 - 2019-08-09
3.0.1 - 2019-05-08

from react-scripts GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.
Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"react-scripts","from":"3.0.1","to":"3.4.4"}],"env":"prod","hasFixes":true,"isBreakingChange":false,"isMajorUpgrade":false,"issuesToFix":[{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-URLPARSE-2407770","issue_id":"SNYK-JS-URLPARSE-2407770","priority_score":512,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Input Validation"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WEBSOCKETEXTENSIONS-570623","issue_id":"SNYK-JS-WEBSOCKETEXTENSIONS-570623","priority_score":517,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SSRI-1246392","issue_id":"SNYK-JS-SSRI-1246392","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-NODEFORGE-598677","issue_id":"SNYK-JS-NODEFORGE-598677","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-BROWSERIFYSIGN-6037026","issue_id":"SNYK-JS-BROWSERIFYSIGN-6037026","priority_score":375,"priority_score_factors":[{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ELLIPTIC-571484","issue_id":"SNYK-JS-ELLIPTIC-571484","priority_score":492,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.7","score":385},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Cryptographic Issues"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-INI-1048974","issue_id":"SNYK-JS-INI-1048974","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-IP-6240864","issue_id":"SNYK-JS-IP-6240864","priority_score":537,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"8.6","score":430},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Server-side Request Forgery (SSRF)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-DECODEURICOMPONENT-3149970","issue_id":"SNYK-JS-DECODEURICOMPONENT-3149970","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-DNSPACKET-1293563","issue_id":"SNYK-JS-DNSPACKET-1293563","priority_score":385,"priority_score_factors":[{"type":"cvssScore","label":"7.7","score":385},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Remote Memory Exposure"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ELLIPTIC-8172694","issue_id":"SNYK-JS-ELLIPTIC-8172694","priority_score":486,"priority_score_factors":[{"type":"freshness","label":true,"score":71},{"type":"cvssScore","label":"8.3","score":415},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ELLIPTIC-8187303","issue_id":"SNYK-JS-ELLIPTIC-8187303","priority_score":614,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"freshness","label":true,"score":71},{"type":"cvssScore","label":"8.7","score":435},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-BODYPARSER-7926860","issue_id":"SNYK-JS-BODYPARSER-7926860","priority_score":410,"priority_score_factors":[{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Asymmetric Resource Consumption (Amplification)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-FOLLOWREDIRECTS-6141137","issue_id":"SNYK-JS-FOLLOWREDIRECTS-6141137","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Improper Handling of Extra Parameters"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HANDLEBARS-1056767","issue_id":"SNYK-JS-HANDLEBARS-1056767","priority_score":457,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7","score":350},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Remote Code Execution (RCE)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ACORN-559469","issue_id":"SNYK-JS-ACORN-559469","priority_score":375,"priority_score_factors":[{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ACORN-559469","issue_id":"SNYK-JS-ACORN-559469","priority_score":375,"priority_score_factors":[{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-AJV-584908","issue_id":"SNYK-JS-AJV-584908","priority_score":405,"priority_score_factors":[{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-JSONSCHEMA-1920922","issue_id":"SNYK-JS-JSONSCHEMA-1920922","priority_score":430,"priority_score_factors":[{"type":"cvssScore","label":"8.6","score":430},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-1040724","issue_id":"SNYK-JS-LODASH-1040724","priority_score":467,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.2","score":360},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Code Injection"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-450202","issue_id":"SNYK-JS-LODASH-450202","priority_score":686,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-567746","issue_id":"SNYK-JS-LODASH-567746","priority_score":731,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-608086","issue_id":"SNYK-JS-LODASH-608086","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-6139239","issue_id":"SNYK-JS-LODASH-6139239","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-MERGEDEEP-1070277","issue_id":"SNYK-JS-MERGEDEEP-1070277","priority_score":376,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":11},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ESLINTUTILS-460220","issue_id":"SNYK-JS-ESLINTUTILS-460220","priority_score":365,"priority_score_factors":[{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Arbitrary Code Execution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WS-7266574","issue_id":"SNYK-JS-WS-7266574","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WS-7266574","issue_id":"SNYK-JS-WS-7266574","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-Y18N-1021887","issue_id":"SNYK-JS-Y18N-1021887","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-TMPL-1583443","issue_id":"SNYK-JS-TMPL-1583443","priority_score":482,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-SERIALIZEJAVASCRIPT-536840","issue_id":"SNYK-JS-SERIALIZEJAVASCRIPT-536840","priority_score":405,"priority_score_factors":[{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Cross-site Scripting (XSS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SERIALIZEJAVASCRIPT-570062","issue_id":"SNYK-JS-SERIALIZEJAVASCRIPT-570062","priority_score":492,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.7","score":385},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Arbitrary Code Injection"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-SERIALIZEJAVASCRIPT-6056521","issue_id":"SNYK-JS-SERIALIZEJAVASCRIPT-6056521","priority_score":405,"priority_score_factors":[{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Cross-site Scripting (XSS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-HANDLEBARS-469063","issue_id":"SNYK-JS-HANDLEBARS-469063","priority_score":365,"priority_score_factors":[{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-HANDLEBARS-480388","issue_id":"SNYK-JS-HANDLEBARS-480388","priority_score":375,"priority_score_factors":[{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MIXINDEEP-450212","issue_id":"SNYK-JS-MIXINDEEP-450212","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HANDLEBARS-534478","issue_id":"SNYK-JS-HANDLEBARS-534478","priority_score":512,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Arbitrary Code Execution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SETVALUE-1540541","issue_id":"SNYK-JS-SETVALUE-1540541","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SETVALUE-450213","issue_id":"SNYK-JS-SETVALUE-450213","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SETVALUE-1540541","issue_id":"SNYK-JS-SETVALUE-1540541","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SETVALUE-450213","issue_id":"SNYK-JS-SETVALUE-450213","priority_score":472,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"7.3","score":365},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-URLPARSE-2401205","issue_id":"SNYK-JS-URLPARSE-2401205","priority_score":427,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.4","score":320},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Access Restriction Bypass"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-URLPARSE-2407759","issue_id":"SNYK-JS-URLPARSE-2407759","priority_score":427,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.4","score":320},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Authorization Bypass"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-URLPARSE-2412697","issue_id":"SNYK-JS-URLPARSE-2412697","priority_score":417,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.2","score":310},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Authorization Bypass Through User-Controlled Key"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WS-1296835","issue_id":"SNYK-JS-WS-1296835","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-NODENOTIFIER-1035794","issue_id":"SNYK-JS-NODENOTIFIER-1035794","priority_score":280,"priority_score_factors":[{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Command Injection"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-NWSAPI-2841516","issue_id":"SNYK-JS-NWSAPI-2841516","priority_score":310,"priority_score_factors":[{"type":"cvssScore","label":"6.2","score":310},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PATHPARSE-1077067","issue_id":"SNYK-JS-PATHPARSE-1077067","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ELLIPTIC-1064899","issue_id":"SNYK-JS-ELLIPTIC-1064899","priority_score":340,"priority_score_factors":[{"type":"cvssScore","label":"6.8","score":340},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Cryptographic Issues"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-ELLIPTIC-511941","issue_id":"SNYK-JS-ELLIPTIC-511941","priority_score":295,"priority_score_factors":[{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Timing Attack"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-COLORSTRING-1082939","issue_id":"SNYK-JS-COLORSTRING-1082939","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-COOKIE-8163060","issue_id":"SNYK-JS-COOKIE-8163060","priority_score":386,"priority_score_factors":[{"type":"freshness","label":true,"score":71},{"type":"cvssScore","label":"6.3","score":315},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Cross-site Scripting (XSS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-FOLLOWREDIRECTS-6444610","issue_id":"SNYK-JS-FOLLOWREDIRECTS-6444610","priority_score":432,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Information Exposure"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-TERSER-2806366","issue_id":"SNYK-JS-TERSER-2806366","priority_score":265,"priority_score_factors":[{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ISSVG-1085627","issue_id":"SNYK-JS-ISSVG-1085627","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ISSVG-1243891","issue_id":"SNYK-JS-ISSVG-1243891","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"npm:debug:20170905","issue_id":"npm:debug:20170905","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ELLIPTIC-7577916","issue_id":"SNYK-JS-ELLIPTIC-7577916","priority_score":562,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"9.1","score":455},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ELLIPTIC-7577917","issue_id":"SNYK-JS-ELLIPTIC-7577917","priority_score":562,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"9.1","score":455},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-ELLIPTIC-7577918","issue_id":"SNYK-JS-ELLIPTIC-7577918","priority_score":562,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"9.1","score":455},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Improper Verification of Cryptographic Signature"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-BABELTRAVERSE-5962462","issue_id":"SNYK-JS-BABELTRAVERSE-5962462","priority_score":572,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"9.3","score":465},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Incomplete List of Disallowed Inputs"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-DOTPROP-543489","issue_id":"SNYK-JS-DOTPROP-543489","priority_score":422,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.3","score":315},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-FOLLOWREDIRECTS-2332181","issue_id":"SNYK-JS-FOLLOWREDIRECTS-2332181","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Information Exposure"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-LODASH-1018905","issue_id":"SNYK-JS-LODASH-1018905","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-HAPIHOEK-548452","issue_id":"SNYK-JS-HAPIHOEK-548452","priority_score":261,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":11},{"type":"cvssScore","label":"5","score":250},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HOSTEDGITINFO-1088355","issue_id":"SNYK-JS-HOSTEDGITINFO-1088355","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HTMLMINIFIER-3091181","issue_id":"SNYK-JS-HTMLMINIFIER-3091181","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-EVENTSOURCE-2823375","issue_id":"SNYK-JS-EVENTSOURCE-2823375","priority_score":432,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Information Exposure"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-EXPRESS-6474509","issue_id":"SNYK-JS-EXPRESS-6474509","priority_score":305,"priority_score_factors":[{"type":"cvssScore","label":"6.1","score":305},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Open Redirect"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-EXPRESS-7926867","issue_id":"SNYK-JS-EXPRESS-7926867","priority_score":255,"priority_score_factors":[{"type":"cvssScore","label":"5.1","score":255},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Cross-site Scripting"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-PROMPTS-1729737","issue_id":"SNYK-JS-PROMPTS-1729737","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-WS-1296835","issue_id":"SNYK-JS-WS-1296835","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-YARGSPARSER-560381","issue_id":"SNYK-JS-YARGSPARSER-560381","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-YARGSPARSER-560381","issue_id":"SNYK-JS-YARGSPARSER-560381","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-UGLIFYJS-1727251","issue_id":"SNYK-JS-UGLIFYJS-1727251","priority_score":265,"priority_score_factors":[{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HANDLEBARS-1279029","issue_id":"SNYK-JS-HANDLEBARS-1279029","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-559764","issue_id":"SNYK-JS-MINIMIST-559764","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-HANDLEBARS-567742","issue_id":"SNYK-JS-HANDLEBARS-567742","priority_score":432,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-559764","issue_id":"SNYK-JS-MINIMIST-559764","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-559764","issue_id":"SNYK-JS-MINIMIST-559764","priority_score":387,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.6","score":280},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-SOCKJS-575261","issue_id":"SNYK-JS-SOCKJS-575261","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-URLPARSE-1078283","issue_id":"SNYK-JS-URLPARSE-1078283","priority_score":265,"priority_score_factors":[{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Improper Input Validation"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-URLPARSE-1533425","issue_id":"SNYK-JS-URLPARSE-1533425","priority_score":372,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"5.3","score":265},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Open Redirect"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-FOLLOWREDIRECTS-2396346","issue_id":"SNYK-JS-FOLLOWREDIRECTS-2396346","priority_score":130,"priority_score_factors":[{"type":"cvssScore","label":"2.6","score":130},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Information Exposure"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-SERVESTATIC-7926865","issue_id":"SNYK-JS-SERVESTATIC-7926865","priority_score":105,"priority_score_factors":[{"type":"cvssScore","label":"2.1","score":105},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Cross-site Scripting"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-KINDOF-537849","issue_id":"SNYK-JS-KINDOF-537849","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Validation Bypass"},{"exploit_maturity":"proof-of-concept","id":"npm:debug:20170905","issue_id":"npm:debug:20170905","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Regular Expression Denial of Service (ReDoS)"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-SEND-7926862","issue_id":"SNYK-JS-SEND-7926862","priority_score":105,"priority_score_factors":[{"type":"cvssScore","label":"2.1","score":105},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Cross-site Scripting"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-2429795","issue_id":"SNYK-JS-MINIMIST-2429795","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Prototype Pollution"},{"exploit_maturity":"no-known-exploit","id":"SNYK-JS-HANDLEBARS-534988","issue_id":"SNYK-JS-HANDLEBARS-534988","priority_score":490,"priority_score_factors":[{"type":"cvssScore","label":"9.8","score":490},{"type":"scoreVersion","label":"v1","score":1}],"severity":"critical","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-2429795","issue_id":"SNYK-JS-MINIMIST-2429795","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Prototype Pollution"},{"exploit_maturity":"proof-of-concept","id":"SNYK-JS-MINIMIST-2429795","issue_id":"SNYK-JS-MINIMIST-2429795","priority_score":292,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"cvssScore","label":"3.7","score":185},{"type":"scoreVersion","label":"v1","score":1}],"severity":"low","title":"Prototype Pollution"}],"prId":"bff3b5c6-e6ac-408b-a5c0-796225152104","prPublicId":"bff3b5c6-e6ac-408b-a5c0-796225152104","packageManager":"npm","priorityScoreList":[512,517,482,472,375,492,472,537,482,385,486,614,410,472,457,375,405,430,467,686,731,472,482,376,365,482,472,482,405,492,405,365,375,472,512,472,472,427,427,417,372,280,310,372,340,295,372,386,432,265,372,372,292,562,562,562,572,422,372,372,261,372,372,432,305,255,372,387,265,387,387,432,372,265,372,130,105,292,105,292,490],"projectPublicId":"8c671fc0-8dc0-4ef1-bd23-8bc398e8d5a2","projectUrl":"https://app.snyk.io/org/felayo/project/8c671fc0-8dc0-4ef1-bd23-8bc398e8d5a2?utm_source=github&utm_medium=referral&page=upgrade-pr","prType":"upgrade","templateFieldSources":{"branchName":"default","commitMessage":"default","description":"default","title":"default"},"templateVariants":["priorityScore"],"type":"auto","upgrade":["SNYK-JS-URLPARSE-2407770","SNYK-JS-WEBSOCKETEXTENSIONS-570623","SNYK-JS-SSRI-1246392","SNYK-JS-NODEFORGE-598677","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-ELLIPTIC-571484","SNYK-JS-INI-1048974","SNYK-JS-IP-6240864","SNYK-JS-DECODEURICOMPONENT-3149970","SNYK-JS-DNSPACKET-1293563","SNYK-JS-ELLIPTIC-8172694","SNYK-JS-ELLIPTIC-8187303","SNYK-JS-BODYPARSER-7926860","SNYK-JS-FOLLOWREDIRECTS-6141137","SNYK-JS-HANDLEBARS-1056767","SNYK-JS-ACORN-559469","SNYK-JS-ACORN-559469","SNYK-JS-AJV-584908","SNYK-JS-JSONSCHEMA-1920922","SNYK-JS-LODASH-1040724","SNYK-JS-LODASH-450202","SNYK-JS-LODASH-567746","SNYK-JS-LODASH-608086","SNYK-JS-LODASH-6139239","SNYK-JS-MERGEDEEP-1070277","SNYK-JS-ESLINTUTILS-460220","SNYK-JS-WS-7266574","SNYK-JS-WS-7266574","SNYK-JS-Y18N-1021887","SNYK-JS-TMPL-1583443","SNYK-JS-SERIALIZEJAVASCRIPT-536840","SNYK-JS-SERIALIZEJAVASCRIPT-570062","SNYK-JS-SERIALIZEJAVASCRIPT-6056521","SNYK-JS-HANDLEBARS-469063","SNYK-JS-HANDLEBARS-480388","SNYK-JS-MIXINDEEP-450212","SNYK-JS-HANDLEBARS-534478","SNYK-JS-SETVALUE-1540541","SNYK-JS-SETVALUE-450213","SNYK-JS-SETVALUE-1540541","SNYK-JS-SETVALUE-450213","SNYK-JS-URLPARSE-2401205","SNYK-JS-URLPARSE-2407759","SNYK-JS-URLPARSE-2412697","SNYK-JS-WS-1296835","SNYK-JS-NODENOTIFIER-1035794","SNYK-JS-NWSAPI-2841516","SNYK-JS-PATHPARSE-1077067","SNYK-JS-ELLIPTIC-1064899","SNYK-JS-ELLIPTIC-511941","SNYK-JS-COLORSTRING-1082939","SNYK-JS-COOKIE-8163060","SNYK-JS-FOLLOWREDIRECTS-6444610","SNYK-JS-TERSER-2806366","SNYK-JS-ISSVG-1085627","SNYK-JS-ISSVG-1243891","npm:debug:20170905","SNYK-JS-ELLIPTIC-7577916","SNYK-JS-ELLIPTIC-7577917","SNYK-JS-ELLIPTIC-7577918","SNYK-JS-BABELTRAVERSE-5962462","SNYK-JS-DOTPROP-543489","SNYK-JS-FOLLOWREDIRECTS-2332181","SNYK-JS-LODASH-1018905","SNYK-JS-HAPIHOEK-548452","SNYK-JS-HOSTEDGITINFO-1088355","SNYK-JS-HTMLMINIFIER-3091181","SNYK-JS-EVENTSOURCE-2823375","SNYK-JS-EXPRESS-6474509","SNYK-JS-EXPRESS-7926867","SNYK-JS-PROMPTS-1729737","SNYK-JS-WS-1296835","SNYK-JS-YARGSPARSER-560381","SNYK-JS-YARGSPARSER-560381","SNYK-JS-UGLIFYJS-1727251","SNYK-JS-HANDLEBARS-1279029","SNYK-JS-MINIMIST-559764","SNYK-JS-HANDLEBARS-567742","SNYK-JS-MINIMIST-559764","SNYK-JS-MINIMIST-559764","SNYK-JS-SOCKJS-575261","SNYK-JS-URLPARSE-1078283","SNYK-JS-URLPARSE-1533425","SNYK-JS-FOLLOWREDIRECTS-2396346","SNYK-JS-SERVESTATIC-7926865","SNYK-JS-KINDOF-537849","npm:debug:20170905","SNYK-JS-SEND-7926862","SNYK-JS-MINIMIST-2429795","SNYK-JS-HANDLEBARS-534988","SNYK-JS-MINIMIST-2429795","SNYK-JS-MINIMIST-2429795"],"upgradeInfo":{"versionsDiff":15,"publishedDate":"2020-10-20T21:54:43.371Z"},"vulns":["SNYK-JS-URLPARSE-2407770","SNYK-JS-WEBSOCKETEXTENSIONS-570623","SNYK-JS-SSRI-1246392","SNYK-JS-NODEFORGE-598677","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-ELLIPTIC-571484","SNYK-JS-INI-1048974","SNYK-JS-IP-6240864","SNYK-JS-DECODEURICOMPONENT-3149970","SNYK-JS-DNSPACKET-1293563","SNYK-JS-ELLIPTIC-8172694","SNYK-JS-ELLIPTIC-8187303","SNYK-JS-BODYPARSER-7926860","SNYK-JS-FOLLOWREDIRECTS-6141137","SNYK-JS-HANDLEBARS-1056767","SNYK-JS-ACORN-559469","SNYK-JS-ACORN-559469","SNYK-JS-AJV-584908","SNYK-JS-JSONSCHEMA-1920922","SNYK-JS-LODASH-1040724","SNYK-JS-LODASH-450202","SNYK-JS-LODASH-567746","SNYK-JS-LODASH-608086","SNYK-JS-LODASH-6139239","SNYK-JS-MERGEDEEP-1070277","SNYK-JS-ESLINTUTILS-460220","SNYK-JS-WS-7266574","SNYK-JS-WS-7266574","SNYK-JS-Y18N-1021887","SNYK-JS-TMPL-1583443","SNYK-JS-SERIALIZEJAVASCRIPT-536840","SNYK-JS-SERIALIZEJAVASCRIPT-570062","SNYK-JS-SERIALIZEJAVASCRIPT-6056521","SNYK-JS-HANDLEBARS-469063","SNYK-JS-HANDLEBARS-480388","SNYK-JS-MIXINDEEP-450212","SNYK-JS-HANDLEBARS-534478","SNYK-JS-SETVALUE-1540541","SNYK-JS-SETVALUE-450213","SNYK-JS-SETVALUE-1540541","SNYK-JS-SETVALUE-450213","SNYK-JS-URLPARSE-2401205","SNYK-JS-URLPARSE-2407759","SNYK-JS-URLPARSE-2412697","SNYK-JS-WS-1296835","SNYK-JS-NODENOTIFIER-1035794","SNYK-JS-NWSAPI-2841516","SNYK-JS-PATHPARSE-1077067","SNYK-JS-ELLIPTIC-1064899","SNYK-JS-ELLIPTIC-511941","SNYK-JS-COLORSTRING-1082939","SNYK-JS-COOKIE-8163060","SNYK-JS-FOLLOWREDIRECTS-6444610","SNYK-JS-TERSER-2806366","SNYK-JS-ISSVG-1085627","SNYK-JS-ISSVG-1243891","npm:debug:20170905","SNYK-JS-ELLIPTIC-7577916","SNYK-JS-ELLIPTIC-7577917","SNYK-JS-ELLIPTIC-7577918","SNYK-JS-BABELTRAVERSE-5962462","SNYK-JS-DOTPROP-543489","SNYK-JS-FOLLOWREDIRECTS-2332181","SNYK-JS-LODASH-1018905","SNYK-JS-HAPIHOEK-548452","SNYK-JS-HOSTEDGITINFO-1088355","SNYK-JS-HTMLMINIFIER-3091181","SNYK-JS-EVENTSOURCE-2823375","SNYK-JS-EXPRESS-6474509","SNYK-JS-EXPRESS-7926867","SNYK-JS-PROMPTS-1729737","SNYK-JS-WS-1296835","SNYK-JS-YARGSPARSER-560381","SNYK-JS-YARGSPARSER-560381","SNYK-JS-UGLIFYJS-1727251","SNYK-JS-HANDLEBARS-1279029","SNYK-JS-MINIMIST-559764","SNYK-JS-HANDLEBARS-567742","SNYK-JS-MINIMIST-559764","SNYK-JS-MINIMIST-559764","SNYK-JS-SOCKJS-575261","SNYK-JS-URLPARSE-1078283","SNYK-JS-URLPARSE-1533425","SNYK-JS-FOLLOWREDIRECTS-2396346","SNYK-JS-SERVESTATIC-7926865","SNYK-JS-KINDOF-537849","npm:debug:20170905","SNYK-JS-SEND-7926862","SNYK-JS-MINIMIST-2429795","SNYK-JS-HANDLEBARS-534988","SNYK-JS-MINIMIST-2429795...

Snyk has created this PR to upgrade react-scripts from 3.0.1 to 3.4.4. See this package in npm: react-scripts See this project in Snyk: https://app.snyk.io/org/felayo/project/8c671fc0-8dc0-4ef1-bd23-8bc398e8d5a2?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade react-scripts from 3.0.1 to 3.4.4 #503

[Snyk] Upgrade react-scripts from 3.0.1 to 3.4.4 #503

felayo commented Nov 1, 2024

[Snyk] Upgrade react-scripts from 3.0.1 to 3.4.4 #503

Are you sure you want to change the base?

[Snyk] Upgrade react-scripts from 3.0.1 to 3.4.4 #503

Conversation

felayo commented Nov 1, 2024

Snyk has created this PR to upgrade react-scripts from 3.0.1 to 3.4.4.

Issues fixed by the recommended upgrade: