[Snyk] Upgrade @apollo/client from 3.4.6 to 3.10.1 #1
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @apollo/client from 3.4.6 to 3.10.1.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 172 versions ahead of your current version.
The recommended version was released 25 days ago, on 2024-04-24.
The recommended version fixes:
SNYK-JS-FOLLOWREDIRECTS-6141137
Why? CVSS 6.1
SNYK-JS-AJV-584908
Why? CVSS 6.1
SNYK-JS-OBJECTPATH-1017036
Why? CVSS 6.1
SNYK-JS-OBJECTPATH-1585658
Why? CVSS 6.1
SNYK-JS-TMPL-1583443
Why? CVSS 6.1
SNYK-JS-INI-1048974
Why? CVSS 6.1
SNYK-JS-IP-6240864
Why? CVSS 6.1
SNYK-JS-JSONSCHEMA-1920922
Why? CVSS 6.1
SNYK-JS-SERIALIZEJAVASCRIPT-570062
Why? CVSS 6.1
SNYK-JS-QS-3153490
Why? CVSS 6.1
SNYK-JS-QS-3153490
Why? CVSS 6.1
SNYK-JS-LODASH-1040724
Why? CVSS 6.1
SNYK-JS-LODASH-567746
Why? CVSS 6.1
SNYK-JS-BROWSERIFYSIGN-6037026
Why? CVSS 6.1
SNYK-JS-URLPARSE-2407770
Why? CVSS 6.1
SNYK-JS-SSRI-1246392
Why? CVSS 6.1
SNYK-JS-SSRI-1246392
Why? CVSS 6.1
SNYK-JS-NODEFORGE-598677
Why? CVSS 6.1
SNYK-JS-DECODEURICOMPONENT-3149970
Why? CVSS 6.1
SNYK-JS-DNSPACKET-1293563
Why? CVSS 6.1
SNYK-JS-ELLIPTIC-571484
Why? CVSS 6.1
SNYK-JS-ASYNC-2441827
Why? CVSS 6.1
SNYK-JS-MERGEDEEP-1070277
Why? CVSS 6.1
SNYK-JS-ES5EXT-6095076
Why? CVSS 6.1
SNYK-JS-Y18N-1021887
Why? CVSS 6.1
SNYK-JS-EXPRESS-6474509
Why? CVSS 6.1
SNYK-JS-FOLLOWREDIRECTS-2332181
Why? CVSS 6.1
SNYK-JS-FOLLOWREDIRECTS-6444610
Why? CVSS 6.1
SNYK-JS-HOSTEDGITINFO-1088355
Why? CVSS 6.1
SNYK-JS-NWSAPI-2841516
Why? CVSS 6.1
SNYK-JS-OBJECTPATH-1569453
Why? CVSS 6.1
SNYK-JS-PATHPARSE-1077067
Why? CVSS 6.1
SNYK-JS-ISSVG-1085627
Why? CVSS 6.1
SNYK-JS-ISSVG-1243891
Why? CVSS 6.1
SNYK-JS-JSON5-3182856
Why? CVSS 6.1
SNYK-JS-JSON5-3182856
Why? CVSS 6.1
SNYK-JS-PROMPTS-1729737
Why? CVSS 6.1
SNYK-JS-LODASH-1018905
Why? CVSS 6.1
SNYK-JS-URLPARSE-1078283
Why? CVSS 6.1
SNYK-JS-URLPARSE-1533425
Why? CVSS 6.1
SNYK-JS-URLPARSE-2401205
Why? CVSS 6.1
SNYK-JS-URLPARSE-2407759
Why? CVSS 6.1
SNYK-JS-URLPARSE-2412697
Why? CVSS 6.1
SNYK-JS-SOCKJS-575261
Why? CVSS 6.1
SNYK-JS-TERSER-2806366
Why? CVSS 6.1
SNYK-JS-NODENOTIFIER-1035794
Why? CVSS 6.1
SNYK-JS-COLORSTRING-1082939
Why? CVSS 6.1
SNYK-JS-ELLIPTIC-1064899
Why? CVSS 6.1
SNYK-JS-EVENTSOURCE-2823375
Why? CVSS 6.1
SNYK-JS-WS-1296835
Why? CVSS 6.1
SNYK-JS-WS-1296835
Why? CVSS 6.1
SNYK-JS-YARGSPARSER-560381
Why? CVSS 6.1
SNYK-JS-FOLLOWREDIRECTS-2396346
Why? CVSS 6.1
SNYK-JS-MINIMIST-2429795
Why? CVSS 6.1
SNYK-JS-POLISHED-1298071
Why? CVSS 6.1
SNYK-JS-BABELTRAVERSE-5962462
Why? CVSS 6.1
SNYK-JS-WORDWRAP-3149973
Why? CVSS 6.1
npm:debug:20170905
Why? CVSS 6.1
npm:debug:20170905
Why? CVSS 6.1
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: @apollo/client
Patch Changes
#11792
5876c35
Thanks @ phryneas! - AutoCleanedCache: only schedule batched cache cleanup if the cache is full (fixes #11790)#11799
1aca7ed
Thanks @ phryneas! -RenderPromises
: usecanonicalStringify
to serializevariables
to ensure query deduplication is properly applied even whenvariables
are specified in a different order.#11803
bf9dd17
Thanks @ phryneas! - Update therehackt
dependency to^0.1.0
#11756
60592e9
Thanks @ henryqdineen! - Fix operation.setContext() typeMinor Changes
#11605
e2dd4c9
Thanks @ alessbell! - AddscreateMockFetch
utility for integration testing that includes the link chain#11760
acd1982
Thanks @ alessbell! -createTestSchema
now uses graphql-toolsmergeResolvers
to merge resolvers instead of a shallow merge.#11764
f046aa9
Thanks @ alessbell! - RenamecreateProxiedSchema
tocreateTestSchema
andcreateMockFetch
tocreateSchemaFetch
.#11777
5dfc79f
Thanks @ alessbell! - CallcreateMockSchema
insidecreateTestSchema
.#11774
2583488
Thanks @ alessbell! - Add ability to set min and max delay increateSchemaFetch
#11605
e2dd4c9
Thanks @ alessbell! - Adds proxiedSchema and createMockSchema testing utilities#11465
7623da7
Thanks @ alessbell! - AddwatchFragment
method to the cache and expose it on ApolloClient, refactoruseFragment
usingwatchFragment
.#11743
78891f9
Thanks @ jerelmiller! - Remove alpha designation forqueryRef.toPromise()
to stabilize the API.#11743
78891f9
Thanks @ jerelmiller! - Remove alpha designation forcreateQueryPreloader
to stabilize the API.#11783
440563a
Thanks @ alessbell! - Moves new testing utilities to their own entrypoint,testing/experimental
Patch Changes
#11757
9825295
Thanks @ phryneas! - AdjustuseReadQuery
wrapper logic to work with transported objects.#11771
e72cbba
Thanks @ phryneas! - WrapuseQueryRefHandlers
inwrapHook
.#11754
80d2ba5
Thanks @ alessbell! - ExportWatchFragmentOptions
andWatchFragmentResult
from main entrypoint and fix bug wherethis
wasn't bound to thewatchFragment
method onApolloClient
.Minor Changes
#11760
acd1982
Thanks @ alessbell! -createTestSchema
now uses graphql-toolsmergeResolvers
to merge resolvers instead of a shallow merge.#11764
f046aa9
Thanks @ alessbell! - RenamecreateProxiedSchema
tocreateTestSchema
andcreateMockFetch
tocreateSchemaFetch
.#11777
5dfc79f
Thanks @ alessbell! - CallcreateMockSchema
insidecreateTestSchema
.#11774
2583488
Thanks @ alessbell! - Add ability to set min and max delay increateSchemaFetch
#11783
440563a
Thanks @ alessbell! - Moves new testing utilities to their own entrypoint,testing/experimental
Patch Changes
#11757
9825295
Thanks @ phryneas! - AdjustuseReadQuery
wrapper logic to work with transported objects.#11771
e72cbba
Thanks @ phryneas! - WrapuseQueryRefHandlers
inwrapHook
.#11754
80d2ba5
Thanks @ alessbell! - ExportWatchFragmentOptions
andWatchFragmentResult
from main entrypoint and fix bug wherethis
wasn't bound to thewatchFragment
method onApolloClient
.Minor Changes
#11605
e2dd4c9
Thanks @ alessbell! - AddscreateMockFetch
utility for integration testing that includes the link chain#11605
e2dd4c9
Thanks @ alessbell! - Adds proxiedSchema and createMockSchema testing utilities#11743
78891f9
Thanks @ jerelmiller! - Remove alpha designation forqueryRef.toPromise()
to stabilize the API.#11743
78891f9
Thanks @ jerelmiller! - Remove alpha designation forcreateQueryPreloader
to stabilize the API.Patch Changes
04132af
Thanks @ jerelmiller! - Fix an issue where usingskipToken
or theskip
option withuseSuspenseQuery
in React's strict mode would perform a network request.Patch Changes
#11738
b1a5eb8
Thanks @ jerelmiller! - Fix an issue where rerenderinguseBackgroundQuery
after thequeryRef
had been disposed, either via the auto dispose timeout or by unmountinguseReadQuery
, would cause thequeryRef
to be recreated potentially resulting in another network request.#11738
b1a5eb8
Thanks @ jerelmiller! - Allow queryRefs to be disposed of synchronously when a suspense hook unmounts. This prevents some situations where using a suspense hook with the same query/variables as the disposed queryRef accidentally used the disposed queryRef rather than creating a new instance.#11670
cc5c03b
Thanks @ phryneas! - Bail out ofexecuteSubSelectedArray
calls if the array has 0 elements.Patch Changes
466ef82
Thanks @ PiR1! - Immediately dispose of thequeryRef
ifuseBackgroundQuery
unmounts before the auto dispose timeout kicks in.Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs
Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.