Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade dayjs from 1.8.27 to 1.10.4 #103

Open
wants to merge 343 commits into
base: master
Choose a base branch
from

Conversation

mdfkbtc
Copy link
Owner

@mdfkbtc mdfkbtc commented Feb 13, 2021

Snyk has created this PR to upgrade dayjs from 1.8.27 to 1.10.4.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 23 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2021-01-22.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-Y18N-1021887
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Prototype Pollution
SNYK-JS-Y18N-1021887
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1023599
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Prototype Pollution
SNYK-JS-LODASH-590103
472/1000
Why? Proof of Concept exploit, CVSS 7.3
No Known Exploit
Prototype Pollution
SNYK-JS-I18NEXT-585930
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-GLOBPARENT-1016905
472/1000
Why? Proof of Concept exploit, CVSS 7.3
No Known Exploit
Cryptographic Issues
SNYK-JS-ELLIPTIC-1064899
472/1000
Why? Proof of Concept exploit, CVSS 7.3
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: dayjs
  • 1.10.4 - 2021-01-22

    1.10.4 (2021-01-22)

    Bug Fixes

  • 1.10.3 - 2021-01-09

    1.10.3 (2021-01-09)

    Bug Fixes

    • fix customParseFormat plugin strict mode parse meridiem bug (#1321) (e49eeef)
    • fix weekYear plugin missing locale bug (#1319) (344bdc0), closes #1304
    • update advancedFormat plugin to add format options for iso week and weekyear (#1309) (2c54c64)
    • update devHelper to add dev warning setting locale before loading (c5cc893)
    • update German [de] locale yearStart (1858df8), closes #1264
  • 1.10.2 - 2021-01-05

    1.10.2 (2021-01-05)

    Bug Fixes

    • fix parse regex bug (#1307) (db2b6a5), closes #1305
    • remove module entry in package.json to revert 1.10.1 change (#1314) (824dcb8)
    • update devHelper add warning "passing Year as a Number will be parsed as a Unix timestamp" (#1315) (b0dda31)
  • 1.10.1 - 2021-01-03

    1.10.1 (2021-01-03)

    Bug Fixes

  • 1.10.0 - 2021-01-03

    1.10.0 (2021-01-03)

    Bug Fixes

    Features

    • add ES6 Module Support, package.json module point to "esm/index.js" (#1298) (f63375d), closes #598 #313
  • 1.9.8 - 2020-12-27

    1.9.8 (2020-12-27)

    Bug Fixes

    • fix Ukrainian [uk] locale typo (1605cc0)
    • update Hebrew [he] locale for double units (#1287) (1c4b0da)
    • update zh locale meridiem "noon" (0e7ff3d)
    • update zh-cn locale definition of noon (#1278) (d5930b9)
  • 1.9.7 - 2020-12-05

    1.9.7 (2020-12-05)

    Bug Fixes

    • add duration.format to format a Duration (#1202) (9a859a1)
    • Add function handling for relativeTime.future and relativeTime.past (#1197) (ef1979c)
    • avoid install installed plugin (#1214) (a92eb6c)
    • avoid memory leak after installing a plugin too many times (b8d2e32)
    • fix diff bug when UTC plugin enabled (#1201) (9544ed2), closes #1200
    • fix startOf/endOf bug in timezone plugin (#1229) (eb5fbc4)
    • fix utc plugin diff edge case (#1187) (971b3d4)
    • update customParseFormat plugin to parse 2-digit offset (#1209) (b56936a), closes #1205
    • Update timezone plugin type definition (#1221) (34cfb92)
  • 1.9.6 - 2020-11-10

    1.9.6 (2020-11-10)

    Bug Fixes

  • 1.9.5 - 2020-11-05

    1.9.5 (2020-11-05)

    Bug Fixes

  • 1.9.4 - 2020-10-23

    1.9.4 (2020-10-23)

    Bug Fixes

  • 1.9.3 - 2020-10-13
  • 1.9.2 - 2020-10-13
  • 1.9.1 - 2020-09-28
  • 1.9.0 - 2020-09-28
  • 1.8.36 - 2020-09-17
  • 1.8.35 - 2020-09-02
  • 1.8.34 - 2020-08-20
  • 1.8.33 - 2020-08-10
  • 1.8.32 - 2020-08-04
  • 1.8.31 - 2020-07-29
  • 1.8.30 - 2020-07-22
  • 1.8.29 - 2020-07-02
  • 1.8.28 - 2020-05-28
  • 1.8.27 - 2020-05-14
from dayjs GitHub release notes
Commit messages
Package name: dayjs

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

bklukaczewski and others added 30 commits April 17, 2020 11:05
* import wallet screen

* add type to interface method

* use import instead of require, use object instead of method for images
All wallets transaction list
* add export wallet screen

* use const instead of secret wallet

* use palette instead of blueapp colors
* add export wallet screen

* use const instead of secret wallet

* use palette instead of blueapp colors

* export screen

* walet xpub screen

* fix changes from pr
Trasaction detail screen with not permanent note
* settings screen

* update yarn.lock

* handle old functionalities

* fix changes from pr
Receive coins screen
Receive coins wallet picker
missing copy button fixed and red text for negative values
Store transaction notes
mdfkbtc and others added 29 commits July 26, 2020 17:35
(cherry picked from commit c30110c)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

8 participants