[Snyk] Upgrade: , , , , , , , , async, bitcore-mnemonic, commander, elliptic, request, crypto-wallet-core, eslint-plugin-import, leveldown, levelup, mkdirp, mocha, mongodb, progress, promptly, request-promise-native, secp256k1, sinon, source-map-support, typescript #1121
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯♂ The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@types/bcrypt
from 3.0.0 to 3.0.1 | 1 version ahead of your current version | 3 years ago
on 2021-04-09
@types/bcryptjs
from 2.4.2 to 2.4.6 | 4 versions ahead of your current version | 10 months ago
on 2023-11-06
@types/elliptic
from 6.4.3 to 6.4.18 | 15 versions ahead of your current version | 10 months ago
on 2023-11-21
@types/node
from 10.12.15 to 10.17.60 | 99 versions ahead of your current version | 3 years ago
on 2021-05-12
@types/mongodb
from 3.3.8 to 3.6.20 | 64 versions ahead of your current version | 3 years ago
on 2021-07-07
@types/request
from 2.48.1 to 2.48.12 | 11 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/request-promise-native
from 1.0.15 to 1.0.21 | 6 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/secp256k1
from 3.5.0 to 3.5.3 | 3 versions ahead of your current version | 5 years ago
on 2020-02-25
async
from 2.5.0 to 2.6.4 | 5 versions ahead of your current version | 2 years ago
on 2022-04-13
bitcore-mnemonic
from 8.22.1 to 8.25.47 | 26 versions ahead of your current version | 2 years ago
on 2023-02-17
commander
from 2.15.1 to 2.20.3 | 8 versions ahead of your current version | 5 years ago
on 2019-10-11
elliptic
from 6.5.3 to 6.5.7 | 4 versions ahead of your current version | a month ago
on 2024-08-14
request
from 2.87.0 to 2.88.2 | 2 versions ahead of your current version | 5 years ago
on 2020-02-11
crypto-wallet-core
from 8.22.1 to 8.25.47 | 41 versions ahead of your current version | 2 years ago
on 2023-02-17
eslint-plugin-import
from 2.8.0 to 2.29.1 | 49 versions ahead of your current version | 9 months ago
on 2023-12-14
leveldown
from 5.4.1 to 5.6.0 | 3 versions ahead of your current version | 4 years ago
on 2020-03-27
levelup
from 4.3.2 to 4.4.0 | 1 version ahead of your current version | 4 years ago
on 2020-04-11
mkdirp
from 0.5.1 to 0.5.6 | 5 versions ahead of your current version | 2 years ago
on 2022-03-22
mocha
from 5.0.5 to 5.2.0 | 3 versions ahead of your current version | 6 years ago
on 2018-05-18
mongodb
from 3.6.0 to 3.7.4 | 17 versions ahead of your current version | a year ago
on 2023-06-21
progress
from 2.0.0 to 2.0.3 | 3 versions ahead of your current version | 6 years ago
on 2018-12-05
promptly
from 3.0.3 to 3.2.0 | 2 versions ahead of your current version | 4 years ago
on 2020-11-06
request-promise-native
from 1.0.5 to 1.0.9 | 4 versions ahead of your current version | 4 years ago
on 2020-07-22
secp256k1
from 3.7.1 to 3.8.0 | 1 version ahead of your current version | 5 years ago
on 2019-12-19
sinon
from 4.4.8 to 4.5.0 | 3 versions ahead of your current version | 6 years ago
on 2018-03-30
source-map-support
from 0.5.13 to 0.5.21 | 8 versions ahead of your current version | 3 years ago
on 2021-11-19
typescript
from 3.3.4000 to 3.9.10 | 376 versions ahead of your current version | 3 years ago
on 2021-06-16
Issues fixed by the recommended upgrade:
SNYK-JS-INI-1048974
SNYK-JS-JSONSCHEMA-1920922
SNYK-JS-LODASH-1040724
SNYK-JS-ELLIPTIC-571484
SNYK-JS-AJV-584908
SNYK-JS-ELLIPTIC-571484
SNYK-JS-ES5EXT-6095076
SNYK-JS-ASYNC-2441827
SNYK-JS-BL-608877
SNYK-JS-BROWSERIFYSIGN-6037026
SNYK-JS-DECODEURICOMPONENT-3149970
SNYK-JS-QS-3153490
SNYK-JS-QS-3153490
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-567746
SNYK-JS-SEMVER-3247795
SNYK-JS-SEMVER-3247795
SNYK-JS-SIMPLEGET-2361683
SNYK-JS-TAR-1536528
SNYK-JS-TAR-1536531
SNYK-JS-LODASH-608086
SNYK-JS-LODASH-6139239
SNYK-JS-NORMALIZEURL-1296539
SNYK-JS-TAR-1579147
SNYK-JS-TAR-1579152
SNYK-JS-TAR-1579155
SNYK-JS-HOSTEDGITINFO-1088355
SNYK-JS-HTTPCACHESEMANTICS-3248783
SNYK-JS-LODASH-1018905
SNYK-JS-LODASH-1018905
SNYK-JS-ELLIPTIC-1064899
SNYK-JS-ELLIPTIC-511941
SNYK-JS-ELLIPTIC-1064899
SNYK-JS-ELLIPTIC-1064899
SNYK-JS-ELLIPTIC-511941
SNYK-JS-EXPRESS-6474509
SNYK-JS-COOKIEJAR-3149984
SNYK-JS-DECOMPRESSTAR-559095
SNYK-JS-PATHPARSE-1077067
SNYK-JS-MONGODB-5871303
SNYK-JS-UNDERSCORE-1080984
npm:debug:20170905
SNYK-JS-TAR-1536758
Release notes
Package name: @types/bcrypt
Package name: @types/bcryptjs
Package name: @types/elliptic
Package name: @types/node
Package name: @types/request
Package name: @types/request-promise-native
Package name: @types/secp256k1
Package name: async
Version 2.6.4
Version 2.6.3
Package name: bitcore-mnemonic
Package name: commander
Ran "npm unpublish commander@2.20.2". There is no 2.20.2.
Fixed
Fixed
Changed
Credits:
Package name: elliptic
6.5.7
6.5.6
6.5.5
6.5.4
6.5.3
Package name: request
2.88.0
2.87.0
Package name: eslint-plugin-import
Full Changelog: v2.29.0...v2.29.1
Full Changelog: v2.28.1...v2.29.0
Full Changelog: v2.28.0...v2.28.1
[utils] v2.9.0
Package name: leveldown
Changed
nyc
devDependency from^14.0.0
to^15.0.0
(#696) (@ vweevers)electron
devDependency from^7.0.1
to^8.0.0
(#700) (@ vweevers)Added
Fixed
Changed
CheckEndCallback
toIterator
(#690) (@ vweevers)prebuildify-cross
(#694) (@ vweevers)electron
devDependency from^6.0.12
to^7.0.1
(d092e6b
) (@ vweevers)Added
Fixed
-fvisibility=hidden
(#688) (@ vweevers)test-gc
npm script (#691) (@ vweevers)Package name: levelup
Changed
abstract-leveldown
parity (#692) (@ vweevers):db
property to chained batchabstract-leveldown
dependency-check
devDependency from^3.3.0
to^4.1.0
(71a6aa3
) (@ vweevers)airtap
devDependency from^2.0.0
to^3.0.0
(#687) (@ vweevers)Changed
deferred-leveldown
from~5.2.1
to~5.3.0
(#682) (@ vweevers). This fixes the manifest added in 4.3.0.Added
deferred-leveldown
(#681) (@ vweevers)Package name: mkdirp
0.5.6
0.5.5
0.5.4
0.5.3
0.5.2
Package name: mocha
5.2.0 / 2018-05-18
🎉 Enhancements
mocha.opts
(@ plroebuck)🐛 Fixes
before
hooks when using--bail
(@ outsideris)📖 Documentation
🔩 Other
Buffer.from()
(@ harrysarson)5.1.1 / 2018-04-18
🐛 Fixes
--watch
(@ boneskull)5.1.0 / 2018-04-12
🎉 Enhancements
--exclude
option (@ metalex9)🐛 Fixes
📖 Documentation
🔩 Other
5.0.5 / 2018-03-22
Welcome @ outsideris to the team!
🐛 Fixes
--bail
failing to bail within hooks (@ outsideris)describe.skip()
) (@ outsideris)📖 Documentation
CHANGELOG.md
(@ tagoro9, @ honzajavorek)🔩 Other
Package name: mongodb
The MongoDB Node.js team is pleased to announce version 3.7.4 of the
mongodb
package!Release Highlights
This release fixes a bug that throws a type error when SCRAM-SHA-256 is used with saslprep in a webpacked environment.
3.7.4 (2023-06-21)
Bug Fixes
Documentation
We invite you to try the
mongodb
library immediately, and report any issues to the NODE project.Package name: progress
No content.
Package name: promptly
chore(release): 3.2.0
chore(release): 3.1.0
chore(release): 3.0.3
Package name: request-promise-native
Version 1.0.9
No content.
No content.
No content.
No content.
Package name: secp256k1
Package name: sinon
Package name: source-map-support
0.5.21
0.5.20
0.5.19
0.5.18
0.5.17
0.5.13
Package name: typescript
This release ships both an overall performance improvement, along with a mitigation for a performance regression when upgrading to Node.js 16. See the change for more details.