[Snyk] Upgrade: lodash, cassandra-driver, validator #32
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade:
- lodash from 4.17.15 to 4.17.21.
See this package in npm: https://www.npmjs.com/package/lodash
- cassandra-driver from 4.5.2 to 4.7.2.
See this package in npm: https://www.npmjs.com/package/cassandra-driver
- validator from 13.0.0 to 13.12.0.
See this package in npm: https://www.npmjs.com/package/validator
See this project in Snyk:
https://app.snyk.io/org/rexterr/project/7f80d211-7ec8-49d4-9997-b88fa1ba4f2f?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯♂ The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
lodash
from 4.17.15 to 4.17.21 | 6 versions ahead of your current version | 4 years ago
on 2021-02-20
cassandra-driver
from 4.5.2 to 4.7.2 | 8 versions ahead of your current version | a year ago
on 2023-09-21
validator
from 13.0.0 to 13.12.0 | 11 versions ahead of your current version | 4 months ago
on 2024-05-09
Issues fixed by the recommended upgrade:
SNYK-JS-ADMZIP-1065796
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-567746
SNYK-JS-LODASH-608086
SNYK-JS-LODASH-6139239
SNYK-JS-LODASH-1018905
SNYK-JS-VALIDATOR-1090599
SNYK-JS-VALIDATOR-1090600
SNYK-JS-VALIDATOR-1090601
SNYK-JS-VALIDATOR-1090602
Release notes
Package name: lodash
-
4.17.21 - 2021-02-20
-
4.17.20 - 2020-08-13
-
4.17.19 - 2020-07-08
-
4.17.18 - 2020-07-08
-
4.17.17 - 2020-07-08
-
4.17.16 - 2020-07-08
-
4.17.15 - 2019-07-19
from lodash GitHub release notesBump to v4.17.21
Bump to v4.17.20.
Bump to v4.17.19
Rebuild lodash and docs
4.17.15
Package name: cassandra-driver
-
4.7.2 - 2023-09-21
-
4.7.1 - 2023-09-19
-
4.7.0 - 2023-09-15
-
4.6.4 - 2022-07-12
-
4.6.3 - 2021-05-19
-
4.6.2 - 2021-03-30
-
4.6.1 - 2020-11-25
-
4.6.0 - 2020-08-11
-
4.5.2 - 2020-05-07
from cassandra-driver GitHub release notes4.7.2
4.7.1
4.7.0
4.6.4
4.6.3
4.6.2
version 4.6.1
Version bump
Version bump to 4.5.2
Package name: validator
What's Changed
New Features / Validators
isAbaRouting@ songyuewFixes, New Locales and Enhancements
isLicensePlateadd Pakistanien-PKlocale @ anasshakilisPortfix invalid leading zeros @ anasshakilisTaxIDadded Argentinaes-ARlocale @ estefrareisDatetimezone offset fix @ tomaspanekisPassportNumberaddedZAlocale @ GMorris-professionalisMobilePhone:en-MWlocale @ SimranSiddiquiam-AMlocale @ AlexKrupkoisPostalAddressfixNLlocale @ RobinvanderVlietisISO4217addSLEcurrency @ urgisStrongPasswordfix symbolRegex to include\@ nandavikasisVATfixedKZlocale @ MatthieuLemoineisAlpha,isAlphanumericaddedeolocale @ RobinvanderVlietisIBANadd AlgeriaDZlocale @ thibault-lrisVATimproveAUlocale @ matthewberrymanisUUIDadd support for v7 @ rusconisTaxIDadd Ukraineuk-UAlocale @ arttigerisDatedisallow hiphen before year @ Sumit-tech-joshiNew Contributors
Full Changelog: 13.11.0...13.12.0
New Features / Validators
isFreightContainerID: for shipping containers IDs @ songyuewisMailtoURI@ uksarkarFixes, New Locales and Enhancements
isIBANaddMAlocale @ lroudgeisCreditCardrefactor @ pano9000isLocaleadd support for more language tags @ kwahomeisVATforCU@ jimmyorpheusisJWT@ Prathamesh061IsFQDNtest enhancements @ aalekhpatel07isAlpha,isAlphanumericforkk-KZ@ BekStar7isEmailsupportallow_underscores@ guspowerisDateenhance Date declaration compatibility across multiple environments @ CiprianSisIBANadd white and blacklist options to the isIBAN validator @ edilsonisEmaildo not allow non-breaking space in user part @ jeremy21212121isMobilePhone:so-SO@ ohersifr-CF@ cheboies-CU@ klaframboisepl-PL@ czerwony03fr-WF@ aidos42ar-SD@ HussienmaNew Contributors 🎉
Full Changelog: 13.9.0...13.11.0
13.9.0New Features / Validators
isISO6391: add ISO 639-1 validator @ braaarisLuhnNumber@ ST-DDTFixes and Enhancements
#1865
isMACAddress: add EUI-validation @ WikiRik @ tux-tn#1888
isBase32: add option for Crockford's base32 alternative @ BigOsvaap#1916
isDataURI: fix mediaType format @ temoffey#1920
isEmail: addhost_whitelistoption @ poor-coder#1939
isFQDN: fixallow_numeric_tldoption @ BigOsvaap#1962
isIP: refactor @ UnKnoWn-Consortium#1967
isLength@ ikkyu-3#1992
isMagnetURI@ Rhilip @ tux-tn#1995
isURL: fix check for host @ mortbauer#2008
isCreditCard@ brianwhaley#2075
isAfter: allow usage of option object @ WikiRik#2114
isRgbColor@ pano9000#2122
isDataURI: fix MIME types with underscores @ pano9000#2148
isStrongPassword@ sandmule#2157
isISBN: allow usage of option object @ WikiRik#2170
isEmail: fixignore_max_lengthfor FQDN @ sakhmedbayev#2020
isFloat: fix comma(,) passing as float @ frederike-raminDocumentation fixes:
Code Refactors:
New and Improved Locales
isAlpha,isAlphanumeric: