Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade styled-components from 6.0.0-rc.1 to 6.0.0 #8

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Security upgrade styled-components from 6.0.0-rc.1 to 6.0.0 #8

wants to merge 1 commit into from

Conversation

mihrpsah
Copy link
Collaborator

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • brainx/package.json
    • brainx/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5		 Uncontrolled resource consumption
SNYK-JS-BRACES-6838727		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: styled-components The new version differs by 48 commits.
  • 2804c03 chore: ignore type test when building
  • 3708b45 refactor(types): remove unnecessary branching
  • 66f6ba7 chore: add failing type test for #4052
  • f82f956 refactor: settle some type errors and remove unnecessary code
  • c6f883b chore: restore test to ensure stylis rule-splitting on media queries
  • fa58875 chore: bump stylis to 4.3
  • 1efd1a7 chore: fix jest
  • 1681ee0 chore: fix types in attrs tests
  • e6c4f0a feat(types): chip csstype via "CSS" namespace
  • c0f8015 fix(types): prevent prop bleed on styling properties
  • 1f771fe v6.0.0-rc.6
  • 235a62b fix: move @ types/stylis to dependencies
  • c3939a4 refactor: simpler code
  • 2c73455 chore: update script name
  • 1008f36 chore: update package description
  • 43e7429 chore: accept lockfile change
  • 00ab9c4 chore: don't warn if shouldForwardProp is in use and the prop is forwarded
  • e77ea5f v6.0.0-rc.5
  • 856fb97 chore: warn only once per detected prop
  • 69346d3 v6.0.0-rc.4
  • 1c76b0f chore: fix issue with css helper in interpolations
  • 8b5cdbc chore: massively speed up compilation
  • 1d32430 refactor(types): fix a few stray errors
  • 3b9b729 refactor(types): add branding back

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mihrpsah @snyk-bot