Skip to content

[Snyk] Security upgrade ember-electron from 1.3.2 to 6.0.0 #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade ember-electron from 1.3.2 to 6.0.0 #44

wants to merge 1 commit into from

Conversation

lholmquist
Copy link
Contributor

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 631/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 6.2		 Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		 Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: ember-electron The new version differs by 250 commits.
  • d028d8c Bump addon docs (#1625)
  • 91ca3d0 Bump sinon from 15.2.0 to 17.0.1 (#1617)
  • a6a499a Update linting and prettier setups, drop node 16 support (#1624)
  • 3025f8c Bump @ electron-forge/core from 6.4.2 to 7.2.0 (#1622)
  • 3282c25 Bump @ ember/test-helpers from 3.2.0 to 3.2.1 (#1621)
  • cac1d64 Bump eslint from 8.50.0 to 8.56.0 (#1620)
  • fefa13f Bump eslint-plugin-ember from 11.11.1 to 11.12.0 (#1619)
  • 049b358 Bump ember-template-lint from 5.11.2 to 5.13.0 (#1618)
  • 6adee5e Bump webpack from 5.88.2 to 5.89.0 (#1615)
  • 2b6cda7 Bump sass from 1.66.1 to 1.69.5 (#1616)
  • 6926645 Bump ember-cli-babel from 8.0.0 to 8.2.0 (#1605)
  • a948fab Bump ember-cli-addon-docs from 6.0.1 to 6.0.2 (#1597)
  • 505a6b6 Bump eslint-plugin-n from 16.0.2 to 16.4.0 (#1614)
  • 5c40706 Switch to protocol.handle() (#1612)
  • b7bea18 Bump eslint from 8.49.0 to 8.50.0 (#1603)
  • d6260af Bump chai from 4.3.7 to 4.3.9 (#1602)
  • 60ff2bf Bump @ babel/core from 7.22.15 to 7.22.19 (#1596)
  • ca991ce Bump eslint from 8.48.0 to 8.49.0 (#1592)
  • 4da7789 Bump ember-cli-addon-docs from 5.2.0 to 6.0.1 (#1590)
  • a3fb07c Bump @ electron-forge/core from 6.4.1 to 6.4.2 (#1591)
  • b881afb Bump @ babel/core from 7.22.11 to 7.22.15 (#1588)
  • 93fa97c Bump @ babel/eslint-parser from 7.22.11 to 7.22.15 (#1586)
  • 8316b31 Bump @ babel/plugin-proposal-decorators from 7.22.10 to 7.22.15 (#1587)
  • 9b9aa07 Bump stylelint-config-standard-scss from 8.0.0 to 11.0.0 (#1585)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

@snyk-bot
fix: package.json to reduce vulnerabilities
50c4851 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lholmquist @snyk-bot