Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade @api-platform/admin from 0.6.2 to 2.0.0 #212

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade @api-platform/admin from 0.6.2 to 2.0.0 #212

wants to merge 1 commit into from

Conversation

Rebolon
Copy link
Owner

@Rebolon Rebolon commented Feb 14, 2023

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 556/1000
Why? Recently disclosed, Has a fix available, CVSS 5.4		 Cross-site Scripting (XSS)
SNYK-JS-RAUIMATERIALUI-3319446		 Yes No Known Exploit
medium severity 556/1000
Why? Recently disclosed, Has a fix available, CVSS 5.4		 Cross-site Scripting (XSS)
SNYK-JS-REACTADMIN-3319447		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @api-platform/admin The new version differs by 149 commits.
  • 59e2df5 v2.0.0
  • 1262fd2 Old version
  • ad5ea22 React-admin 3 (#263)
  • 66258a1 Update CONTRIBUTING.md (#261)
  • fcf6ac0 1.0.2
  • 3fc0d75 Merge pull request #253 from quentinus95/patch-1
  • f50ca44 apply prettier recommendations
  • df974d1 check for the value to be defined before checking the position of the prefix
  • 24534ef Merge pull request #251 from jfthuillier/guesser-logs
  • 856524f Merge pull request #252 from alanpoulain/fix-nested-array-filters
  • 3bed170 Add console logs in guessers to improve DX
  • 735cdbb Fix nested search filters and search filter for collection
  • dd2e39e Merge pull request #247 from silvia-odwyer/add_gif
  • d7b1e62 Added GIF to the README.
  • 0feae74 Merge pull request #240 from tienvx/allow-to-disable-filters
  • 8b121c1 Allow to disable filters
  • 8a77d87 Merge pull request #242 from sumitkharche/master
  • bc8e6c8 Removed License badge from README.md file
  • 65fb88e Merge pull request #239 from tienvx/pass-down-initial-props
  • f9e74c0 Merge pull request #231 from toofff/feat-remove-template-pull-request
  • 3924b80 Feat: remove template PR
  • 0f0b029 Pass down initial props
  • 7fc04c2 v1.0.1
  • 9289910 Merge pull request #237 from tienvx/inject-api-document-parser

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
馃 View latest project report

馃洜 Adjust project settings

馃摎 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

馃 Cross-site Scripting (XSS)
馃 Cross-site Scripting (XSS)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@Rebolon @snyk-bot