[Snyk] Upgrade react-scripts from 3.0.0 to 3.4.0 #7
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade react-scripts from 3.0.0 to 3.4.0. See this package in NPM: https://www.npmjs.com/package/react-scripts See this project in Snyk: https://app.snyk.io/org/davidkindler/project/254553aa-434a-4bef-9057-3a659f158135?utm_source=github&utm_medium=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade react-scripts from 3.0.0 to 3.4.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.The recommended version fixes:
npm:sshpk:20180409
npm:sshpk:20180409
npm:querystringify:20180419
npm:querystringify:20180419
npm:macaddress:20180511
npm:extend:20180424
npm:diff:20180305
npm:deep-extend:20180409
SNYK-JS-WEBPACKDEVSERVER-72405
npm:url-parse:20180731
SNYK-JS-URLPARSE-543307
npm:url-parse:20180731
SNYK-JS-URLPARSE-543307
SNYK-JS-TAR-174125
SNYK-JS-REACTDEVUTILS-72875
SNYK-JS-LODASH-73638
SNYK-JS-LODASH-450202
SNYK-JS-JSYAML-174129
SNYK-JS-JSYAML-174129
SNYK-JS-HANDLEBARS-534988
SNYK-JS-HANDLEBARS-534478
SNYK-JS-HANDLEBARS-480388
SNYK-JS-HANDLEBARS-469063
SNYK-JS-HANDLEBARS-174183
SNYK-JS-HANDLEBARS-173692
SNYK-JS-FSTREAM-174725
npm:ua-parser-js:20180227
npm:tough-cookie:20170905
npm:stringstream:20180511
npm:node-forge:20180226
npm:mem:20180117
npm:hoek:20180212
npm:cryptiles:20180710
npm:content-type-parser:20170905
SNYK-JS-LODASH-73639
SNYK-JS-JSYAML-173999
SNYK-JS-JSYAML-173999
SNYK-JS-ELLIPTIC-511941
SNYK-JS-DOTPROP-543489
npm:nwmatcher:20180305
npm:eslint:20180222
npm:debug:20170905
npm:clean-css:20180306
npm:braces:20180219
SNYK-JS-MERGE-72553
Release notes
Package name: react-scripts
-
3.4.0 - 2020-02-14
- #8378 Downgrade style-loader to v0.23.1 due to CSS modules hot reload not working with v1.0.0 and above (@chybisov)
- #8439 Downgrade chalk for ie 11 support (@ianschmitz)
- #8292 Fixes unchecked access to 'deploy' script on build (@renato-bohler)
- #8272 Handle service worker error in Firefox (@rosinghal)
- #8403 Fix robots.txt for TS (@Kamahl19)
- #8442 fix(react-scripts): do not redirect served path if request may proxy (@iamandrewluca)
- #7259 feat(react-scripts): allow PUBLIC_URL in develoment mode (@iamandrewluca)
- #7750 Enable custom sockjs pathname for hot reloading server. (@heygrady)
- #8412 Change arrow functions to function declarations (@lewislbr)
- #8272 Handle service worker error in Firefox (@rosinghal)
- #5845 Add option to provide custom ssl certificates during development (@alexbrazier)
- #8475 Correct webpack name casing (@lewislbr)
- Other
- #8437 Fix navbar line break in header (@esvyridov)
- #8299 Update public folder usage docs to clarify globals (@keevan)
- #8390 setupTestFrameworkScriptFile is deprecated (@JimmyLv)
- #8459 update open to v7.0.2 (@vince1995)
- #7948 Support JetBrains Rider IDE as an editor (@djpowell)
- #8367 Wider Chromium support for openBrowser (@handeyeco)
- #8282 Run git init before template dependencies are installed (@lukaszfiszer)
- Other
- #8402 fix(test): force install npm in e2e-behaviour (@iamandrewluca)
- Alex Brazier (@alexbrazier)
- Andrew Luca (@iamandrewluca)
- Cassidy Williams (@cassidoo)
- Christopher Button (@devgeist)
- David Powell (@djpowell)
- Eugene Chybisov (@chybisov)
- Eugene Sviridov (@esvyridov)
- Grady Kuhnline (@heygrady)
- Ian Schmitz (@ianschmitz)
- Kevin Pham (@keevan)
- Lewis Llobera (@lewislbr)
- Martin Litvaj (@Kamahl19)
- Matthew Curtis (@handeyeco)
- Renato Böhler (@renato-bohler)
- Rohit Singhal (@rosinghal)
- Vincent Semrau (@vince1995)
- Łukasz Fiszer (@lukaszfiszer)
- 吕立青 (@JimmyLv)
-
3.3.1 - 2020-01-31
- #8255 Add "Disallow:" to robots.txt (@tomoyaf)
- #8281 Fix sass importLoaders (@mariusc23)
- #8099 Add titleProp to SVGR ReactComponent type definition (@rhnorskov)
- #8028 fix(react-scripts): proactively append to .gitignore during generation (@bmuenzenmeyer)
- #8106 Fix CSS font-face minification (@sidonaldson)
- #8120 Sync dependencies babel config (@ianschmitz)
- #8116 Add slashes to WebSocket protocol URL (@Baael)
- #8079 webpackHotDevClient now uses wss when https is used (@mikecaulley)
- #6548 Add helpful message to the footer (@pyrogenic)
- #8177 Remove React.FC from Typescript template (@Retsam)
- #8219 Add template support for any package.json keys (#8082) (@tomvalorsa)
- #8298 Support shorthand scoped templates (@kevin940726)
- #8168 Add current version and bin location to --info output (@heyimalex)
- #8194 Replace favicon in templates (@heyimalex)
- #7803 Remove error for @typescript-eslint/no-namespace (@szhu)
- Other
- #8380 docs: Add troubleshooting documentation on ENOSPC (@huchenme)
- #8394 Update docs according to lint-staged v10 (@lukyth)
- #8307 Remove outdated docs regarding vscode eslint extension and typescript autofix (@alex-vukovity-cko)
- #8247 Update setting-up-your-editor.md (@dev-xu)
- #8092 Update custom template docs with instructions for testing custom template locally (@kevinold)
- #8293 Minor grammatical edit (@egrim)
- #8212 Little typo (@sonyarianto)
- #8147 update PWA docs links to point to template package (@peet)
- #8132 Add package-runner note to readme (@JeromeDeLeon)
- #8111 chore: update docusaurus & tweak site (@endiliey)
- #8080 Fix typo in CHANGELOG.md (@Trontor)
- #8077 Add custom-templates to docs sidebar (@ianschmitz)
- #8124 Fix typo in comment:
- #8178 Minor refactors in create-react-app (@heyimalex)
- #8353 Remove outdated babel plugins (@ianschmitz)
- #8324 Update Dependencies (@RDIL)
- #8122 Fix CI build (@ianschmitz)
- #8364 Downgrade open from 7.0.0 to 6.4.0 (@vince1995)
- #8163 Bump pkgUp (@andriijas)
- #8171 Bump babel-plugin-tester and fix breaking changes (@andriijas)
- #8176 Bump internal dependencies (@andriijas)
- #8164 Bump chalk (@andriijas)
- #8102 [Security] Update terser webpack plugin (@RDIL)
- Alex Guerra (@heyimalex)
- Alex James Vukovity (@alex-vukovity-cko)
- Andreas Cederström (@andriijas)
- Boyuan Xu (@dev-xu)
- Brian Muenzenmeyer (@bmuenzenmeyer)
- Endi (@endiliey)
- Evan Grim (@egrim)
- Hu Chen (@huchenme)
- Ian Schmitz (@ianschmitz)
- Jerome De Leon (@JeromeDeLeon)
- Joshua Pollak (@pyrogenic)
- Kai Hao (@kevin940726)
- Kanitkorn Sujautra (@lukyth)
- Kevin Old (@kevinold)
- Marius Craciunoiu (@mariusc23)
- Mike Caulley (@mikecaulley)
- Peet Goddard (@peet)
- Rasmus Nørskov (@rhnorskov)
- Reece Dunham (@RDIL)
- Sean Zhu (@szhu)
- Simon Donaldson (@sidonaldson)
- Sony AK (@sonyarianto)
- Tom Valorsa (@tomvalorsa)
- Tomoya Fujita (@tomoyaf)
- Vadzim (@vadzim)
- Vincent Semrau (@vince1995)
- Wojciech Zieliński (@Baael)
- @Retsam
- @Trontor
-
3.3.0 - 2019-12-05
-
3.3.0-next.80 - 2019-12-04
-
3.3.0-next.62 - 2019-11-14
-
3.3.0-next.39 - 2019-10-24
-
3.3.0-next.38 - 2019-10-24
-
3.2.0 - 2019-10-03
-
3.1.2 - 2019-09-19
-
3.1.1 - 2019-08-13
-
3.1.0 - 2019-08-09
-
3.0.1 - 2019-05-08
-
3.0.0 - 2019-04-22
from react-scripts GitHub release notes3.4.0 (2020-02-14)
v3.4.0 is a minor release that adds new features, including support for SSL and setting
PUBLIC_URLin development. It also includes a fix for Hot Module Reloading with CSS Modules as well as other bug fixes.🐛 Bug Fix
react-scriptscreate-react-app,react-dev-utils,react-error-overlayreact-dev-utilscra-template-typescript,cra-templatecra-template-typescript💅 Enhancement
react-dev-utils,react-scriptscra-template-typescriptcra-template-typescript,cra-templatereact-scripts📝 Documentation
cra-template-typescript,cra-template,react-dev-utils,react-error-overlay,react-scripts🔨 Underlying Tools
react-dev-utilsreact-scriptsCommitters: 18
Migrating from 3.3.1 to 3.4.0
Inside any created project that has not been ejected, run:
or
3.3.1 (2020-01-31)
v3.3.1 is a maintenance release that includes minor bug fixes and documentation updates.
🐛 Bug Fix
cra-templatereact-scriptsbabel-preset-react-appreact-dev-utils💅 Enhancement
react-error-overlaycra-template-typescriptcra-template-typescript,cra-template,react-scriptscreate-react-appcra-template-typescript,cra-templateeslint-config-react-app📝 Documentation
babel-preset-react-app?.is right,.?is not (@vadzim)🏠 Internal
create-react-app🔨 Underlying Tools
babel-preset-react-app,create-react-app,react-dev-utils,react-error-overlay,react-scriptsreact-dev-utilsbabel-plugin-named-asset-importcreate-react-app,react-app-polyfill,react-dev-utils,react-error-overlay,react-scriptscreate-react-app,react-dev-utils,react-error-overlayreact-error-overlay,react-scriptsCommitters: 29
Migrating from 3.3.0 to 3.3.1
Inside any created project that has not been ejected, run:
or
Commit messages
Package name: react-scripts
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs