Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade monaco-typescript from 3.3.1 to 4.10.0 #21

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

MarcelRaschke
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade monaco-typescript from 3.3.1 to 4.10.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


Warning: This is a major version upgrade, and may be a breaking change.

  • The recommended version is 22 versions ahead of your current version.
  • The recommended version was released 9 months ago, on 2021-11-04.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Override Protection Bypass
npm:qs:20170213
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Improper Privilege Management
SNYK-JS-SHELLJS-2332187
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-SETVALUE-450213
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-SETVALUE-1540541
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-SETVALUE-450213
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-SETVALUE-1540541
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-MIXINDEEP-450212
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-JSONSCHEMA-1920922
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-INI-1048974
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Arbitrary Code Execution
SNYK-JS-HANDLEBARS-534478
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Denial of Service (DoS)
SNYK-JS-HANDLEBARS-480388
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-469063
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-174183
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-173692
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Remote Code Execution (RCE)
SNYK-JS-HANDLEBARS-1056767
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-ASYNC-2441827
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-AJV-584908
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-ACORN-559469
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-ACORN-559469
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-WS-1296835
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UGLIFYJS-1727251
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-PATHPARSE-1077067
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Denial of Service (DoS)
SNYK-JS-NWSAPI-2841516
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Denial of Service (DoS)
SNYK-JS-HTTPPROXY-569139
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-HIGHLIGHTJS-1045326
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-567742
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Validation Bypass
SNYK-JS-KINDOF-537849
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Prototype Pollution
SNYK-JS-HANDLEBARS-534988
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-HANDLEBARS-1279029
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Information Exposure
SNYK-JS-FOLLOWREDIRECTS-2332181
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Open Redirect
SNYK-JS-ECSTATIC-174543
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit
Prototype Pollution
SNYK-JS-DOTPROP-543489
589/1000
Why? Has a fix available, CVSS 7.5
Proof of Concept
Information Exposure
SNYK-JS-FOLLOWREDIRECTS-2396346
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: monaco-typescript
  • 4.10.0 - 2021-11-04

    4.10.0

  • 4.9.1 - 2021-10-08

    4.9.1

  • 4.9.0 - 2021-10-08

    4.9.0

  • 4.8.1 - 2021-09-21

    4.8.1

  • 4.7.0 - 2021-08-16

    4.7.0

  • 4.6.0 - 2021-07-15

    4.6.0

  • 4.5.0 - 2021-06-11

    4.5.0

  • 4.4.0 - 2021-05-12

    4.4.0

  • 4.3.1 - 2021-03-05

    4.3.1

  • 4.3.0 - 2021-03-05
  • 4.2.0 - 2021-01-28
  • 4.1.1 - 2020-09-24
  • 4.1.0 - 2020-09-18
  • 4.0.2 - 2020-09-11
  • 4.0.1 - 2020-09-08
  • 4.0.0 - 2020-09-07
  • 3.7.0 - 2020-02-10
  • 3.6.1 - 2019-12-20
  • 3.6.0 - 2019-12-20
  • 3.5.1 - 2019-09-19
  • 3.5.0 - 2019-06-24
  • 3.4.1 - 2019-03-04
  • 3.3.1 - 2018-11-13
from monaco-typescript GitHub release notes
Commit messages
Package name: monaco-typescript

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants