[Snyk] Upgrade @googlemaps/google-maps-services-js from 3.3.28 to 3.3.42

[gjovs]

Snyk has created this PR to upgrade @googlemaps/google-maps-services-js from 3.3.28 to 3.3.42.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 14 versions ahead of your current version.
• The recommended version was released 4 months ago, on 2023-12-12.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-AXIOS-6144788	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Prototype Pollution SNYK-JS-AXIOS-6144788	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Use of Weak Hash SNYK-JS-CRYPTOJS-6028119	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Uncaught Exception SNYK-JS-ENGINEIO-5496331	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Denial of Service (DoS) SNYK-JS-SOCKETIOPARSER-5596892	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ZOD-5925617	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @googlemaps/google-maps-services-js

• 3.3.42 - 2023-12-12
  

  3.3.42 (2023-12-12)

  Build System

  • deps-dev: bump @ babel/traverse from 7.23.0 to 7.23.2 (#1058) (820544c)
  • deps-dev: bump @ types/jest from 29.5.5 to 29.5.7 (#1070) (8a4ec75)
  • deps-dev: bump @ types/jest from 29.5.7 to 29.5.10 (#1092) (d2b74f1)
  • deps-dev: bump @ types/node from 20.10.0 to 20.10.3 (#1102) (e6cd0e7)
  • deps-dev: bump @ types/node from 20.10.3 to 20.10.4 (#1111) (374b7b6)
  • deps-dev: bump @ types/node from 20.8.4 to 20.8.6 (#1056) (917c616)
  • deps-dev: bump @ types/node from 20.8.6 to 20.8.7 (#1059) (d2ed837)
  • deps-dev: bump @ types/node from 20.8.7 to 20.9.0 (#1080) (3c7cfda)
  • deps-dev: bump @ types/node from 20.9.0 to 20.9.2 (#1087) (d5d5521)
  • deps-dev: bump @ types/node from 20.9.2 to 20.10.0 (#1096) (40030b0)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1055) (f1674df)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1062) (dbf243b)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1071) (b36384e)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1073) (4e7ac73)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1085) (80697e6)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1088) (de1a052)
  • deps-dev: bump @ typescript-eslint/eslint-plugin (#1108) (3701d7e)
  • deps-dev: bump @ typescript-eslint/parser from 6.10.0 to 6.11.0 (#1084) (3e8bcdd)
  • deps-dev: bump @ typescript-eslint/parser from 6.11.0 to 6.12.0 (#1089) (895dbd3)
  • deps-dev: bump @ typescript-eslint/parser from 6.12.0 to 6.13.0 (#1095) (1c42682)
  • deps-dev: bump @ typescript-eslint/parser from 6.13.0 to 6.13.2 (#1103) (b8f1741)
  • deps-dev: bump @ typescript-eslint/parser from 6.7.5 to 6.8.0 (#1057) (1aa5649)
  • deps-dev: bump @ typescript-eslint/parser from 6.8.0 to 6.9.0 (#1063) (4dee296)
  • deps-dev: bump @ typescript-eslint/parser from 6.9.0 to 6.9.1 (#1069) (bd98de5)
  • deps-dev: bump @ typescript-eslint/parser from 6.9.1 to 6.10.0 (#1075) (781ce3e)
  • deps-dev: bump eslint from 8.51.0 to 8.52.0 (#1060) (8f7eb83)
  • deps-dev: bump eslint from 8.52.0 to 8.53.0 (#1077) (36e67f0)
  • deps-dev: bump eslint from 8.53.0 to 8.54.0 (#1090) (67c0e48)
  • deps-dev: bump eslint from 8.54.0 to 8.55.0 (#1101) (56f5d88)
  • deps-dev: bump eslint-config-prettier from 9.0.0 to 9.1.0 (#1099) (4b6f1ae)
  • deps-dev: bump eslint-plugin-jest from 27.4.2 to 27.4.3 (#1061) (e5c37be)
  • deps-dev: bump eslint-plugin-jest from 27.4.3 to 27.6.0 (#1076) (28624ad)
  • deps-dev: bump nock from 13.3.4 to 13.3.7 (#1068) (1a780bc)
  • deps-dev: bump nock from 13.3.7 to 13.3.8 (#1074) (f1bee09)
  • deps-dev: bump nock from 13.3.8 to 13.4.0 (#1094) (04ce099)
  • deps-dev: bump prettier from 3.0.3 to 3.1.0 (#1082) (3c472fd)
  • deps-dev: bump prettier from 3.1.0 to 3.1.1 (#1109) (785ff4a)
  • deps-dev: bump typedoc from 0.25.2 to 0.25.3 (#1067) (eecbe98)
  • deps-dev: bump typedoc from 0.25.3 to 0.25.4 (#1093) (cf24d22)
  • deps-dev: bump typescript from 5.2.2 to 5.3.2 (#1097) (9212502)
  • deps-dev: bump typescript from 5.3.2 to 5.3.3 (#1112) (eedf7b0)
  • deps: bump @ googlemaps/url-signature from 1.0.29 to 1.0.30 (#1110) (4400a37)
  • deps: bump axios from 1.5.1 to 1.6.0 (#1079) (c5e3c9a)
  • deps: bump axios from 1.6.0 to 1.6.1 (#1081) (392a38b)
  • deps: bump axios from 1.6.1 to 1.6.2 (#1091) (031213f)
  • deps: bump crypto-js from 4.1.1 to 4.2.0 (#1066) (51383bf)

  Miscellaneous Chores

  • add eslint and fix problems (#1045) (67e5de8)
  • update workflows to use newer versions (#1046) (52b256f)

  Tests

  • fix places/photo test (#1113) (1be71ac)
• 3.3.41 - 2023-10-10
  

  3.3.41 (2023-10-10)

  Bug Fixes

  • add tests to prevent updating to esm-only dependencies (#1051) (fd95b9c), closes #1047

  Build System

  • deps-dev: bump @ types/node from 20.8.3 to 20.8.4 (#1048) (7e6f1ae)
  • deps-dev: bump typedoc from 0.25.1 to 0.25.2 (#1050) (522b09e)
  • deps: bump retry-axios from 2.6.0 to 3.1.0 (#1049) (62ed0cd)
• 3.3.40 - 2023-10-09
  

  3.3.40 (2023-10-09)

  Bug Fixes

  • only use pre-ESM dependencies (#1047) (a0d416b)

  Miscellaneous Chores

  • update all dependencies (#1044) (c5c0990), closes #1035

  Build System

  • deps: bump retry-axios from 2.6.0 to 3.1.0 (#1027) (dacfff6)
• 3.3.39 - 2023-10-02
  

  3.3.39 (2023-10-02)

  Build System

  • deps-dev: bump @ types/node from 20.6.0 to 20.6.2 (#1036) (a2d68dd)
  • deps-dev: bump @ types/node from 20.6.2 to 20.7.0 (#1041) (218c66c)
  • deps-dev: bump @ types/node from 20.7.0 to 20.8.2 (#1043) (fe1b7b8)
• 3.3.38 - 2023-09-12
  Read more
• 3.3.37 - 2023-09-04
  Read more
• 3.3.36 - 2023-08-21
  Read more
• 3.3.35 - 2023-07-31
  Read more
• 3.3.34 - 2023-07-17
  Read more
• 3.3.33 - 2023-07-10
  Read more
• 3.3.32 - 2023-06-19
• 3.3.31 - 2023-05-22
• 3.3.30 - 2023-05-08
• 3.3.29 - 2023-04-24
• 3.3.28 - 2023-04-01

from @googlemaps/google-maps-services-js GitHub release notes

Commit messages

Package name: @googlemaps/google-maps-services-js

• 135290d chore(release): 3.3.42 [skip ci]
• 1be71ac test: fix places/photo test (#1113)
• 52b256f chore: update workflows to use newer versions (#1046)
• eedf7b0 build(deps-dev): bump typescript from 5.3.2 to 5.3.3 (#1112)
• 4400a37 build(deps): bump @ googlemaps/url-signature from 1.0.29 to 1.0.30 (#1110)
• 374b7b6 build(deps-dev): bump @ types/node from 20.10.3 to 20.10.4 (#1111)
• 785ff4a build(deps-dev): bump prettier from 3.1.0 to 3.1.1 (#1109)
• 3701d7e build(deps-dev): bump @ typescript-eslint/eslint-plugin (#1108)
• e6cd0e7 build(deps-dev): bump @ types/node from 20.10.0 to 20.10.3 (#1102)
• b8f1741 build(deps-dev): bump @ typescript-eslint/parser from 6.13.0 to 6.13.2 (#1103)
• 56f5d88 build(deps-dev): bump eslint from 8.54.0 to 8.55.0 (#1101)
• 4b6f1ae build(deps-dev): bump eslint-config-prettier from 9.0.0 to 9.1.0 (#1099)
• 9212502 build(deps-dev): bump typescript from 5.2.2 to 5.3.2 (#1097)
• 40030b0 build(deps-dev): bump @ types/node from 20.9.2 to 20.10.0 (#1096)
• 1c42682 build(deps-dev): bump @ typescript-eslint/parser from 6.12.0 to 6.13.0 (#1095)
• 04ce099 build(deps-dev): bump nock from 13.3.8 to 13.4.0 (#1094)
• cf24d22 build(deps-dev): bump typedoc from 0.25.3 to 0.25.4 (#1093)
• d2b74f1 build(deps-dev): bump @ types/jest from 29.5.7 to 29.5.10 (#1092)
• 67c0e48 build(deps-dev): bump eslint from 8.53.0 to 8.54.0 (#1090)
• 031213f build(deps): bump axios from 1.6.1 to 1.6.2 (#1091)
• de1a052 build(deps-dev): bump @ typescript-eslint/eslint-plugin (#1088)
• 895dbd3 build(deps-dev): bump @ typescript-eslint/parser from 6.11.0 to 6.12.0 (#1089)
• d5d5521 build(deps-dev): bump @ types/node from 20.9.0 to 20.9.2 (#1087)
• 80697e6 build(deps-dev): bump @ typescript-eslint/eslint-plugin (#1085)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs