[Snyk] Security upgrade googleapis from 36.0.0 to 49.0.0 by snyk-bot · Pull Request #239 · leejh3224/nodejs-docs-samples

snyk-bot · 2020-09-03T01:56:09Z

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- healthcare/datasets/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	883/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 9.8	Prototype Pollution SNYK-JS-NODEFORGE-598677	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: googleapis

The new version differs by 232 commits.

20409df chore: release 49.0.0 (Add new updated SQL Server sample region tags. GoogleCloudPlatform/nodejs-docs-samples#2022)
7de4e78 chore(deps): update dependency null-loader to v4 (chore: delete no-warning-comments eslint rule GoogleCloudPlatform/nodejs-docs-samples#2044)
340f78d chore(deps): update dependency ts-loader to v7 (chore: remove unused dependency in top level GoogleCloudPlatform/nodejs-docs-samples#2043)
254f878 chore: remove unused dev packages (Update e2e tests for markdown preview GoogleCloudPlatform/nodejs-docs-samples#2042)
f4eb6e0 chore: update lint ignore files (Fix comment in Dockerfile GoogleCloudPlatform/nodejs-docs-samples#2040)
0110f3e docs: update readme for drive readme (run/markdown-preview/renderer: post( failed GoogleCloudPlatform/nodejs-docs-samples#2039)
73d284b fix(deps): update common and auth (chore: activate more eslint rules GoogleCloudPlatform/nodejs-docs-samples#2038)
476b71e test: use discovery docs from fixture (chore: activate no-unused-vars eslint rule GoogleCloudPlatform/nodejs-docs-samples#2037)
3a3b61d build: remove unused codecov config (The ImageMagick example doesn't work GoogleCloudPlatform/nodejs-docs-samples#2034)
fea414a feat!: regenerate the API (chore: use node-fetch instead of axios GoogleCloudPlatform/nodejs-docs-samples#2028)
48a4f05 chore(dep)!: deprecate node 8 (fix(deps): update dependency axios to ^0.21.0 GoogleCloudPlatform/nodejs-docs-samples#2021)
99ebacf test: the kitchen sink system test sometimes times out (fix: eventarc pubsub fix GoogleCloudPlatform/nodejs-docs-samples#2020)
05090da fix: apache license URL ([Snyk] Security upgrade @google-cloud/compute from 0.11.0 to 0.12.0 #468) (chore(functions): remove unused template sample GoogleCloudPlatform/nodejs-docs-samples#2017)
d15c656 chore: remove duplicate mocha config (chore(functions): delete unused sample GoogleCloudPlatform/nodejs-docs-samples#2016)
874edc3 build: update templates (chore(functions/ocr): Remove unused region tags + add clarifying comment GoogleCloudPlatform/nodejs-docs-samples#2013)
dc16586 build: set AUTOSYNTH_MULTIPLE_COMMITS=true for context aware commits (chore(deps): update dependency gaxios to v4 GoogleCloudPlatform/nodejs-docs-samples#2012)
741c58b chore: update github actions configuration (chore(deps): update dependency gts to v3 GoogleCloudPlatform/nodejs-docs-samples#1999)
1fe744b chore(deps): update dependency @types/rimraf to v3 (feat: remove supertest from deps GoogleCloudPlatform/nodejs-docs-samples#1995)
5512eb5 chore(deps): update dependency typedoc to ^0.17.0 (Decrease Renovate Frequency GoogleCloudPlatform/nodejs-docs-samples#1993)
0a4db38 chore: release 48.0.0 (eventarc: cal event log GoogleCloudPlatform/nodejs-docs-samples#1979)
074f641 fix: allow an empty requestBody to be provided for APIs that support multipart post (functions/billing: test failure preventing PR merges #1985 GoogleCloudPlatform/nodejs-docs-samples#1988)
8bcb212 feat!: run the generator (adds: displayvideo, gamesConfiguration, managedidentities, networkmanagement) (eventarc: generic GoogleCloudPlatform/nodejs-docs-samples#1989)
8677588 build(tests): fix coveralls and enable build cop (fix(deps): update dependency googleapis to v60 - autoclosed GoogleCloudPlatform/nodejs-docs-samples#1982)
0679c78 build: update linkinator config (docs(terminology): update language to follow recommendations GoogleCloudPlatform/nodejs-docs-samples#1981)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEFORGE-598677

fix: healthcare/datasets/package.json to reduce vulnerabilities

ebfec3b

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEFORGE-598677

snyk-bot mentioned this pull request Sep 3, 2021

[Snyk] Security upgrade loopback-component-explorer from 5.4.0 to 6.2.0 #341

Open

leejh3224 mentioned this pull request Jan 10, 2023

[Snyk] Fix for 1 vulnerabilities #569

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Security upgrade googleapis from 36.0.0 to 49.0.0#239

[Snyk] Security upgrade googleapis from 36.0.0 to 49.0.0#239
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-2d5f3c66b8a098becc93bc4206cb5163

snyk-bot commented Sep 3, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

snyk-bot commented Sep 3, 2020

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant