Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade middy from 0.27.1 to 0.36.0 #130

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

nejidevelops
Copy link
Owner

Snyk has created this PR to upgrade middy from 0.27.1 to 0.36.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 22 versions ahead of your current version.
  • The recommended version was released 5 years ago, on 2020-04-14.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-XML2JS-5414874
586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: middy
  • 0.36.0 - 2020-04-14
  • 0.35.0 - 2020-04-14
  • 0.34.0 - 2020-03-07
  • 0.33.2 - 2020-01-05
  • 0.33.1 - 2019-12-23
  • 0.33.0 - 2019-12-16
  • 0.32.3 - 2019-12-05
  • 0.32.2 - 2019-12-04
  • 0.32.1 - 2019-12-04
  • 0.32.0 - 2019-12-04
  • 0.30.5 - 2019-11-26
  • 0.30.4 - 2019-10-23
  • 0.30.3 - 2019-10-15
  • 0.30.2 - 2019-10-03
  • 0.30.1 - 2019-10-03
  • 0.29.0 - 2019-08-14
  • 0.28.5 - 2019-08-10
  • 0.28.4 - 2019-07-17
  • 0.28.3 - 2019-07-05
  • 0.28.2 - 2019-06-23
  • 0.28.1 - 2019-06-23
  • 0.28.0 - 2019-06-23
  • 0.27.1 - 2019-06-23
from middy GitHub release notes
Commit messages
Package name: middy
  • afe7446 Reverted changes in how the error phase is handled with promises as discussed in #485
  • 41e72a7 Releases 0.35.0
  • c6c80a9 Changed error handling logic to stop after error has been handled (#497)
  • 2931123 Improved circleci setup
  • 5199a79 [0.x] Feature/update deps and linting rules - Drops Node 6 (#488)
  • adda76a docs: fix typo (#463)
  • 05a5a63 docs: fix typo
  • 67133d9 Add deprecation warning in README - switch to 1.0.0-beta (#458)
  • 6279651 [TypeScript] Ability to set your own context (#451)
  • e70a1a1 Merge pull request #450 from gsingh1/dbManager-revert
  • 02a04de perf: knex deps removal
  • b25865f docs: update dbManager middleware description
  • a50eff1 perf: remove dbManager middleware
  • 846d48b Updated readme template
  • 4fd888a fix broken link href in readme (#433)
  • 3d02bee Reverted knex.js to version 0.17.2 to keep support with node 6
  • 191c2fa Upgrade knex to 0.19.5
  • 7d95b0f Upgrade knex to fix security issues (#432)
  • b0fd258 Database manager as a middleware (#405)
  • 014e6bd Context specified in middy constructor should be passed forward to the Middy interface (#422)
  • bd5fb45 Fix href for "Using async/await" link in ToC (#415)
  • df19de6 Documentation Improvements (#411)
  • 54f49da Small spelling fixes (#406)
  • faf930f Update types to reflect `aws lambda` types. (#402)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants