[Snyk] Upgrade serve from 11.0.0 to 11.3.0

[snyk-bot]

Snyk has created this PR to upgrade serve from 11.0.0 to 11.3.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 5 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2019-12-30.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	No Known Exploit
	Information Exposure SNYK-JS-KINDOF-537849	Proof of Concept

Release notes

Package name: serve

• 11.3.0 - 2019-12-30
  

  Minor Changes

  • Add back --cors option: #527

  Credits

  Huge thanks to @TrevorDev for helping!

• 11.2.0 - 2019-09-26
  

  Minor Changes

  • Add support for manual SSL certs/keys: #520

  Patches

  • Fixed ZEIT Now reference in readme: #554
  • Add information about how to serve a specific path: #548
  • Bumped serve-handler to the latest version: #559

  Credits

  Huge thanks to @mattdodge, @d2s, and @Johann-S for helping!

• 11.1.0 - 2019-07-10
  

  Minor Changes

  • Update serve-handler to v6.1.0 and enable etag option by default: #546
  • Updated README for better understanding where to place the serve.json: #544
  • Allow absolute file paths: #526

  Patches

  • Add --no-compression option to help message: #523

  Credits

  Huge thanks to @philippescher, @christopherjbaker, and @mbalabash for helping!

• 11.0.2 - 2019-06-19
  

  Patches

  • Bumped serve-handler to latest version: #539
• 11.0.1 - 2019-05-28
  

  Patches

  • Updated lockfile for yarn: #530
• 11.0.0 - 2019-04-03
  

  Major Changes

  • Disable symlinks by default: #517

  Patches

  • Added npx serve option to README: #509

  Credits

  Huge thanks to @jamonholmgren for helping!

from serve GitHub release notes

Commit messages

Package name: serve

• f14e267 11.3.0
• 6213de8 Add back `--cors` option ([Snyk] Upgrade @babel/preset-env from 7.12.10 to 7.12.11 #527)
• cbc6c4a 11.2.0
• 9360686 Bumped `serve-handler` to the latest version (Add a prepublish script and ignore docs #559)
• aa00e2c Add information about how to serve a specific path ([Snyk] Upgrade: @babel/core, @babel/preset-env #548)
• 550a76e Fixed ZEIT Now reference in readme (move to main for primary branch #554)
• 70d957b Add support for manual SSL certs/keys ([Snyk] Upgrade webpack from 5.8.0 to 5.9.0 #520)
• 2316382 11.1.0
• 451b44e Add `--no-compression` option to help message ([Snyk] Upgrade: @babel/core, @babel/preset-env #523)
• 51240b7 Allow absolute file paths ([Snyk] Upgrade webpack from 5.10.1 to 5.10.3 #526)
• 7b39dc8 Updated README for better understanding where to place the serve.json ([Snyk] Upgrade webpack-cli from 4.4.0 to 4.5.0 #544)
• decbbb5 Update `serve-handler` to v6.1.0 and enable `etag` option by default ([Snyk] Upgrade webpack from 5.20.1 to 5.20.2 #546)
• 29be622 11.0.2
• 7fc8967 Bumped `serve-handler` to latest version ([Snyk] Upgrade webpack-cli from 4.3.1 to 4.4.0 #539)
• b70502e 11.0.1
• 5b898c1 Updated lockfile for yarn (chore: release 5.1.3 #530)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs