[Snyk] Upgrade winston from 3.2.1 to 3.3.2 #6799

snyk-bot · 2020-07-14T03:24:10Z

Snyk has created this PR to upgrade winston from 3.2.1 to 3.3.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 3 versions ahead of your current version.
The recommended version was released 21 days ago, on 2020-06-22.

Release notes

Package name: winston

3.3.2 - 2020-06-22
- [#1814] Use fork of diagnostics on NPM to avoid making Docker images require git 0752614
v3.3.1...v3.3.2
3.3.1 - 2020-06-22
- Prep for 3.3.1 faac066
- Add space between info.message and meta.message (#1740) 227ca0a
- Fix bugs in createLogger type (#1807) ef97171
- Fix typing for Profile.start (was Date, should be Number) (#1803) 0e1c812
- Merge branch 'master' of github.com:winstonjs/winston 9e7bd71
- [#1813] Use fork of diagnostics, avoiding indirect storage-engine dependency 67cd9b5
- remove emitErrs note from README (its no longer supported) (#1810) 6545a7e
v3.3.0...v3.3.1
3.3.0 - 2020-06-21
Read more
3.2.1 - 2019-01-29
Version 3.2.1

from winston GitHub release notes

Commit messages

Package name: winston

5c8da2d 3.3.2
0752614 [Parse _Installation route return 400 'HTTP POST METHOD' #1814] Use fork of diagnostics on NPM to avoid making Docker images require git
e364ddc 3.3.1
faac066 Prep for 3.3.1
227ca0a Add space between `info.message` and `meta.message` (Push notification not working main.js #1740)
ef97171 Fix bugs in `createLogger` type (Cloud Code Unable To Connect #1807)
0e1c812 Fix typing for Profile.start (was Date, should be Number) (Not receiving notifications in Android 6 (Marshmallow) after shifting to own Parse server #1803)
9e7bd71 Merge branch 'master' of github.com:winstonjs/winston
67cd9b5 [Role.getUsers.query not showing user with private read permission #1813] Use fork of diagnostics, avoiding indirect storage-engine dependency
6545a7e remove emitErrs note from README (its no longer supported) (Write old ACL format in _acl in addition to new format #1810)
b47d5d5 3.3.0
b6bc918 Prepare for v3.3.0
9354721 doc: fix whitespace and trailing comma. (Fix error when unset user email #1778)
3d07a80 docs: add example of uncaughtRejections logging (can proxy_caching in nginx cause problems with parse? #1780)
df25fa2 fix: change property of handleRejections (Field authData is (undefined) in self-hosted Parse dashboard #1779)
950cbcd Add options to request (enable VERBOSE crashes the parse-server #1777)
1c75292 Update package-lock.json (add test that adds ACL in beforeSave hook #1772)
e7d13d5 Exclude unnecessary files from npm package (Internal server error when unsetting email #1768)
75f7edf Fix removes a logger when pass undefined transport (Homepage Parse -> Push gives "500 error" #1785)
4b571ba This adds Node.js 14 and removes Node.js 8 as: (How to change/style the verification/user emails #1793)
73ae01f Update Sentry transport `require` change (Update dependencies and support node 6.1 #1754)
7b67eb0 Fix typo (MongoError:not authorized for query on xxx._SCHEMA #1750)
1679c49 Fix Issue where winston removes transport on error (Changelog and update to 2.2.5 #1364) (beforeSave renders Relation column on object invalid on response.success() #1714)
0e0cf14 Fix Parse server seems to return incorrect count if master key is provided #1690 (Found a pointer column not in the schema, dropping it. #1691)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade winston from 3.2.1 to 3.3.2. See this package in NPM: https://www.npmjs.com/package/winston See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr

codecov · 2020-08-20T23:06:37Z

Codecov Report

Merging #6799 into master will decrease coverage by 0.12%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master    #6799      +/-   ##
==========================================
- Coverage   93.81%   93.68%   -0.13%     
==========================================
  Files         168      168              
  Lines       12185    12185              
==========================================
- Hits        11431    11416      -15     
- Misses        754      769      +15

Impacted Files	Coverage Δ
src/Adapters/Storage/Mongo/MongoStorageAdapter.js	`91.37% <0.00%> (-2.22%)`	⬇️
src/batch.js	`89.79% <0.00%> (-2.05%)`	⬇️
src/ParseServerRESTController.js	`96.36% <0.00%> (-1.82%)`	⬇️
src/RestWrite.js	`93.64% <0.00%> (-0.17%)`	⬇️
src/Controllers/DatabaseController.js	`95.17% <0.00%> (-0.16%)`	⬇️
src/Adapters/Storage/Mongo/MongoTransform.js	`88.67% <0.00%> (-0.15%)`	⬇️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update d87dac1...affb540. Read the comment docs.

* fix beforeLogin * Remove Facebook AccountKit auth (#6870) * Remove Facebook AccountKit auth Account Kit services are no longer available. https://developers.facebook.com/blog/post/2019/09/09/account-kit-services-no-longer-available-starting-march/ https://www.sinch.com/blog/facebook-account-kit-is-closing-down-are-your-apps-covered/ * remove flaky test * fix: upgrade uuid from 8.2.0 to 8.3.0 (#6865) Snyk has created this PR to upgrade uuid from 8.2.0 to 8.3.0. See this package in npm: https://www.npmjs.com/package/uuid See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: package.json & package-lock.json to reduce vulnerabilities (#6864) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103 Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade ldapjs from 2.0.0 to 2.1.0 (#6857) Snyk has created this PR to upgrade ldapjs from 2.0.0 to 2.1.0. See this package in npm: https://www.npmjs.com/package/ldapjs See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade apollo-server-express from 2.15.1 to 2.16.0 (#6851) Snyk has created this PR to upgrade apollo-server-express from 2.15.1 to 2.16.0. See this package in npm: https://www.npmjs.com/package/apollo-server-express See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade @graphql-tools/stitch from 6.0.12 to 6.0.13 (#6845) Snyk has created this PR to upgrade @graphql-tools/stitch from 6.0.12 to 6.0.13. See this package in npm: https://www.npmjs.com/package/@graphql-tools/stitch See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade @graphql-tools/utils from 6.0.12 to 6.0.13 (#6846) Snyk has created this PR to upgrade @graphql-tools/utils from 6.0.12 to 6.0.13. See this package in npm: https://www.npmjs.com/package/@graphql-tools/utils See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * [Snyk] Upgrade winston from 3.2.1 to 3.3.2 (#6799) * fix: upgrade winston from 3.2.1 to 3.3.2 Snyk has created this PR to upgrade winston from 3.2.1 to 3.3.2. See this package in NPM: https://www.npmjs.com/package/winston See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr * fix tests Co-authored-by: Diamond Lewis <[email protected]> * fix beforeLogin * add test case Co-authored-by: Diamond Lewis <[email protected]> Co-authored-by: Snyk bot <[email protected]>

* Before Connect + Before Subscribe #1 * Cleanup and Documentation * Add E2E tests * Bump parse to 2.15.0 * Create afterLiveQueryEvent * Revert "Create afterLiveQueryEvent" This reverts commit 828c678. * afterLiveQueryEvent * Add delete event * Fix failing tests * Fix lint * Update ParseLiveQueryServer.js * Remove Facebook AccountKit auth (#6870) * Remove Facebook AccountKit auth Account Kit services are no longer available. https://developers.facebook.com/blog/post/2019/09/09/account-kit-services-no-longer-available-starting-march/ https://www.sinch.com/blog/facebook-account-kit-is-closing-down-are-your-apps-covered/ * remove flaky test * fix: upgrade uuid from 8.2.0 to 8.3.0 (#6865) Snyk has created this PR to upgrade uuid from 8.2.0 to 8.3.0. See this package in npm: https://www.npmjs.com/package/uuid See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: package.json & package-lock.json to reduce vulnerabilities (#6864) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103 Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade ldapjs from 2.0.0 to 2.1.0 (#6857) Snyk has created this PR to upgrade ldapjs from 2.0.0 to 2.1.0. See this package in npm: https://www.npmjs.com/package/ldapjs See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade apollo-server-express from 2.15.1 to 2.16.0 (#6851) Snyk has created this PR to upgrade apollo-server-express from 2.15.1 to 2.16.0. See this package in npm: https://www.npmjs.com/package/apollo-server-express See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade @graphql-tools/stitch from 6.0.12 to 6.0.13 (#6845) Snyk has created this PR to upgrade @graphql-tools/stitch from 6.0.12 to 6.0.13. See this package in npm: https://www.npmjs.com/package/@graphql-tools/stitch See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * fix: upgrade @graphql-tools/utils from 6.0.12 to 6.0.13 (#6846) Snyk has created this PR to upgrade @graphql-tools/utils from 6.0.12 to 6.0.13. See this package in npm: https://www.npmjs.com/package/@graphql-tools/utils See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr Co-authored-by: Diamond Lewis <[email protected]> * [Snyk] Upgrade winston from 3.2.1 to 3.3.2 (#6799) * fix: upgrade winston from 3.2.1 to 3.3.2 Snyk has created this PR to upgrade winston from 3.2.1 to 3.3.2. See this package in NPM: https://www.npmjs.com/package/winston See this project in Snyk: https://app.snyk.io/org/acinader/project/8c1a9edb-c8f5-4dc1-b221-4d6030a323eb?utm_source=github&utm_medium=upgrade-pr * fix tests Co-authored-by: Diamond Lewis <[email protected]> * afterLiveQueryEvent * Add delete event * Fix failing tests * Before Connect + Before Subscribe #1 * Cleanup and Documentation * Create afterLiveQueryEvent * Revert "Create afterLiveQueryEvent" This reverts commit 828c678. * Update ParseLiveQueryServer.js * Rebase * Remove return value / deduplicate tests * Add docs * Add additional data to trigger Co-authored-by: Diamond Lewis <[email protected]> Co-authored-by: Snyk bot <[email protected]>

snyk-bot and others added 2 commits July 14, 2020 03:24

Merge branch 'master' into snyk-upgrade-498029c621c8ae66548b35ae8005d19c

d7381e3

ghost added the Merge On Green label Jul 16, 2020

ghost approved these changes Jul 16, 2020

View reviewed changes

Merge branch 'master' into snyk-upgrade-498029c621c8ae66548b35ae8005d19c

4fb4003

ghost approved these changes Aug 20, 2020

View reviewed changes

fix tests

affb540

ghost approved these changes Aug 20, 2020

View reviewed changes

ghost merged commit bff0ea9 into master Aug 20, 2020

dplewis deleted the snyk-upgrade-498029c621c8ae66548b35ae8005d19c branch August 20, 2020 23:59

This pull request was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade winston from 3.2.1 to 3.3.2 #6799

[Snyk] Upgrade winston from 3.2.1 to 3.3.2 #6799

snyk-bot commented Jul 14, 2020

codecov bot commented Aug 20, 2020

[Snyk] Upgrade winston from 3.2.1 to 3.3.2 #6799

[Snyk] Upgrade winston from 3.2.1 to 3.3.2 #6799

Conversation

snyk-bot commented Jul 14, 2020

Snyk has created this PR to upgrade winston from 3.2.1 to 3.3.2.

codecov bot commented Aug 20, 2020

Codecov Report