-
Notifications
You must be signed in to change notification settings - Fork 60
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Security upgrade @hashgraph/hethers from 1.1.3 to 1.1.4 #1520
Conversation
Codecov ReportPatch and project coverage have no change.
Additional details and impacted files@@ Coverage Diff @@
## main #1520 +/- ##
=======================================
Coverage 78.24% 78.24%
=======================================
Files 32 32
Lines 2625 2625
Branches 544 544
=======================================
Hits 2054 2054
Misses 405 405
Partials 166 166 ☔ View full report in Codecov by Sentry. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LG.
…-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PROTOBUFJS-5756498 Signed-off-by: ebadiere <[email protected]>
52e8103
to
6fcb2a4
Compare
Signed-off-by: ebadiere <[email protected]>
d43ca5b
to
fc3babc
Compare
Signed-off-by: ebadiere <[email protected]>
Signed-off-by: ebadiere <[email protected]>
Signed-off-by: ebadiere <[email protected]>
Signed-off-by: ebadiere <[email protected]>
Kudos, SonarCloud Quality Gate passed! 0 Bugs No Coverage information |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LG.
…raph#1520) * fix: tools/web3js-example/package.json & tools/web3js-example/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PROTOBUFJS-5756498 Signed-off-by: ebadiere <[email protected]> * Fixed snyk errors. Signed-off-by: ebadiere <[email protected]> * Ignore as hethers will be removed. Signed-off-by: ebadiere <[email protected]> --------- Signed-off-by: ebadiere <[email protected]> Co-authored-by: snyk-bot <[email protected]> Co-authored-by: ebadiere <[email protected]> Signed-off-by: Mo Shaikjee <[email protected]>
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.6
SNYK-JS-PROTOBUFJS-5756498
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @hashgraph/hethers
The new version differs by 5 commits.See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Prototype Pollution