Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade: classnames, eslint, eslint-plugin-import, eslint-plugin-jsx-a11y, prop-types, eslint-plugin-react, redux, react-redux, react-router-dom #327

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

ManuelDevWeb
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name Versions Released on

classnames
from 2.3.1 to 2.5.1 | 5 versions ahead of your current version | 9 months ago
on 2023-12-29
eslint
from 7.26.0 to 7.32.0 | 6 versions ahead of your current version | 3 years ago
on 2021-07-30
eslint-plugin-import
from 2.22.1 to 2.29.1 | 24 versions ahead of your current version | 9 months ago
on 2023-12-14
eslint-plugin-jsx-a11y
from 6.4.1 to 6.9.0 | 8 versions ahead of your current version | 3 months ago
on 2024-06-20
prop-types
from 15.7.2 to 15.8.1 | 2 versions ahead of your current version | 3 years ago
on 2022-01-05
eslint-plugin-react
from 7.23.2 to 7.35.0 | 42 versions ahead of your current version | 2 months ago
on 2024-07-20
redux
from 4.1.0 to 4.2.1 | 5 versions ahead of your current version | 2 years ago
on 2023-01-28
react-redux
from 7.2.4 to 7.2.9 | 5 versions ahead of your current version | 2 years ago
on 2022-09-23
react-router-dom
from 5.2.0 to 5.3.4 | 6 versions ahead of your current version | 2 years ago
on 2022-10-02

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
medium severity Prototype Pollution
SNYK-JS-JSON5-3182856
641 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-PATHPARSE-1077067
641 Proof of Concept
low severity Prototype Pollution
SNYK-JS-MINIMIST-2429795
641 Proof of Concept
Release notes
Package name: classnames from classnames GitHub release notes
Package name: eslint
  • 7.32.0 - 2021-07-30
    • 3c78a7b Chore: Adopt eslint-plugin/prefer-message-ids rule internally (#14841) (Bryan Mishkin)
    • faecf56 Update: change reporting location for curly rule (refs #12334) (#14766) (Nitin Kumar)
    • d7dc07a Fix: ignore lines with empty elements (fixes #12756) (#14837) (Soufiane Boutahlil)
    • 1bfbefd New: Exit on fatal error (fixes #13711) (#14730) (Antonios Katopodis)
    • ed007c8 Chore: Simplify internal no-invalid-meta rule (#14842) (Bryan Mishkin)
    • d53d906 Docs: Prepare data for website to indicate rules with suggestions (#14830) (Bryan Mishkin)
    • d28f2ff Docs: Reference eslint-config-eslint to avoid potential for staleness (#14805) (Brett Zamir)
    • 8be8a36 Chore: Adopt eslint-plugin/require-meta-docs-url rule internally (#14823) (Bryan Mishkin)
    • f9c164f Docs: New syntax issue template (#14826) (Nicholas C. Zakas)
    • eba0c45 Chore: assertions on reporting loc in unicode-bom (refs #12334) (#14809) (Nitin Kumar)
    • ed945bd Docs: fix multiple broken links (#14833) (Sam Chen)
    • 60df44c Chore: use actions/setup-node@v2 (#14816) (Nitin Kumar)
    • 6641d88 Docs: Update README team and sponsors (ESLint Jenkins)
  • 7.31.0 - 2021-07-17
  • 7.30.0 - 2021-07-02
    • 5f74642 Chore: don't check Program.start in SourceCode#getComments (refs #14744) (#14748) (Milos Djermanovic)
    • 19a871a Docs: Suggest linting plugins for ESLint plugin developers (#14754) (Bryan Mishkin)
    • aa87329 Docs: fix broken links (#14756) (Sam Chen)
    • 278813a Docs: fix and add more examples for new-cap rule (fixes #12874) (#14725) (Nitin Kumar)
    • ed1da5d Update: ecmaVersion allows "latest" (#14720) (薛定谔的猫)
    • 104c0b5 Update: improve use-isnan rule to detect Number.NaN (fixes #14715) (#14718) (Nitin Kumar)
    • b08170b Update: Implement FlatConfigArray (refs #13481) (#14321) (Nicholas C. Zakas)
    • f113cdd Chore: upgrade eslint-plugin-eslint-plugin (#14738) (薛定谔的猫)
    • 1b8997a Docs: Fix getRulesMetaForResults link syntax (#14723) (Brandon Mills)
    • aada733 Docs: fix two broken links (#14726) (Sam Chen)
    • 8972529 Docs: Update README team and sponsors (ESLint Jenkins)
  • 7.29.0 - 2021-06-18
    • bfbfe5c New: Add only to RuleTester (refs eslint/rfcs#73) (#14677) (Brandon Mills)
    • c2cd7b4 New: Add ESLint#getRulesMetaForResults() (refs #13654) (#14716) (Nicholas C. Zakas)
    • eea7e0d Chore: remove duplicate code (#14719) (Nitin Kumar)
    • 6a1c7a0 Fix: allow fallthrough comment inside block (fixes #14701) (#14702) (Kevin Gibbons)
    • a47e5e3 Docs: Add Mega-Linter to the list of integrations (#14707) (Nicolas Vuillamy)
    • 353ddf9 Chore: enable reportUnusedDisableDirectives in eslint-config-eslint (#14699) (薛定谔的猫)
    • 757c495 Chore: add some rules to eslint-config-eslint (#14692) (薛定谔的猫)
    • c93a222 Docs: fix a broken link (#14697) (Sam Chen)
    • 655c118 Sponsors: Sync README with website (ESLint Jenkins)
    • e2bed2e Sponsors: Sync README with website (ESLint Jenkins)
    • 8490fb4 Sponsors: Sync README with website (ESLint Jenkins)
    • ddbe877 Sponsors: Sync README with website (ESLint Jenkins)
  • 7.28.0 - 2021-06-04
    • 1237705 Upgrade: @ eslint/eslintrc to 0.4.2 (#14672) (Milos Djermanovic)
    • 123fb86 Docs: Add Feedback Needed triage description (#14670) (Nicholas C. Zakas)
    • c545163 Update: support multiline /eslint-env/ directives (fixes #14652) (#14660) (薛定谔的猫)
    • 8d1e75a Upgrade: glob-parent version in package.json (#14658) (Hamza Najeeb)
    • 1f048cb Fix: no-implicit-coercion false positive with String() (fixes #14623) (#14641) (Milos Djermanovic)
    • d709abf Chore: fix comment location in no-unused-vars (#14648) (Milos Djermanovic)
    • e44ce0a Fix: no-duplicate-imports allow unmergeable (fixes #12758, fixes #12760) (#14238) (Soufiane Boutahlil)
    • bb66a3d New: add getPhysicalFilename() method to rule context (fixes #11989) (#14616) (Nitin Kumar)
    • 2e43dac Docs: fix no-sequences example (#14643) (Nitin Kumar)
    • 958ff4e Docs: add note for arrow functions in no-seq rule (#14578) (Nitin Kumar)
    • e4f111b Fix: arrow-body-style crash with object pattern (fixes #14633) (#14635) (Milos Djermanovic)
    • ec28b5a Chore: upgrade eslint-plugin-eslint-plugin (#14590) (薛定谔的猫)
    • 85a2725 Docs: Update README team and sponsors (ESLint Jenkins)
  • 7.27.0 - 2021-05-22
    • 2c0868c Chore: merge all html formatter files into html.js (#14612) (Milos Djermanovic)
    • 9e9b5e0 Update: no-unused-vars false negative with comma operator (fixes #14325) (#14354) (Nitin Kumar)
    • afe9569 Chore: use includes instead of indexOf (#14607) (Mikhail Bodrov)
    • c0f418e Chore: Remove lodash (#14287) (Stephen Wade)
    • 52655dd Update: no-restricted-imports custom message for patterns (fixes #11843) (#14580) (Alex Holden)
    • 967b1c4 Chore: Fix typo in large.js (#14589) (Ikko Ashimine)
    • 2466a05 Sponsors: Sync README with website (ESLint Jenkins)
    • fe29f18 Sponsors: Sync README with website (ESLint Jenkins)
    • 086c1d6 Chore: add more test cases for no-sequences (#14579) (Nitin Kumar)
    • 6a2ced8 Docs: Update README team and sponsors (ESLint Jenkins)
  • 7.26.0 - 2021-05-08
    • aaf65e6 Upgrade: eslintrc for ModuleResolver fix (#14577) (Brandon Mills)
    • ae6dbd1 Fix: track variables, not names in require-atomic-updates (fixes #14208) (#14282) (Patrick Ahmetovic)
    • 6a86e50 Chore: remove loose-parser tests (fixes #14315) (#14569) (Milos Djermanovic)
    • ee3a3ea Fix: create .eslintrc.cjs for module type (#14304) (Nitin Kumar)
    • 6791dec Docs: fix example for require-atomic-updates (#14562) (Milos Djermanovic)
    • 388eb7e Sponsors: Sync README with website (ESLint Jenkins)
    • f071d1e Update: Add automated suggestion to radix rule for parsing decimals (#14291) (Bryan Mishkin)
    • 0b6a3f3 New: Include XO style guide in eslint --init (#14193) (Federico Brigante)
from eslint GitHub release notes
Package name: eslint-plugin-import
  • 2.29.1 - 2023-12-14

    Full Changelog: v2.29.0...v2.29.1

  • 2.29.0 - 2023-10-23

    Full Changelog: v2.28.1...v2.29.0

  • 2.28.1 - 2023-08-18

    Full Changelog: v2.28.0...v2.28.1

  • 2.28.0 - 2023-07-28
  • 2.27.5 - 2023-01-16
  • 2.27.4 - 2023-01-12
  • 2.27.3 - 2023-01-12
  • 2.27.2 - 2023-01-12
  • 2.27.1 - 2023-01-12
  • 2.27.0 - 2023-01-11
  • 2.26.0 - 2022-04-05
  • 2.25.4 - 2022-01-02
  • 2.25.3 - 2021-11-10
  • 2.25.2 - 2021-10-12
  • 2.25.1 - 2021-10-12
  • 2.25.0 - 2021-10-12
  • 2.24.2 - 2021-08-24
  • 2.24.1 - 2021-08-19
  • 2.24.0 - 2021-08-08
  • 2.23.4 - 2021-05-29
  • 2.23.3 - 2021-05-21
  • 2.23.2 - 2021-05-15
  • 2.23.1 - 2021-05-15
  • 2.23.0 - 2021-05-14
  • 2.22.1 - 2020-09-27
from eslint-plugin-import GitHub release notes
Package name: eslint-plugin-jsx-a11y

Snyk has created this PR to upgrade:
  - classnames from 2.3.1 to 2.5.1.
    See this package in npm: https://www.npmjs.com/package/classnames
  - eslint from 7.26.0 to 7.32.0.
    See this package in npm: https://www.npmjs.com/package/eslint
  - eslint-plugin-import from 2.22.1 to 2.29.1.
    See this package in npm: https://www.npmjs.com/package/eslint-plugin-import
  - eslint-plugin-jsx-a11y from 6.4.1 to 6.9.0.
    See this package in npm: https://www.npmjs.com/package/eslint-plugin-jsx-a11y
  - prop-types from 15.7.2 to 15.8.1.
    See this package in npm: https://www.npmjs.com/package/prop-types
  - eslint-plugin-react from 7.23.2 to 7.35.0.
    See this package in npm: https://www.npmjs.com/package/eslint-plugin-react
  - redux from 4.1.0 to 4.2.1.
    See this package in npm: https://www.npmjs.com/package/redux
  - react-redux from 7.2.4 to 7.2.9.
    See this package in npm: https://www.npmjs.com/package/react-redux
  - react-router-dom from 5.2.0 to 5.3.4.
    See this package in npm: https://www.npmjs.com/package/react-router-dom

See this project in Snyk:
https://app.snyk.io/org/manuelowsky/project/7c5a6221-d627-47ff-992a-3a71d7132778?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment