[Snyk] Upgrade @amplitude/experiment-node-server from 1.0.2 to 1.5.0

[NOUIY]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @amplitude/experiment-node-server from 1.0.2 to 1.5.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 23 versions ahead of your current version.
• The recommended version was released a month ago, on 2023-07-10.

Release notes

Package name: @amplitude/experiment-node-server

• 1.5.0 - 2023-07-10
  

  1.5.0 (2023-07-10)

  Features

  • support groups and group properties on skylab user (#20) (7624e1d)
• 1.4.0 - 2023-03-14
  

  1.4.0 (2023-03-14)

  Bug Fixes

  • flag dependencies; tests (#14) (8ae0118)

  Features

  • flag dependencies (#13) (9f8081e)
• 1.3.0 - 2023-02-13
  

  1.3.0 (2023-02-13)

  Bug Fixes

  • use get instead of post (#12) (62074c0)

  Features

  • use socket timeout as default timeout (#11) (3b86c3d)
• 1.3.0-beta.1 - 2023-02-10
• 1.2.1 - 2022-10-05
  

  1.2.1 (2022-10-05)

  Bug Fixes

  • catch and log error from flag config poller request (#10) (6e6b051)
• 1.2.0 - 2022-09-09
  

  1.2.0 (2022-09-09)

  Features

  • add local evaluation library header (#8) (098b1b8)
• 1.1.1 - 2022-09-01
  

  1.1.1 (2022-09-01)

  Bug Fixes

  • move performance to test utils (#7) (2608b6b)
• 1.1.0 - 2022-08-01
  

  1.1.0 (2022-08-01)

  Bug Fixes

  • update evaluation dep (d9efda4)

  Features

  • evaluation-js v1.0.0 (b86f94e)
  • local evaluation (#6) (6be8686)
• 1.1.0-beta3 - 2022-07-30
• 1.1.0-beta2 - 2022-07-21
• 1.1.0-beta1 - 2022-07-21
• 1.1.0-alpha.10 - 2022-05-10
• 1.1.0-alpha.9 - 2022-05-02
• 1.1.0-alpha.8 - 2022-04-20
• 1.1.0-alpha.7 - 2022-04-19
• 1.1.0-alpha.6 - 2021-12-08
• 1.1.0-alpha.5 - 2021-10-05
• 1.1.0-alpha.4 - 2021-10-05
• 1.1.0-alpha.3 - 2021-09-18
• 1.1.0-alpha.2 - 2021-09-18
• 1.1.0-alpha.1 - 2021-09-17
• 1.1.0-alpha.0 - 2021-09-17
• 1.0.3 - 2022-05-02
  

  1.0.3 (2022-05-02)

  Bug Fixes

  • fix test case (bb990df)
  • reuse connections (#5) (13d897c)
• 1.0.2 - 2021-10-21
  

  1.0.2 (2021-10-21)

  Bug Fixes

  • send library in fetch (4df8047)

from @amplitude/experiment-node-server GitHub release notes

Commit messages

Package name: @amplitude/experiment-node-server

• 17c64e1 chore(release): publish v1.5.0
• f999876 chore: update yarn lock ([Snyk] Upgrade: @babel/parser, @babel/traverse, @babel/types #21)
• fb02e08 chore: update release to use ubuntu latest
• 7624e1d feat: support groups and group properties on skylab user ([Snyk] Upgrade: @babel/parser, @babel/traverse, @babel/types #20)
• b56a8c6 chore: update demo and dev dependencies to fix vulns ([Snyk] Upgrade rxjs from 7.3.0 to 7.5.5 #16)
• 89655e2 chore(release): publish v1.4.0
• 8ae0118 fix: flag dependencies; tests ([Snyk] Upgrade axios from 0.21.1 to 0.26.1 #14)
• 9f8081e feat: flag dependencies ([Snyk] Upgrade: @babel/parser, @babel/traverse, @babel/types #13)
• 8ca0a27 chore(release): publish v1.3.0
• 3b86c3d feat: use socket timeout as default timeout (chore(deps): bump minimist from 1.2.5 to 1.2.6 #11)
• 62074c0 fix: use get instead of post (chore(deps): bump moment from 2.29.1 to 2.29.2 #12)
• 9e094b1 chore(release): publish v1.2.1
• 6e6b051 fix: catch and log error from flag config poller request ([Snyk] Upgrade @snyk/code-client from 4.5.0 to 4.5.2 #10)
• 0518c3a chore(release): publish v1.2.0
• 098b1b8 feat: add local evaluation library header ([Snyk] Upgrade marked from 3.0.2 to 3.0.8 #8)
• 3ac1c4f chore(release): publish v1.1.1
• 2608b6b fix: move performance to test utils ([Snyk] Upgrade axios from 0.21.1 to 0.25.0 #7)
• 78822a0 chore(release): publish v1.1.0
• b588823 chore: use node 16 in release action
• 4df429b chore: remove node 18
• de85a34 chore: update node versions in actions
• 61a9c7c chore: update docs
• 0f1841d chore: update typescript and typedoc
• b86f94e feat: evaluation-js v1.0.0

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[guardrails]

⚠️ We detected 7 security issues in this pull request:

Vulnerable Libraries (7)

Severity	Details
High	pkg:npm/[email protected] (t) upgrade to: > 7.23.0
Critical	pkg:npm/[email protected] (t) upgrade to: > 1.5.2
Critical	pkg:npm/[email protected] (t) upgrade to: > 2.22.1
Medium	pkg:npm/@typescript-eslint/[email protected] (t) upgrade to: > 4.20.0
High	pkg:npm/[email protected] (t) upgrade to: > 1.0.0-pre.50
Medium	pkg:npm/@typescript-eslint/[email protected] (t) upgrade to: > 4.20.0
High	pkg:npm/[email protected] (t) upgrade to: > 8.4.0

More info on how to fix Vulnerable Libraries in JavaScript.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.