[Snyk] Upgrade react-spinners from 0.9.0 to 0.13.8 #315

SarmadBytes · 2024-03-28T01:50:58Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade react-spinners from 0.9.0 to 0.13.8.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 47 versions ahead of your current version.
The recommended version was released a year ago, on 2023-01-19.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Directory Traversal SNYK-JS-MOMENT-2440688	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	375/1000 Why? CVSS 7.5	Proof of Concept
Directory Traversal SNYK-JS-MOMENT-2440688	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-NCONF-2395478	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-610226	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SSH2-1656673	375/1000 Why? CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-AJV-584908	375/1000 Why? CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-AJV-584908	375/1000 Why? CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	375/1000 Why? CVSS 7.5	No Known Exploit
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	375/1000 Why? CVSS 7.5	Proof of Concept
Server-side Request Forgery (SSRF) SNYK-JS-NETMASK-1089716	375/1000 Why? CVSS 7.5	Proof of Concept
Server-side Request Forgery (SSRF) SNYK-JS-NETMASK-6056519	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LOADERUTILS-3043105	375/1000 Why? CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-INI-1048974	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-Y18N-1021887	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-Y18N-1021887	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	375/1000 Why? CVSS 7.5	Proof of Concept
Arbitrary File Overwrite SNYK-JS-TAR-1536528	375/1000 Why? CVSS 7.5	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	375/1000 Why? CVSS 7.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	375/1000 Why? CVSS 7.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	375/1000 Why? CVSS 7.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579155	375/1000 Why? CVSS 7.5	No Known Exploit
Command Injection SNYK-JS-LODASH-1040724	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434283	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-LODASHES-2434284	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434285	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASHSET-1320032	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-NPMUSERVALIDATE-1019352	375/1000 Why? CVSS 7.5	No Known Exploit
Remote Code Execution (RCE) SNYK-JS-PACRESOLVER-1564857	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PARSELINKHEADER-1582783	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Poisoning SNYK-JS-QS-3153490	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1072471	375/1000 Why? CVSS 7.5	Proof of Concept
Arbitrary Code Injection SNYK-JS-UNDERSCORE-1080984	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYK-3037342	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYK-3038622	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-JSON5-3182856	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-DOTPROP-543489	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	375/1000 Why? CVSS 7.5	Proof of Concept
Code Injection SNYK-JS-SNYK-3111871	375/1000 Why? CVSS 7.5	No Known Exploit
Command Injection SNYK-JS-SNYKDOCKERPLUGIN-3039679	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKGOPLUGIN-3037316	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKGRADLEPLUGIN-3038624	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKMVNPLUGIN-3038623	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKPYTHONPLUGIN-3039677	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKSBTPLUGIN-3038626	375/1000 Why? CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-SNYKSNYKCOCOAPODSPLUGIN-3038625	375/1000 Why? CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-JSZIP-1251497	375/1000 Why? CVSS 7.5	Proof of Concept
Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-JSZIP-3188562	375/1000 Why? CVSS 7.5	No Known Exploit
Denial of Service (DoS) SNYK-JS-JSZIP-1251497	375/1000 Why? CVSS 7.5	Proof of Concept
Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-JSZIP-3188562	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-XML2JS-5414874	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434289	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	375/1000 Why? CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: react-spinners

0.13.8 - 2023-01-19
What's Changed
- Bump decode-uri-component from 0.2.0 to 0.2.2 by @ dependabot in #555
- chore: update devDependencies to latest versions by @ davidhu2000 in #556
- Bump json5 from 1.0.1 to 1.0.2 by @ dependabot in #559
- Remove Animation Fill Mode by @ Lucien950 in #558
- docs: fix radius prop type in storybook to be number instead of object by @ davidhu2000 in #561
New Contributors
- @ Lucien950 made their first contribution in #558
Full Changelog: v0.13.7...v0.13.8
0.13.7 - 2022-12-03
What's Changed

fix: PacmanLoader container height/width to adjust with size prop
0.13.6 - 2022-10-08
0.13.6
0.13.5 - 2022-10-04
0.13.5
0.13.4 - 2022-07-30
0.13.3 - 2022-07-01
0.13.3
0.13.2 - 2022-06-28
0.13.2
0.13.1 - 2022-06-25
0.13.1
0.13.0 - 2022-06-25
Major Changes

Feature: Removed @ emotion/react as a dependency and rewrote all components as functional components. This library now has ZERO dependencies.

This resulted in a huge component size reduction. As compared between 0.12.0 and 0.13.0

0.13.0

0.12.0

Feature: Add support for custom props such as aria-label
Feature: Updated RiseLoader rise amount to be the same as size prop instead of hard coded 30px

Breaking Change: css prop is renamed to cssOverride to avoid conflicts with css-in-js libraries

Storybook is introduced to better demo the components. The demo site is simplified to only allow color changes.

Minor Changes
- replaced enzyme with react testing library
- bugfix: add display: inherit to the default styles to fix the rendering issue
- bugfix: GridLoader's rendering issue
0.13.0-beta.7 - 2022-06-25
0.13.0-beta.6 - 2022-06-25
0.13.0-beta.5 - 2022-06-07
0.13.0-beta.4 - 2022-06-05
0.13.0-beta.3 - 2022-05-26
0.13.0-beta.2 - 2022-05-26
0.13.0-beta.1 - 2022-05-26
0.13.0-alpha.5 - 2022-05-22
0.13.0-alpha.4 - 2022-05-22
0.13.0-alpha.3 - 2022-05-16
0.13.0-alpha.1 - 2022-05-16
0.12.0 - 2022-05-16
Major Changes
- Feature: output commonjs, es module, and umd file types.
- Feature: add support for react 18 #464
Minor Changes
- bugfix: Update pragma to /** @ jsxImportSource @ emotion/react */ to fix issue with the new jsx runtime.
0.12.0-beta.1 - 2022-05-16
0.12.0-alpha.3 - 2022-05-03
0.12.0-alpha.2 - 2021-10-06
0.12.0-alpha.1 - 2021-09-25
0.11.0 - 2021-05-21
0.11.0-beta.1 - 2021-05-02
0.11.0-alpha.8 - 2021-03-21
0.11.0-alpha.7 - 2021-03-21
0.11.0-alpha.6 - 2021-02-22
0.11.0-alpha.5 - 2021-02-21
0.11.0-alpha.4 - 2021-02-21
0.11.0-alpha.3 - 2021-02-21
0.11.0-alpha.2 - 2020-12-31
0.11.0-alpha.1 - 2020-12-30
0.10.6 - 2021-02-13
0.10.4 - 2021-01-02
0.10.3 - 2021-01-02
0.10.2 - 2021-01-02
0.10.1 - 2020-12-30
0.10.0 - 2020-12-30
0.10.0-beta.3 - 2020-12-30
0.10.0-beta.2 - 2020-12-30
0.10.0-beta.1 - 2020-12-30
0.10.0-alpha.3 - 2020-12-27
0.10.0-alpha.2 - 2020-10-06
0.10.0-alpha.1 - 2020-10-06
0.9.0 - 2020-06-20