Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade inquirer from 7.1.0 to 7.3.3 #6

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade inquirer from 7.1.0 to 7.3.3.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 5 versions ahead of your current version.
  • The recommended version was released 3 months ago, on 2020-07-23.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Prototype Pollution
SNYK-JS-LODASH-608086
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept
Prototype Pollution
SNYK-JS-LODASH-590103
472/1000
Why? Proof of Concept exploit, CVSS 7.3
No Known Exploit
Prototype Pollution
SNYK-JS-LODASH-567746
472/1000
Why? Proof of Concept exploit, CVSS 7.3
Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: inquirer
  • 7.3.3 - 2020-07-23
    • Fix to release the readline on errors
    • Security patch (lodash)
  • 7.3.2 - 2020-07-13

    Fix the loop: false option in the checkbox prompt.

  • 7.3.1 - 2020-07-10
  • 7.3.0 - 2020-07-02
  • 7.2.0 - 2020-06-15
  • 7.1.0 - 2020-03-10
from inquirer GitHub release notes
Commit messages
Package name: inquirer
  • 808d553 Publish
  • 833a4cd Fix: cleanup when the prompt fails. (#947)
  • 96db664 Update index.js (#948)
  • 41a506b chore(deps): bump lodash to 4.17.19 (#946)
  • 5dd9fa6 Publish
  • ffe393b feat: add loop: false for checkbox type prompts (#945)
  • dce97d8 Publish
  • cbdf405 Update yarn.lock
  • 132682e fix: paginator works with loop:false (#939)
  • e7b8306 [Snyk] Security upgrade lodash from 4.17.15 to 4.17.16 (#943)
  • 1200d0c [Snyk] Security upgrade lodash from 4.17.12 to 4.17.16 (#942)
  • 434228a Publish
  • 854cc85 Upgrade rxjs
  • cf58551 Upgrade dependencies (prettier and dev deps mainly)
  • 9ed1319 Update dependencies
  • c82c145 feat: add loop: false for list type prompts (#925)
  • d75d68c Add `description` option to choices (#905)
  • 6642790 add documentation for changes made to add answers hash to filter in #533 (#936)
  • da4b31b fix multiline in list and checkbox (#928)
  • ab90a8a Update eslint-config-xo to the latest version 🚀 (#926)
  • 7a699cc Publish
  • 039a55c Only mport used lodash methods (#923)
  • 1bf6413 Require Node.js 8
  • 92bad2f Fix CI (#919)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant