Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency nexmo to v2 #22

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update dependency nexmo to v2 #22

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Mar 31, 2023
edited
Loading

This PR contains the following updates:

Package Type Update Change
nexmo dependencies major ^1.1.0 -> ^2.0.0

By merging this PR, the issue #10 will be automatically resolved and closed:

Severity CVSS Score CVE
High High 8.8 CVE-2018-3728
High High 7.5 CVE-2017-18214
High High 7.5 CVE-2022-24785
High High 7.1 WS-2018-0096
Medium Medium 4.3 CVE-2017-20162

Release Notes

nexmo/nexmo-node (nexmo)

v2.2.1

Compare Source

  • Update dependencies to fix security vulnerability (See #​179)

v2.2.0

Compare Source

  • Add support for media API

v2.1.1

Compare Source

Bug Fixes
  • #​125 - Prevent default headers being overwritten in HTTPClient (@​poying)
  • #​155 - Handle 204 status code as a success, not an error (@​AverageMarcus)
  • You can now change the port in HTTPClient (previously forced to use 443)
Documentation
New Features
  • #​139 - Search SMS messages
  • #​140 - Search SMS rejections
  • #​141 - Report conversion data to Nexmo (if enabled on your account)
  • #​169 - Trigger an auto-reload top-up
Other goodies
  • #​111 - We now officially support all LTS node.js versions + the latest current
  • Added Prettier as our formatting tool via eslint. Run npm run lint-fix to automatically fix any formatting issues
  • Added NYC for code coverage. There are currently no thresholds - we'll be adding these in the future
Q&A

Q. What happened to 2.1.0?
A. @​mheap can't computer correctly and published the wrong thing to NPM. As NPM (quite rightly) doesn't let you overwrite tags, we're having to skip to 2.1.1

v2.0.2

Compare Source

  • Remove SDK check for valid phone number, instead leaving this to the API
  • Remove SDK check for valid application type, instead leaving this to the API

v2.0.1

Compare Source

  • FIXED: #​116 - default setting of retry-after for 429 http status code responses

v2.0.0

Compare Source

  • FIXED: #​110 - check the statusCode on the response
  • FIXED: #​114 - handle 429 HTTP status codes
  • UPDATED: To allow errors to be programmatically useful the error callback objects has been updated to {statusCode: STATUS_CODE, body: JSON_BODY, headers: HEADERS}

v1.2.1

Compare Source

v1.2.0

Compare Source

  • ADDED: Add File API to library. nexmo.files.get and nexmo.files.save.

v1.1.2

Compare Source

  • Fixed: Bug #​104 - Fix JSON parsing error

v1.1.1

Compare Source

  • UPDATED: Changed User Agent format to match other libraries
  • FIXED: Bug #​88 - Undefined method when missing method declaration
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Mar 31, 2023
@mend-for-github-com mend-for-github-com bot changed the title Update dependency nexmo to v2 Update dependency nexmo to v2 - autoclosed Apr 23, 2023
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/nexmo-2.x branch April 23, 2023 11:26
@mend-for-github-com mend-for-github-com bot changed the title Update dependency nexmo to v2 - autoclosed Update dependency nexmo to v2 Apr 24, 2023
@mend-for-github-com mend-for-github-com bot reopened this Apr 24, 2023
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/nexmo-2.x branch April 24, 2023 11:14
@mend-for-github-com mend-for-github-com bot changed the title Update dependency nexmo to v2 Update dependency nexmo to v2 - autoclosed Jun 14, 2023
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/nexmo-2.x branch June 14, 2023 21:26
@mend-for-github-com mend-for-github-com bot changed the title Update dependency nexmo to v2 - autoclosed Update dependency nexmo to v2 Jun 18, 2023
@mend-for-github-com mend-for-github-com bot reopened this Jun 18, 2023
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/nexmo-2.x branch June 18, 2023 12:00
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/nexmo-2.x branch from 1d73056 to f5499da Compare June 18, 2023 12:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants