Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

[Snyk] Security upgrade reveal-md from 0.0.20 to 0.3.0 #25

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
awaisab172 wants to merge 1 commit into
base: 2015
Choose a base branch
Loading
from
Open

[Snyk] Security upgrade reveal-md from 0.0.20 to 0.3.0 #25

awaisab172 wants to merge 1 commit into from

Conversation

@awaisab172
Copy link
Owner

@awaisab172 awaisab172 commented May 20, 2022

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
critical severity 776/1000
Why? Recently disclosed, Has a fix available, CVSS 9.8		 Arbitrary File Upload
SNYK-JS-FORMIDABLE-2838956		 No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: reveal-md The new version differs by 104 commits.
  • 0f284a7 Release 0.3.0
  • 0a53829 Update dependencies
  • 72f9c39 Fix specs
  • e5faebb Merge pull request #110 from tkaefer/remove-static-configs-from-host-and-port
  • 20aeac4 Remove configuration provided hostname and port from rendered resource paths as they will prevent reverse proxy usage and are superfluous.
  • 043e9e2 Release 0.2.0
  • cbc3edb Use strict
  • f510ea1 Inline pictures as base64 dataUri for static site
  • 73d1476 Refactor custom scripts/styles handling
  • d507df2 Fix/move local overrides logic
  • 039cb10 Update .release.json
  • 4cb190a Semis
  • 52665e7 Re-order docs
  • 47b2884 Simplify defaults
  • 7294253 Use `path.join`
  • 8574a47 Add support for custom css
  • d5103f1 Add support for reveal-md.json
  • 1da80fc Make lint and tests pass (on windows)
  • 45b0a04 Release 0.1.3
  • 50b3689 Wrap up scripts in static
  • d0f5c73 Merge pull request #99 from WJWang/master
  • bcf35f1 removed useless import
  • 12db5de change shelljs to fs-extra
  • 84e67f4 copy scripts file to static output scripts directory

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

@snyk-bot
fix: package.json to reduce vulnerabilities
4e64ca3 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-FORMIDABLE-2838956
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@awaisab172 @snyk-bot
Morty Proxy This is a proxified and sanitized view of the page, visit original site.