[Snyk] Upgrade: , , , , , , , bonjour-service, chokidar, express, html-entities, ipaddr.js, launch-editor, schema-utils, selfsigned, webpack, webpack-dev-middleware, ws #121
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@types/bonjour
from 3.5.10 to 3.5.13 | 3 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/connect-history-api-fallback
from 1.5.0 to 1.5.4 | 4 versions ahead of your current version | 10 months ago
on 2023-11-20
@types/serve-static
from 1.15.2 to 1.15.7 | 5 versions ahead of your current version | 5 months ago
on 2024-04-03
@types/express
from 4.17.17 to 4.17.21 | 4 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/serve-index
from 1.9.1 to 1.9.4 | 3 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/sockjs
from 0.3.33 to 0.3.36 | 3 versions ahead of your current version | 10 months ago
on 2023-11-07
@types/ws
from 8.5.5 to 8.5.12 | 7 versions ahead of your current version | 2 months ago
on 2024-07-29
bonjour-service
from 1.1.1 to 1.2.1 | 2 versions ahead of your current version | 8 months ago
on 2024-01-08
chokidar
from 3.5.3 to 3.6.0 | 1 version ahead of your current version | 7 months ago
on 2024-02-06
express
from 4.18.2 to 4.19.2 | 4 versions ahead of your current version | 6 months ago
on 2024-03-25
html-entities
from 2.3.3 to 2.5.2 | 7 versions ahead of your current version | 6 months ago
on 2024-03-04
ipaddr.js
from 2.0.1 to 2.2.0 | 2 versions ahead of your current version | 5 months ago
on 2024-04-20
launch-editor
from 2.6.0 to 2.8.1 | 4 versions ahead of your current version | a month ago
on 2024-08-05
schema-utils
from 4.0.1 to 4.2.0 | 2 versions ahead of your current version | a year ago
on 2023-06-14
selfsigned
from 2.1.1 to 2.4.1 | 5 versions ahead of your current version | a year ago
on 2023-10-26
webpack
from 5.82.1 to 5.94.0 | 21 versions ahead of your current version | a month ago
on 2024-08-22
webpack-dev-middleware
from 5.3.3 to 5.3.4 | 1 version ahead of your current version | 6 months ago
on 2024-03-20
ws
from 8.13.0 to 8.18.0 | 9 versions ahead of your current version | 2 months ago
on 2024-07-03
Issues fixed by the recommended upgrade:
SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555
SNYK-JS-WS-7266574
SNYK-JS-SERIALIZEJAVASCRIPT-6147607
SNYK-JS-WEBPACK-7840298
SNYK-JS-EXPRESS-6474509
Release notes
Package name: @types/bonjour
Package name: @types/connect-history-api-fallback
Package name: @types/serve-static
Package name: @types/express
Package name: @types/serve-index
Package name: @types/sockjs
Package name: @types/ws
Package name: bonjour-service
Full Changelog: 1.2.0...1.2.1
What's Changed
Contributions
@ ghost1face #32
@ hrueger #33
@ gmaclennan #39 #40 #41 #42 #43
Full Changelog: 1.1.1...1.2.0
What's Changed
Full Changelog: 1.1.0...1.1.1
Package name: chokidar
What's Changed
New Contributors
Full Changelog: 3.5.3...3.6.0
What's Changed
add
andunwatch
TypeScript definitions by @ alan-agius4 in #1157New Contributors
Full Changelog: 3.5.2...3.5.3
Package name: express
What's Changed
Full Changelog: 4.19.0...4.19.1
What's Changed
New Contributors
Full Changelog: 4.18.3...4.19.0
Main Changes
Other Changes
New Contributors
Full Changelog: 4.18.2...4.18.3
Package name: html-entities
2.5.2
2.5.1
2.5.0
2.4.0
2.3.6
2.3.5
2.3.4
package.json
: specifysideEffects: false
Package name: ipaddr.js
Bump version to 2.2.0
Bump version to 2.1.0
Bump version in bower.json.
Package name: launch-editor
v2.8.1
v2.8.0
v2.7.0
v2.6.1
v2.6.0
Package name: schema-utils
4.1.0 (2023-06-07)
Features
undefinedAsNull
keyword forenum
type (#175) (1265eac)4.0.1 (2023-04-15)
Bug Fixes
Package name: selfsigned
2.4.1
2.4.0
2.3.0
2.2.0
2.1.2
2.1.1
Package name: webpack
Bug Fixes
data
/http
/https
protocols in source mapsbigint
optimistic when browserslist not foundNew Features
webpackIgnore
fornew URL()
construction@ import
pathinfo supportSecurity
Bug Fixes
DefinePlugin
quieter under default log levelNew Features
binary
generator option for asset modules to explicitly keep source maps produced by loadersmodern-module
library value for tree shakable outputoverrideStrict
option to override strict or non-strict mode for javascript modulesBug Fixes
Bug Fixes
subtractRuntime
function for runtime logiccss/global
type now handles the exports name@ keyframe
and@ property
at-rules incss/global
typestats.hasWarnings()
method now respects theignoreWarnings
optionArrayQueue
iterator__webpack_exports_info__.a.b.canMangle
CommonJsChunkFormatPlugin
pluginchunkLoading
option to theimport
when environment is unknown and output is modulemodule
chunkFormat usedcss
module type should not allow parser to switch modeNew Features
import attributes
spec (with
keyword)node:
prefix for Node.js core modules in runtime codeimportsFields
option for resolverInitFragment
class for pluginscompileBooleanMatcher
util for pluginsInputFileSystem
andOutputFileSystem
typesesModule
generator option for CSS modulesBug Fixes
unsafeCache
option to be a proxy objectsnapshot.unmanagedPaths
optionfs
typeslayer
/supports
/media
for external CSS importsNew Features
__webpack_nonce__
for CSS chunksfetchPriority
for CSS chunksproduction
mode by default)Bug Fixes
Stats.toJson()
andStats.toString()
Perf
Bug Fixes
Math.imul
infnv1a32
to avoid loss of precision, directly hash UTF16 valuessetStatus()
of the HMR module should not return an array, which may cause infinite recursion__webpack_exports_info__.xxx.canMangle
shouldn't always same as defaultactiveState
try/catch
Dependencies & Maintenance
Bug Fixes
unmanagedPaths
in defaultspreOrderIndex
andpostOrderIndex
Performance
compareStringsNumeric
numberHash
using 32-bit FNV1a for small ranges, 64-bit for largerBug Fixes
RemoveParentModulesPlugin
via bigint arithmeticServer
andDirent
fetchPriority
to hmr runtime'sensureChunk
functionoutput.environment.arrowFunction
option/*#__PURE__*/
to generatedJSON.parse()
amd
externals andamd
librarySideEffectsFlagPlugin
with namespace re-exportsor
strictModuleErrorHandling
is now workingNew Features
false
for dev server inwebpack.config.js
node-module
option for thenode.__filename/__dirname
and enable it by default for ESM targetsnapshot.unmanagedPaths
optionMultiCompilerOptions
typeexportsOnly
option to CSS generat...