Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade dockerode from 3.2.1 to 3.3.5 #82

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

seansund
Copy link
Member

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade dockerode from 3.2.1 to 3.3.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 6 versions ahead of your current version.
  • The recommended version was released 8 months ago, on 2023-03-12.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Command Injection
SNYK-JS-SSH2-1656673
589/1000
Why? Has a fix available, CVSS 7.5
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: dockerode from dockerode GitHub release notes
Commit messages
Package name: dockerode
  • f2db936 v3.3.5
  • 7f49989 nove v19
  • bf85f91 mocha update
  • 1fdc899 test fixes
  • 6675347 Test udpates
  • ab3fa3a Merge pull request #704 from notpushkin/patch-1
  • 36b8c46 Merge pull request #718 from TugboatQA/717--use-args-callback
  • 74a57a8 Merge pull request #711 from apocas/dependabot/npm_and_yarn/flat-and-mocha-5.0.2
  • c57ab16 fix: call args.callback() in exec.inspect() #717
  • f5345dc Bump flat and mocha
  • d202543 Merge pull request #708 from CoderPad/fix-node-inspect-abort
  • e860e79 fix: node inspect is not using abort signal
  • 7777f39 Allow passing a Modem instance directly
  • d668803 Create FUNDING.yml
  • ad170f5 version bump
  • e5ddd6b Merge pull request #676 from jossemarGT/improve-dockerignore-support
  • 2312b40 Groom the Vagrantfile
  • b65a4dc Add .dockerignore support for blobs and dirs
  • c4b7740 readme
  • accbe91 Merge pull request #606 from lucamaraschi/master
  • e1df732 v3.3.3
  • 7531af3 actions typo
  • e5be1a1 github actions
  • 04700f2 experimental features tests

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants