Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade: bs58check, dotenv, lru-cache, markdown-it, zeromq #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade: bs58check, dotenv, lru-cache, markdown-it, zeromq #5

wants to merge 1 commit into from

Conversation

naiba4
Copy link
Owner

@naiba4 naiba4 commented Sep 14, 2024

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

Name Versions Released on

bs58check
from 3.0.1 to 4.0.0 | 1 version ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 3 months ago
on 2024-06-25
dotenv
from 13.0.1 to 16.4.5 | 31 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 7 months ago
on 2024-02-20
lru-cache
from 9.1.2 to 11.0.0 | 15 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 2 months ago
on 2024-07-08
markdown-it
from 13.0.2 to 14.1.0 | 2 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 6 months ago
on 2024-03-18
zeromq
from 5.3.1 to 6.0.4 | 25 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 22 days ago
on 2024-08-24

Release notes
Package name: bs58check from bs58check GitHub release notes
Package name: dotenv
  • 16.4.5 - 2024-02-20

    16.4.5

  • 16.4.4 - 2024-02-13

    16.4.4

  • 16.4.3 - 2024-02-12

    16.4.3

  • 16.4.2 - 2024-02-10

    16.4.2

  • 16.4.1 - 2024-01-24

    16.4.1

  • 16.4.0 - 2024-01-23

    16.4.0

  • 16.3.2 - 2024-01-19

    16.3.2

  • 16.3.1 - 2023-06-17

    16.3.1

  • 16.3.0 - 2023-06-16

    16.3.0

  • 16.2.0 - 2023-06-16

    16.2.0

  • 16.1.4 - 2023-06-04
  • 16.1.3 - 2023-05-31
  • 16.1.2 - 2023-05-31
  • 16.1.1 - 2023-05-31
  • 16.1.0 - 2023-05-30
  • 16.1.0-rc2 - 2023-05-21
  • 16.1.0-rc1 - 2023-04-07
  • 16.0.3 - 2022-09-29
  • 16.0.2 - 2022-08-30
  • 16.0.1 - 2022-05-10
  • 16.0.0 - 2022-02-02
  • 15.0.1 - 2022-02-02
  • 15.0.0 - 2022-01-31
  • 14.3.2 - 2022-01-25
  • 14.3.1 - 2022-01-25
  • 14.3.0 - 2022-01-24
  • 14.2.0 - 2022-01-17
  • 14.1.1 - 2022-01-17
  • 14.1.0 - 2022-01-17
  • 14.0.1 - 2022-01-17
  • 14.0.0 - 2022-01-17
  • 13.0.1 - 2022-01-16
from dotenv GitHub release notes
Package name: lru-cache from lru-cache GitHub release notes
Package name: markdown-it from markdown-it GitHub release notes
Package name: zeromq
  • 6.0.4 - 2024-08-24

    • fix: add missing prebuilds
      The last release didn't include the prebuilds. This version contains the prebuilds for darwin-arm64, darwin-x64, linux-x64, win32-ia32, and win32-x64

    • fix: add node-gyp to dependencies
      This makes sure an up-to-date Node-gyp is used if the build fallback to building from the source in case the prebuild is not available for your platform.

    Full Changelog: v6.0.3...v6.0.4

  • 6.0.3 - 2024-08-23

    What's Changed

    • fix: make postinstall script production specific + check in build script dists by @ aminya in #652
      This ensures that build scripts are not rebuilt during installation. The installation should directly load the prebuilds and fallback to the building from the source in case of a platform that lacks binaries.
    • fix: fix the typesVersion field for TypeScript by @ aminya in #652

    Full Changelog: v6.0.2...v6.0.3

  • 6.0.2 - 2024-08-23
    • fix: add cross-env to dependencies instead of dev-dependencies
      Full Changelog: v6.0.1...v6.0.2
  • 6.0.1 - 2024-08-22

    What's Changed

    • fix: specify build_from_source using env vars by @ aminya in #648
      Fixes the issue where the build failed or hangs on newer npm/yarn package managers

    Full Changelog: v6.0.0...v6.0.1

  • 6.0.0 - 2024-08-13

    What's Changed

    Complete rewrite of ZeroMQ.js with a modern and safe API.
    http://zeromq.github.io/zeromq.js/

    Reaching this point has been a significant achievement, with many people contributing over the years. We are excited to announce the stable v6 version of zeromq.js.

    This release includes all the changes from 6.0.0-beta.1 to 6.0.0-beta-20. Here's a complete list of the changes:

    Full Changelog: v5.1.0...v6.0.0

  • 6.0.0-beta.20 - 2024-06-14

    What's Changed

    New Contributors

    Full Changelog: v6.0.0-beta.19...v6.0.0-beta.20

  • 6.0.0-beta.19 - 2023-11-21

    What's Changed

    • fix: rename the bin files to avoid conflicts with node-gyp-build by @ aminya in #589
    • fix: update node-addon-api, node-gyp, and node by @ pshenmic in #588

    Full Changelog: v6.0.0-beta.18...v6.0.0-beta.19

  • 6.0.0-beta.18 - 2023-11-15

    What's Changed

    Full Changelog: v6.0.0-beta.17...v6.0.0-beta.18

  • 6.0.0-beta.17 -

@snyk-bot
feat: upgrade multiple dependencies with Snyk
a531f8b 
Snyk has created this PR to upgrade:
  - bs58check from 3.0.1 to 4.0.0.
    See this package in npm: https://www.npmjs.com/package/bs58check
  - dotenv from 13.0.1 to 16.4.5.
    See this package in npm: https://www.npmjs.com/package/dotenv
  - lru-cache from 9.1.2 to 11.0.0.
    See this package in npm: https://www.npmjs.com/package/lru-cache
  - markdown-it from 13.0.2 to 14.1.0.
    See this package in npm: https://www.npmjs.com/package/markdown-it
  - zeromq from 5.3.1 to 6.0.4.
    See this package in npm: https://www.npmjs.com/package/zeromq

See this project in Snyk:
https://app.snyk.io/org/naiba4/project/1889c69f-761a-4535-a28c-2745d412a30c?utm_source=github&utm_medium=referral&page=upgrade-pr
@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Sep 14, 2024

⚠️ No Changeset found

Latest commit: a531f8b

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Sep 14, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@naiba4 @snyk-bot