Skip to content

[Snyk] Security upgrade autocannon from 7.4.0 to 8.0.0 #138

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade autocannon from 7.4.0 to 8.0.0 #138

wants to merge 1 commit into from

Conversation

RonShvarz
Copy link
Contributor

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
low severity 506/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 3.7		 Prototype Pollution
SNYK-JS-MINIMIST-2429795		 Yes Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: autocannon The new version differs by 92 commits.
  • 2854067 Merge branch 'master' of github.com:mcollina/autocannon
  • 3167fab assume onPort if -- node is set (#530)
  • 5ef4545 Fix windows tests (#531)
  • b929456 refactor: replace `subarg` with `@ minimistjs/subarg` (#524)
  • feeec71 Add missing angle bracket (#523)
  • bee21f8 Allow for ID replacement in the URL (#521)
  • 41e3a18 Update README.md (#516)
  • cb1fe35 fix(printResult): tables included colors even when outputStream did not support it (#513)
  • 23a843d fix(requestIterator): generated IDs were not URL-safe (#515)
  • f1af1c3 fix: table would still be rendered in JSON mode when writing to file (#514)
  • 87ac52e Merge branch 'master' of github.com:mcollina/autocannon
  • ac8169c doc: fix API autocannon.print (#508)
  • a843717 7.15.0
  • 75cbb4d allow only one host header (#507)
  • 2fc4c8f Add just icon logos (#504)
  • 5fa23ba doc: adjust alignement (#501)
  • f7c606c Bumped v7.14.0
  • cd74688 lib: add verbose option (#500)
  • d7c98b0 docs(readme): Add missing result param (#499)
  • 61ffae1 Bumepd v7.13.0
  • c8108c9 Add Node 20 to the test matrix (#491)
  • 5538496 improve string output for Req/Sec (#498)
  • ec3c755 Bumped v7.12.0
  • b55848a Resolve issue #493 (#494)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@RonShvarz @snyk-bot