Skip to content

[Snyk] Upgrade: , , , , , , , , , , , , , browserslist, , browserslist-useragent-regexp, core-js, del, dotenv, firebase, jwt-decode, karma-jasmine-html-reporter, ngx-cookie-service, properties-to-json, rxjs, stream, xml2js, zone.js #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
snyk-io wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade: , , , , , , , , , , , , , browserslist, , browserslist-useragent-regexp, core-js, del, dotenv, firebase, jwt-decode, karma-jasmine-html-reporter, ngx-cookie-service, properties-to-json, rxjs, stream, xml2js, zone.js #5

snyk-io wants to merge 1 commit into from

Conversation

@snyk-io
Copy link

@snyk-io snyk-io bot commented Sep 23, 2024

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

Name Versions Released on

@angular/animations
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/common
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/compiler
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/core
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/forms
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/platform-browser
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/platform-browser-dynamic
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/router
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/service-worker
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/cdk
from 16.2.10 to 18.2.2 | 88 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@angular/material
from 16.2.10 to 18.2.2 | 88 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
@storybook/addon-a11y
from 7.5.2 to 8.2.9 | 123 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | a month ago
on 2024-08-13
@angular-devkit/core
from 16.2.8 to 18.2.2 | 99 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 24 days ago
on 2024-08-29
browserslist
from 4.22.1 to 4.23.3 | 6 versions ahead of your current version | 2 months ago
on 2024-08-01
@angular/localize
from 16.2.11 to 18.2.2 | 100 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-28
browserslist-useragent-regexp
from 3.0.2 to 4.1.3 | 7 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 5 months ago
on 2024-04-10
core-js
from 3.33.2 to 3.38.1 | 10 versions ahead of your current version | a month ago
on 2024-08-20
del
from 6.1.1 to 7.1.0 | 2 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
on 2023-08-30
dotenv
from 16.3.1 to 16.4.5 | 7 versions ahead of your current version | 7 months ago
on 2024-02-20
firebase
from 7.24.0 to 10.13.1 | 1912 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 25 days ago
on 2024-08-29
jwt-decode
from 3.1.2 to 4.0.0 | 6 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
on 2023-10-27
karma-jasmine-html-reporter
from 1.7.0 to 2.1.0 | 2 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
on 2023-06-05
ngx-cookie-service
from 16.1.0 to 18.0.0 | 15 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 4 months ago
on 2024-05-22
properties-to-json
from 0.1.7 to 0.2.1 | 2 versions ahead of your current version | 4 years ago
on 2021-02-27
rxjs
from 6.5.5 to 7.8.1 | 48 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
on 2023-04-26
stream
from 0.0.2 to 0.0.3 | 1 version ahead of your current version | 3 months ago
on 2024-06-26
xml2js
from 0.5.0 to 0.6.2 | 3 versions ahead of your current version | a year ago
on 2023-07-26
zone.js
from 0.13.3 to 0.15.0 | 11 versions ahead of your current version | a month ago
on 2024-08-21

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-USERAGENT-174737		 601 No Known Exploit
medium severity Prototype Pollution
SNYK-JS-FIREBASEUTIL-1038324		 601 Proof of Concept
medium severity Information Exposure
SNYK-JS-NODEFETCH-2342118		 601 No Known Exploit

Important

  • Warning: This PR contains a major version upgrade, and may be a breaking change.
  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-io
feat: upgrade multiple dependencies with Snyk
0ac05c2 
Snyk has created this PR to upgrade:
  - @angular/animations from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/common from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/compiler from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/core from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/forms from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/platform-browser from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/platform-browser-dynamic from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/router from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/service-worker from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - @angular/cdk from 16.2.10 to 18.2.2.
    See this package in yarn: 
  - @angular/material from 16.2.10 to 18.2.2.
    See this package in yarn: 
  - @storybook/addon-a11y from 7.5.2 to 8.2.9.
    See this package in yarn: 
  - @angular-devkit/core from 16.2.8 to 18.2.2.
    See this package in yarn: 
  - browserslist from 4.22.1 to 4.23.3.
    See this package in yarn: 
  - @angular/localize from 16.2.11 to 18.2.2.
    See this package in yarn: 
  - browserslist-useragent-regexp from 3.0.2 to 4.1.3.
    See this package in yarn: 
  - core-js from 3.33.2 to 3.38.1.
    See this package in yarn: 
  - del from 6.1.1 to 7.1.0.
    See this package in yarn: 
  - dotenv from 16.3.1 to 16.4.5.
    See this package in yarn: 
  - firebase from 7.24.0 to 10.13.1.
    See this package in yarn: 
  - jwt-decode from 3.1.2 to 4.0.0.
    See this package in yarn: 
  - karma-jasmine-html-reporter from 1.7.0 to 2.1.0.
    See this package in yarn: 
  - ngx-cookie-service from 16.1.0 to 18.0.0.
    See this package in yarn: 
  - properties-to-json from 0.1.7 to 0.2.1.
    See this package in yarn: 
  - rxjs from 6.5.5 to 7.8.1.
    See this package in yarn: 
  - stream from 0.0.2 to 0.0.3.
    See this package in yarn: 
  - xml2js from 0.5.0 to 0.6.2.
    See this package in yarn: 
  - zone.js from 0.13.3 to 0.15.0.
    See this package in yarn: 

See this project in Snyk:
https://app.snyk.io/org/sherfeyinv/project/c034ebbf-4507-4217-b8ff-bde5336388ac?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant