-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Upgrade gatsby from 5.0.0 to 5.13.7 #944
base: master
Are you sure you want to change the base?
Conversation
Snyk has created this PR to upgrade gatsby from 5.0.0 to 5.13.7. See this package in npm: gatsby See this project in Snyk: https://app.snyk.io/org/sammyfilly/project/4d0e3b9c-be4d-47f2-840c-b487311dd2e0?utm_source=github&utm_medium=referral&page=upgrade-pr
Run & review this pull request in StackBlitz Codeflow. |
|
Reviewer's Guide by SourceryThis PR upgrades the Gatsby dependency from version 5.0.0 to 5.13.7 to address multiple security vulnerabilities. The upgrade spans 130 versions and includes fixes for 16 security issues of varying severity (critical, high, and medium). No diagrams generated as the changes look simple and do not need a visual representation. File-Level Changes
Tips and commandsInteracting with Sourcery
Customizing Your ExperienceAccess your dashboard to:
Getting Help
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We have skipped reviewing this pull request. It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
Snyk has created this PR to upgrade gatsby from 5.0.0 to 5.13.7.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 130 versions ahead of your current version.
The recommended version was released on 4 months ago.
Issues fixed by the recommended upgrade:
SNYK-JS-ENGINEIO-3136336
SNYK-JS-WEBPACK-3358798
SNYK-JS-WS-7266574
SNYK-JS-LOADERUTILS-3043105
SNYK-JS-SOCKETIO-7278048
SNYK-JS-SOCKETIOPARSER-5596892
SNYK-JS-GATSBY-5671647
SNYK-JS-GATSBYCLI-5671903
SNYK-JS-GRAPHQL-5905181
SNYK-JS-JSON5-3182856
SNYK-JS-JSON5-3182856
SNYK-JS-BABELTRAVERSE-5962462
SNYK-JS-UAPARSERJS-3244450
SNYK-JS-WEBPACK-7840298
SNYK-JS-POSTCSS-5926692
SNYK-JS-SIDEWAYFORMULA-3317169
Release notes
Package name: gatsby
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
Summary by Sourcery
Upgrade Gatsby to version 5.13.7 to address several security vulnerabilities and improve dependency management.
Bug Fixes:
Build: