[Snyk] Upgrade: vue, vue-template-compiler #468
Conversation
Snyk has created this PR to upgrade:
- vue from 2.5.16 to 2.7.2.
See this package in npm:
- vue-template-compiler from 2.5.16 to 2.7.2.
See this package in npm:
See this project in Snyk:
https://app.snyk.io/org/kadirselcuk/project/c3fd0c3d-c152-43d1-98a6-ae9c069b461a?utm_source=github&utm_medium=referral&page=upgrade-pr
|
*Ruff* 🐶 I wasn't able to find any Docker Compose files in your repository at any of the given paths in the Files checked:
What is this?Pull Dog is a GitHub app that makes test environments for your pull requests using Docker, from a Visit our website to learn more. Commands
TroubleshootingNeed help? Don't hesitate to file an issue in our repository Configuration {
"isLazy": false,
"dockerComposeYmlFilePaths": [
"docker-compose.yml"
],
"expiry": "00:00:00",
"conversationMode": "singleComment"
}Trace ID |
|
Mode: paranoid | Total findings: 1 | Considered vulnerability: 1 Vulnerable Libraries (1)
More info on how to fix Vulnerable Libraries in General. 👉 Go to the dashboard for detailed results. 📥 Happy? Share your feedback with us. |
Snyk has created this PR to upgrade multiple dependencies.
👯♂ The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
from 2.5.16 to 2.7.2
on 2022-07-05
from 2.5.16 to 2.7.2
on 2022-07-05
The recommended version fixes:
npm:vue:20180802
Why? Proof of Concept exploit, Has a fix available, CVSS 6.5
(*) Note that the real score may have changed since the PR was raised.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs