[Snyk] Upgrade serve from 11.3.2 to 13.0.2 #631
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade serve from 11.3.2 to 13.0.2. See this package in npm: https://www.npmjs.com/package/serve See this project in Snyk: https://app.snyk.io/org/nodeshift-agg/project/cc7f2029-67ef-4484-8942-8996e596ae23?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade serve from 11.3.2 to 13.0.2.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Warning: This is a major version upgrade, and may be a breaking change.
The recommended version fixes:
SNYK-JS-ANSIREGEX-1583908
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-AJV-584908
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: serve
-
13.0.2 - 2021-11-04
- Updated the screenshot: c53be04
- Use Safari for screenshot: d8870a8
-
13.0.1 - 2021-11-04
- Security(deps): boxen@5.1.2 to fix CVE-2021-3807: #676
- Switch to npm: #681
-
13.0.0 - 2021-11-04
- Change default port from
-
12.0.1 - 2021-09-09
- HTTPS: Adding Ability to Send Passphrase to createServer: #655
- Fix network not being shown anymore: #661
-
12.0.0 - 2021-06-08
- Update
- Add
- Add flag for disabling port switching: #579
- Bump lodash from 4.17.15 to 4.17.19: #619
- Bump ini from 1.3.5 to 1.3.7: #638
- Fix: Bump ajv to 6.12.6: #635
- Update repo location in package.json to be vercel/serve: #641
- Fix spacing for CORS documentation: #610
- Fix undefined local network address: #572
- Bump lodash from 4.17.19 to 4.17.21: #654
-
11.3.2 - 2020-06-05
- Document CORS option: #599
- Update
- Regenerate
- Update Readme to use Vercel instead of Zeit: f3ecedb
from serve GitHub release notesPatches
Patches
Credits
Huge thanks to @ AviVahl for helping!
Major Changes
5000to3000: #680Credits
Huge thanks to @ kud for helping!
Changes
Credits
Huge thanks to @ wilbert-abreu and @ marcofugaro for helping!
Major Changes
clipboardyto v2.3.0 (Drops support for Node 8, reached end of life): #612Minor Changes
-pport flag to the help command output: #607Patches
Credits
Huge thanks to @ hail2u, @ Oscar-21, @ jespertheend, @ rajivshah3, @ z-svoboda-mob, @ IvanSanchez, and @ wabscale for helping!
Patches
serve-handlerto v6.1.3: 04b42e7yarn.lockfile: 059c852Credits
Huge thanks to @ brandonarbini for helping!
Commit messages
Package name: serve
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs