Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): [Snyk] Security upgrade koa-router from 12.0.1 to 13.0.1 #2986

Merged
merged 2 commits into from
Sep 16, 2024
Merged

build(deps): [Snyk] Security upgrade koa-router from 12.0.1 to 13.0.1 #2986

merged 2 commits into from
Sep 16, 2024

Conversation

swirlds-automation
Copy link
Contributor

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • packages/ws-server/package.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-PATHTOREGEXP-7925106		   738  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

@github-actions GitHub Actions
Copy link

github-actions bot commented Sep 14, 2024
edited
Loading

Acceptance Tests

  18 files  240 suites   29m 45s ⏱️
602 tests 575 ✔️ 4 💤 23
717 runs  688 ✔️ 6 💤 23

Results for commit 31fac5c.

♻️ This comment has been updated with latest results.

@quiet-node quiet-node changed the title [Snyk] Security upgrade koa-router from 12.0.1 to 13.0.1 build(deps): [Snyk] Security upgrade koa-router from 12.0.1 to 13.0.1 Sep 16, 2024
@quiet-node quiet-node added the dependencies Pull requests that update a dependency file label Sep 16, 2024
@quiet-node quiet-node added this to the 0.57.0 milestone Sep 16, 2024
@ebadiere ebadiere force-pushed the snyk-fix-ee719da6ca69b2bd673348f3c10646d4 branch from c171ca9 to 31fac5c Compare September 16, 2024 15:18
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Sep 16, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@github-actions GitHub Actions
Copy link

Tests

       3 files     274 suites   19s ⏱️
1 289 tests 1 288 ✔️ 1 💤 0
1 301 runs  1 300 ✔️ 1 💤 0

Results for commit 31fac5c.

ebadiere
ebadiere approved these changes Sep 16, 2024
View reviewed changes
Copy link
Collaborator

@ebadiere ebadiere left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LG

@ebadiere ebadiere merged commit 89861cb into main Sep 16, 2024
39 checks passed
@ebadiere ebadiere deleted the snyk-fix-ee719da6ca69b2bd673348f3c10646d4 branch September 16, 2024 17:00
@codecov Codecov
Copy link

codecov bot commented Sep 16, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 89.56%. Comparing base (f8e9e89) to head (31fac5c).
Report is 2 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #2986      +/-   ##
==========================================
+ Coverage   89.54%   89.56%   +0.02%     
==========================================
  Files          56       56              
  Lines        3796     3796              
  Branches      775      775              
==========================================
+ Hits         3399     3400       +1     
+ Misses        350      349       -1     
  Partials       47       47
Flag Coverage Δ
relay 89.68% <ø> (ø)
server 88.30% <ø> (+0.14%) ⬆️
ws-server 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

see 1 file with indirect coverage changes

@quiet-node quiet-node modified the milestones: 0.57.0, 0.56.0 Sep 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ebadiere ebadiere ebadiere approved these changes

@quiet-node quiet-node quiet-node approved these changes

@AlfredoG87 AlfredoG87 Awaiting requested review from AlfredoG87 AlfredoG87 is a code owner

@georgi-l95 georgi-l95 Awaiting requested review from georgi-l95 georgi-l95 is a code owner

@Ivo-Yankov Ivo-Yankov Awaiting requested review from Ivo-Yankov Ivo-Yankov is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
0.56.0
Development

Successfully merging this pull request may close these issues.
4 participants
@swirlds-automation @ebadiere @quiet-node @snyk-bot