Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade asciinema-player from 3.4.0 to 3.5.0 #462

Closed
wants to merge 3 commits into from
Closed

[Snyk] Upgrade asciinema-player from 3.4.0 to 3.5.0 #462

wants to merge 3 commits into from

Conversation

ss-o
Copy link
Member

@ss-o ss-o commented Jul 13, 2023

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade asciinema-player from 3.4.0 to 3.5.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 21 days ago, on 2023-06-22.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: asciinema-player
  • 3.5.0 - 2023-06-22
    • added experimental websocket-based live streaming protocol (ALiS)
    • more efficient parsing of typescript and ttyrec recordings
    • improved logging
    • fixed buffering in websocket driver
    • added term size detection in raw handler of websocket driver
  • 3.4.0 - 2023-05-14
    • introduced new parsers for typescript and ttyrec formats
    • added markers
    • added controls option for controling visibility of control bar
    • added scrubbing support to the progress bar, allowing for navigattion through the timeline of a recording. Thanks to @ blake-mealey for this contribution #166!
    • added offline state for live drivers
    • fixed idleTimeLimit option behaviour with input ("i") events
    • fixed time display when pre-buffering in live drivers
    • added ability for configuring live drivers' minFrameTime
    • right mouse button clicks on scrubber are now ignored
    • prefixed most CSS classes to minimize clashes with host page CSS
    • other CSS improvements like removing legacy prefixes, etc
    • refactorings to driver initialization and poster rendering
from asciinema-player GitHub release notes
Commit messages
Package name: asciinema-player
  • 873577b Merge branch 'release/3.5.0'
  • 61931b8 Bump version
  • c9693ba Simplify custom parser example doc
  • 3acfb47 Detect script start message in first raw websocket message
  • 9b487c8 Remove defunct websocket driver inspector
  • 22ae3f9 Temporarily remove compression from ALiS
  • 8606921 Make `if` branches exhaustive
  • 669eebc Add consulting section to README
  • 0c10144 Fix compressionStats
  • d1e24c6 Update log message
  • 9b69323 Make ALiS compression optional and configurable in ALiS header
  • e6b86dd Expose totalRatio on compressor's stats
  • 940bf81 Decode 12-bit codes (instead of 16-bit) in LZW decompressor
  • 0ab7c8e Expose LZW compression stats through inspector option of websocket driver
  • 690c743 Fix indentation
  • 87c9d04 Reset LZW dict upon reset code in input
  • 788f82d Remove unnecessary typed array
  • f636b17 Reset LZW dictionary when full
  • e1dadbb Improve var naming in LzwDecompressor
  • 9388642 Make LZW decompression significantly faster (~50 times) by reducing mem allocations
  • c0f602a Use TypedArray's subarray instead of slice
  • ba09de5 Limit LZW dictionary size
  • c8fceb4 Add LZW compression to ALiS
  • 1eda5bc Simplify clock initialization with NullClock

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@trunk-io
Copy link

trunk-io bot commented Jul 13, 2023

Merging to main in this repository is managed by Trunk.

  • To merge this pull request, check the box to the left or comment /trunk merge below.

@github-actions github-actions bot added the dependencies 📦 Change in project Javascript dependencies. label Jul 13, 2023
@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Jul 13, 2023
edited
Loading

Deploying with  Cloudflare Pages  Cloudflare Pages

Latest commit: a2bc3e7
Status:🚫  Build failed.

View logs

@github-actions github-actions bot added the ci 🤖 Work that improves the continuous integration. label Jul 15, 2023
@github-actions
Copy link
Contributor

Size Change: +659 B (0%)

Total Size: 11.6 MB

Filename Size Change
build/assets/js/3372.********.js 0 B -145 kB (removed) 🏆
build/assets/js/6408.********.js 146 kB +146 kB (new file) 🆕
ℹ️ View Unchanged
Filename Size
.docusaurus/globalData.json 11.9 kB
build/404.html 16 kB
build/assets/css/styles.********.css 137 kB
build/assets/js/0148d78f.********.js 171 B
build/assets/js/01a85c17.********.js 3.74 kB
build/assets/js/062fcb73.********.js 173 B
build/assets/js/073fbc7c.********.js 18 kB
build/assets/js/07aeeb13.********.js 173 B
build/assets/js/09a4fe5a.********.js 69.5 kB
build/assets/js/0a6cf40a.********.js 41.2 kB
build/assets/js/0fd216e9.********.js 10.7 kB
build/assets/js/12cfd228.********.js 8.72 kB
build/assets/js/135.********.js 1.21 MB
build/assets/js/14eb3368.********.js 9.52 kB
build/assets/js/167d542a.********.js 14 kB
build/assets/js/175b49cb.********.js 43.3 kB
build/assets/js/176.********.js 10.1 kB
build/assets/js/17896441.********.js 16.8 kB
build/assets/js/1a4e3797.********.js 79.6 kB
build/assets/js/1b355a49.********.js 10 kB
build/assets/js/1be78505.********.js 12 kB
build/assets/js/1df93b7f.********.js 10.6 kB
build/assets/js/1f391b9e.********.js 4.51 kB
build/assets/js/221b35f7.********.js 11.9 kB
build/assets/js/2235.********.js 469 B
build/assets/js/2266.********.js 77.8 kB
build/assets/js/233.********.js 51.1 kB
build/assets/js/2391.********.js 30.5 kB
build/assets/js/245d11de.********.js 57 kB
build/assets/js/263b985f.********.js 34.2 kB
build/assets/js/2e789afb.********.js 70.6 kB
build/assets/js/306a8c6c.********.js 4.38 kB
build/assets/js/3310.********.js 103 B
build/assets/js/3449.********.js 103 B
build/assets/js/352f0e19.********.js 9.91 kB
build/assets/js/3894e54f.********.js 26.1 kB
build/assets/js/3dd168bd.********.js 19 kB
build/assets/js/3fc333ae.********.js 32.2 kB
build/assets/js/40c845af.********.js 34.3 kB
build/assets/js/4382960e.********.js 9.88 kB
build/assets/js/446e416b.********.js 9.69 kB
build/assets/js/48b0f434.********.js 248 B
build/assets/js/4b254fee.********.js 409 B
build/assets/js/4edc808e.********.js 15.3 kB
build/assets/js/4f649d07.********.js 9.91 kB
build/assets/js/5039.********.js 1.08 kB
build/assets/js/55b84506.********.js 13.6 kB
build/assets/js/573f7f56.********.js 5.03 kB
build/assets/js/57a8643e.********.js 15.9 kB
build/assets/js/6233.********.js 20.5 kB
build/assets/js/6875c492.********.js 2.6 kB
build/assets/js/6bcaa797.********.js 415 B
build/assets/js/6be15ea1.********.js 10.4 kB
build/assets/js/70442256.********.js 40 kB
build/assets/js/7107.********.js 5.44 kB
build/assets/js/72ca287e.********.js 441 B
build/assets/js/7668.********.js 10.6 kB
build/assets/js/7680.********.js 883 kB
build/assets/js/78060cbc.********.js 202 B
build/assets/js/7814.********.js 1.06 kB
build/assets/js/78a4fd52.********.js 6.8 kB
build/assets/js/7bf4542e.********.js 19.3 kB
build/assets/js/7c5c12ac.********.js 9.84 kB
build/assets/js/7f06b8d7.********.js 400 B
build/assets/js/814f3328.********.js 254 B
build/assets/js/8357758b.********.js 21 kB
build/assets/js/8676.********.js 10.1 kB
build/assets/js/890.********.js 1.55 MB
build/assets/js/897b8d79.********.js 8.96 kB
build/assets/js/8ebcaa6c.********.js 20.3 kB
build/assets/js/935f2afb.********.js 4.08 kB
build/assets/js/93c7665c.********.js 3.69 kB
build/assets/js/945b49d0.********.js 15.4 kB
build/assets/js/98822c48.********.js 14.5 kB
build/assets/js/9890.********.js 1.42 MB
build/assets/js/991ed628.********.js 17.2 kB
build/assets/js/9b0b65a6.********.js 12.3 kB
build/assets/js/9e4087bc.********.js 1.64 kB
build/assets/js/a21c20db.********.js 40.9 kB
build/assets/js/a6aa9e1f.********.js 1.84 kB
build/assets/js/a7023ddc.********.js 232 B
build/assets/js/a821d7a1.********.js 14.3 kB
build/assets/js/a91e6abd.********.js 396 B
build/assets/js/aec49961.********.js 172 B
build/assets/js/b14e0f74.********.js 17.3 kB
build/assets/js/b28a5f0c.********.js 20.3 kB
build/assets/js/b2b675dd.********.js 235 B
build/assets/js/b2f554cd.********.js 5.29 kB
build/assets/js/b4616e61.********.js 20 kB
build/assets/js/b4645c50.********.js 34.7 kB
build/assets/js/bc7db166.********.js 24.3 kB
build/assets/js/c17ed93b.********.js 433 B
build/assets/js/c3712877.********.js 394 B
build/assets/js/c7b90d82.********.js 23.7 kB
build/assets/js/ca06c2e8.********.js 171 B
build/assets/js/ccc49370.********.js 5.69 kB
build/assets/js/ce9206ba.********.js 245 B
build/assets/js/d3dbe244.********.js 172 B
build/assets/js/d40a1e80.********.js 12.6 kB
build/assets/js/d5c68bbd.********.js 41.9 kB
build/assets/js/d6e32917.********.js 419 B
build/assets/js/db8d5f16.********.js 13 kB
build/assets/js/de398d44.********.js 458 B
build/assets/js/e9975d9d.********.js 420 B
build/assets/js/e9ebadb9.********.js 14.2 kB
build/assets/js/ea82e367.********.js 14.8 kB
build/assets/js/eb7ebca6.********.js 37.7 kB
build/assets/js/ebed0d07.********.js 3.62 kB
build/assets/js/ec281f2e.********.js 17.4 kB
build/assets/js/eecb7248.********.js 4.58 kB
build/assets/js/f077d5db.********.js 36.2 kB
build/assets/js/f53487f0.********.js 14.4 kB
build/assets/js/f53610ac.********.js 196 B
build/assets/js/fd2064b2.********.js 12.8 kB
build/assets/js/fedb50c8.********.js 45 kB
build/assets/js/main.********.js 413 kB
build/assets/js/runtime~main.********.js 8.18 kB
build/blog.html 23.3 kB
build/blog/archive.html 16.3 kB
build/blog/feature-rich-plugin-manager.html 24.5 kB
build/blog/tags.html 16.6 kB
build/blog/tags/github.html 23.5 kB
build/blog/tags/zsh.html 23.5 kB
build/community.html 21.8 kB
build/community/category/-collection.html 26 kB
build/community/category/-gallery-of-invocations.html 22.1 kB
build/community/category/-roadmap.html 22.8 kB
build/community/category/-zsh-users-guide.html 22 kB
build/community/contributors.html 30.2 kB
build/community/gallery/collection.html 29.2 kB
build/community/gallery/collection/completions.html 91.5 kB
build/community/gallery/collection/plugins.html 104 kB
build/community/gallery/collection/programs.html 221 kB
build/community/gallery/collection/services.html 30.3 kB
build/community/gallery/collection/snippets.html 31.2 kB
build/community/gallery/collection/themes.html 79.4 kB
build/community/zsh_guide/roadmap/expansion.html 38.5 kB
build/community/zsh_handbook.html 175 kB
build/community/zsh_plugin_standard.html 118 kB
build/docs.html 30.9 kB
build/docs/category/-getting-started.html 22.4 kB
build/docs/category/-guides.html 23.2 kB
build/docs/category/️-syntax.html 24.4 kB
build/docs/code.html 25.3 kB
build/docs/getting_started/installation.html 79.6 kB
build/docs/getting_started/migration.html 125 kB
build/docs/getting_started/overview.html 122 kB
build/docs/guides/benchmark.html 64.4 kB
build/docs/guides/commands.html 97.7 kB
build/docs/guides/customization.html 96.6 kB
build/docs/guides/syntax/bindkey.html 47 kB
build/docs/guides/syntax/for.html 79.8 kB
build/docs/guides/syntax/ice-modifiers.html 52.1 kB
build/docs/guides/syntax/standard.html 174 kB
build/ecosystem.html 21.7 kB
build/ecosystem/annexes/bin-gem-node.html 144 kB
build/ecosystem/annexes/default-ice.html 36.3 kB
build/ecosystem/annexes/eval.html 47 kB
build/ecosystem/annexes/linkbin.html 38.5 kB
build/ecosystem/annexes/meta-plugins.html 45.9 kB
build/ecosystem/annexes/overview.html 69.7 kB
build/ecosystem/annexes/patch-dl.html 34.8 kB
build/ecosystem/annexes/readurl.html 48.7 kB
build/ecosystem/annexes/rust.html 53.4 kB
build/ecosystem/annexes/submods.html 30.7 kB
build/ecosystem/annexes/unscope.html 51.3 kB
build/ecosystem/category/-annexes.html 27.1 kB
build/ecosystem/category/-packages.html 22.1 kB
build/ecosystem/category/️-plugins.html 30.7 kB
build/ecosystem/packages/synopsis.html 42.8 kB
build/ecosystem/packages/usage.html 102 kB
build/ecosystem/plugins/diff-so-fancy.html 50.2 kB
build/ecosystem/plugins/f-sy-h.html 136 kB
build/ecosystem/plugins/h-s-mw.html 61.7 kB
build/ecosystem/plugins/zbrowse.html 34.2 kB
build/ecosystem/plugins/zconvey.html 39.2 kB
build/ecosystem/plugins/zi-console.html 42.3 kB
build/ecosystem/plugins/zprompts.html 36.1 kB
build/ecosystem/plugins/zsh-cmd-architect.html 44.2 kB
build/ecosystem/plugins/zsh-editing-workbench.html 37.7 kB
build/ecosystem/plugins/zsh-modules.html 45.3 kB
build/ecosystem/plugins/zsh-navigation-tools.html 89.2 kB
build/ecosystem/plugins/zsh-select.html 46.3 kB
build/ecosystem/plugins/zsh-unique-id.html 39 kB
build/ecosystem/plugins/zui.html 212 kB
build/ecosystem/plugins/zzcomplete.html 35.9 kB
build/index.html 20.2 kB
build/legal/CODE_OF_CONDUCT.html 25.6 kB
build/legal/PRIVACY.html 37.4 kB
build/search.html 24.2 kB

compressed-size-action

@ss-o ss-o closed this Jul 20, 2023
@ss-o ss-o deleted the snyk-upgrade-f1a7f52a415322e810e944063f1a5a9b branch July 20, 2023 10:09
@ss-o
Copy link
Member Author

ss-o commented Jul 28, 2023

Pull Request closed and locked due to lack of activity. If you'd like to build on this closed PR, you can clone it using this method: https://stackoverflow.com/a/14969986 Then open a new PR, referencing this closed PR in your message.

@z-shell z-shell locked and limited conversation to collaborators Jul 28, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
ci 🤖 Work that improves the continuous integration. dependencies 📦 Change in project Javascript dependencies.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ss-o @snyk-bot