Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade blade-formatter from 1.42.0 to 1.42.1 #23

Merged
merged 1 commit into from
Jan 28, 2025
Merged

[Snyk] Security upgrade blade-formatter from 1.42.0 to 1.42.1 #23

merged 1 commit into from
Jan 28, 2025

Conversation

indy2kro
Copy link
Owner

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • package.json
  • package-lock.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
medium severity Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		   631  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

@what-the-diff What The Diff
Copy link

what-the-diff bot commented Jan 28, 2025

PR Summary

  • Project Name Update
    The project name was updated in package-lock.json from laravel-git-hooks to a new name relock-npm-lock-v2-m5qIPG.

  • Upgrades to Code Formatter
    The version of blade-formatter, a tool for rendering code more readable, was updated from 1.42.0 to 1.42.1 in both package-lock.json and package.json.

  • Upgrade of PHP-plugin
    @prettier/plugin-php, a tool for formatting PHP code, was updated from 0.22.2 to 0.22.4 in package-lock.json.

  • Upgrade of Global Utility
    glob, a utility that provides pattern matching functionality, was updated from 8.1.0 to 10.4.5 in package-lock.json. This update also includes changes in its dependencies.

  • Upgrade of PHP Parser
    The PHP parser, which is used to interpret PHP commands, was updated from 3.2.1 to 3.2.2 in package-lock.json.

  • Removal of Outdated Dependencies
    Several outdated dependencies, such as fs.realpath and inflight, were removed from the node_modules directory in package-lock.json.

  • Integrity Hash Fixes
    The team fixed some integrity hashes (a security measure) for the updated packages following the version changes.

@indy2kro indy2kro merged commit 001c1ae into master Jan 28, 2025
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@indy2kro @snyk-bot