Skip to content

[Snyk] Fix for 1 vulnerabilities #746

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Fix for 1 vulnerabilities #746

wants to merge 1 commit into from

Conversation

@adamlaska
Copy link
Owner

@adamlaska adamlaska commented May 13, 2024

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • packages/components/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5		 Uncontrolled resource consumption
SNYK-JS-BRACES-6838727		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @storybook/react The new version differs by 250 commits.
  • 05070ca v6.5.0
  • 88c6a62 Update root, peer deps, version.ts/json to 6.5.0 [ci skip]
  • ca93284 6.5.0 changelog
  • ff28cd9 6.5.0-rc.1 next.json version file
  • 9e1f519 Update git head to 6.5.0-rc.1, update yarn.lock
  • 3f09d4e v6.5.0-rc.1
  • 82b7ac1 Update root, peer deps, version.ts/json to 6.5.0-rc.1 [ci skip]
  • 4b50e28 6.5.0-rc.1 changelog
  • 0a6e347 Merge pull request #18220 from storybookjs/improve/detection-webpack5
  • 95a5c80 move nextjs detection up
  • 152e441 Merge pull request #18248 from storybookjs/18177-fix-conditional-args-fail-gracefully
  • 2948cae ArgsTable: Gracefully handle conditional args failures
  • f837e31 Merge pull request #18246 from storybookjs/chore_docs_adds_mdx2_steps
  • 73cf6ba adds MDX 2 docs and gotchas
  • 64b07fe Merge pull request #18244 from storybookjs/chore_docs_cleanup_broken_links
  • fef1a32 Fixes broken links
  • 82ce9de Merge pull request #18231 from Tomastomaslol/issue-18143-reset-button-broken-for-URL-values
  • ebf9341 Merge pull request #18038 from bisubus/fix-vue3-tsx
  • 9583cea remove repeated test
  • 1b396fd 6.5.0-rc.0 next.json version file
  • 6cc69b5 Update git head to 6.5.0-rc.0, update yarn.lock
  • c27fd9e v6.5.0-rc.0
  • b56b1ce re add reset of args that was not set initially. Extend tests for onResetArgs
  • 19ba77b Update root, peer deps, version.ts/json to 6.5.0-rc.0 [ci skip]

See the full diff

Package name: chromatic The new version differs by 250 commits.

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

@google-cla
Copy link

google-cla bot commented May 13, 2024

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

@socket-security
Copy link

socket-security bot commented May 13, 2024

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@absinthe/[email protected] Transitive: eval +10 5.54 MB mgtitimoli
npm/@apollo/[email protected] environment +1 1.9 MB apollo-bot
npm/@apollo/[email protected] environment 0 370 kB apollo-bot
npm/@babel/[email protected] Transitive: filesystem, shell +4 203 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 7.72 kB jlhwung
npm/@babel/[email protected] None 0 65.2 kB nicolo-ribaudo
npm/@babel/[email protected] environment, filesystem, unsafe +18 7.1 MB nicolo-ribaudo
npm/@babel/[email protected] None 0 121 kB jlhwung
npm/@babel/[email protected] None 0 3.44 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 9.07 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 47.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 9.49 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 67.7 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 39.6 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 10.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 6.65 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 7.22 kB jlhwung
npm/@babel/[email protected] None 0 3.33 kB jlhwung
npm/@babel/[email protected] None 0 7.03 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 5.98 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 17.9 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 222 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.48 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.05 kB jlhwung
npm/@babel/[email protected] None +1 11.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 8.38 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 14.1 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 5.06 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 11.7 kB nicolo-ribaudo
npm/@babel/[email protected] None +4 1000 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 5.55 kB jlhwung
npm/@babel/[email protected] None 0 1.48 MB jlhwung
npm/@babel/[email protected] None 0 7.43 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.14 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 15.9 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.74 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.36 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.92 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.16 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 18.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.16 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 6.53 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.36 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.52 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.42 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.61 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.47 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.93 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.56 kB jlhwung
npm/@babel/[email protected] None 0 2.58 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.54 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.69 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.63 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.7 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.53 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.57 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.52 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.57 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.06 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.86 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.89 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.53 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 25.6 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 25.4 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 7.51 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 19.5 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.98 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.07 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.25 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 6.5 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 13.4 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.34 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.86 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.08 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 7.17 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 9.06 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 18.6 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 8.75 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.18 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.25 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.61 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 17.7 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.96 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.77 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 5.11 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.75 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.59 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 8.29 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.72 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.77 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 39 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.16 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 6.36 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 6.36 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 6 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 4.74 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 23.9 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 2.77 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 442 kB nicolo-ribaudo
npm/@babel/[email protected] environment +1 127 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.05 kB hzoo
npm/@babel/[email protected] None 0 4.5 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 3.73 kB nicolo-ribaudo
npm/@babel/[email protected] environment, filesystem, unsafe +2 20.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 287 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 99.8 kB jlhwung
npm/@babel/[email protected] None 0 24.2 kB jlhwung
npm/@babel/[email protected] environment 0 158 kB nicolo-ribaudo
npm/@babel/[email protected] environment 0 726 kB jlhwung
npm/@bcoe/[email protected] None 0 277 kB bcoe
npm/@chromaui/[email protected] environment, filesystem, network +12 473 kB tmeasday
npm/@cnakazawa/[email protected] filesystem 0 27.3 kB cpojer
npm/@code-hike/[email protected] None 0 13 kB pomber
npm/@codemirror/[email protected] None 0 144 kB marijn
npm/@codemirror/[email protected] None 0 27.7 kB marijn
npm/@codemirror/[email protected] None 0 124 kB marijn
npm/@codemirror/[email protected] None 0 24.1 kB marijn
npm/@codemirror/[email protected] None 0 45.9 kB marijn
npm/@codemirror/[email protected] None 0 111 kB marijn
npm/@codemirror/[email protected] None 0 39.3 kB marijn
npm/@codemirror/[email protected] None 0 33.5 kB marijn
npm/@codemirror/[email protected] None 0 56.2 kB marijn
npm/@codemirror/[email protected] None +2 117 kB marijn
npm/@codemirror/[email protected] None 0 118 kB marijn
npm/@codemirror/[email protected] None 0 19.9 kB marijn
npm/@codemirror/[email protected] None 0 76 kB marijn
npm/@codemirror/[email protected] None 0 224 kB marijn
npm/@codemirror/[email protected] None 0 63.2 kB marijn
npm/@codemirror/[email protected] None 0 59.6 kB marijn
npm/@codemirror/[email protected] None 0 709 kB marijn
npm/@codesandbox/[email protected] network 0 14.6 kB danilowoz
npm/@codesandbox/[email protected] network 0 98.6 MB danilowoz
npm/@codesandbox/[email protected] environment, eval +2 887 kB danilowoz
npm/@codesandbox/[email protected] None 0 211 kB danilowoz
npm/@csstools/[email protected] None 0 63.2 kB jonathantneal
npm/@csstools/[email protected] None 0 33 kB jonathantneal
npm/@divyenduz/[email protected] None +3 1.74 MB divyenduz
npm/@divyenduz/[email protected] filesystem, network Transitive: environment +5 2.45 MB divyenduz
npm/@divyenduz/[email protected] None +1 24 kB divyenduz
npm/@divyenduz/[email protected] None 0 11.9 kB divyenduz
npm/@emmetio/[email protected] None +2 57.4 kB emmetio
npm/@emmetio/[email protected] None +19 1.32 MB emmetio
npm/@emmetio/[email protected] None +2 63.5 kB emmetio
npm/@emmetio/[email protected] None 0 7.83 kB emmetio
npm/@emotion/[email protected] environment +4 206 kB emotion-release-bot
npm/@emotion/[email protected] environment +5 330 kB emotion-release-bot
npm/@emotion/[email protected] environment +1 167 kB emotion-release-bot
npm/@emotion/[email protected] None 0 8.23 kB mitchellhamilton
npm/@emotion/[email protected] environment 0 38.2 kB emotion-release-bot
npm/@emotion/[email protected] None 0 3.06 kB mitchellhamilton
npm/@emotion/[email protected] environment +1 53.3 kB mitchellhamilton
npm/@emotion/[email protected] environment 0 112 kB emotion-release-bot
npm/@emotion/[email protected] environment 0 77.6 kB emotion-release-bot
npm/@emotion/[email protected] None 0 90.6 kB mitchellhamilton
npm/@emotion/[email protected] None 0 7.34 kB mitchellhamilton
npm/@essentials/[email protected] None 0 5.19 kB jaredlunde
npm/@gatsbyjs/[email protected] environment, filesystem, shell +19 3.33 MB freiksenet
npm/@graphql-cli/[email protected] Transitive: environment, filesystem, network, unsafe +28 1.25 MB ardatan
npm/@graphql-cli/[email protected] filesystem Transitive: environment, network, shell +23 2.86 MB ardatan
npm/@graphql-codegen/[email protected] environment, filesystem, shell Transitive: eval, network, unsafe +42 4.49 MB dotansimha
npm/@graphql-codegen/[email protected] Transitive: eval +1 162 kB dotansimha
npm/@graphql-codegen/[email protected] Transitive: eval +1 147 kB dotansimha
npm/@graphql-codegen/[email protected] Transitive: eval +3 955 kB dotansimha
npm/@graphql-codegen/[email protected] Transitive: eval +3 1 MB dotansimha
npm/@graphql-toolkit/[email protected] environment +1 1.63 MB dotansimha
npm/@graphql-toolkit/[email protected] None 0 270 kB dotansimha
npm/@graphql-tools/[email protected] None +1 483 kB ardatan
npm/@graphql-tools/[email protected] network +3 953 kB ardatan
npm/@graphql-tools/[email protected] environment 0 862 kB ardatan
npm/@hapi/[email protected] None 0 74.9 kB hueniverse
npm/@hapi/[email protected] None 0 6 kB hueniverse
npm/@hapi/[email protected] None 0 45.8 kB hueniverse
npm/@hapi/[email protected] network +1 203 kB hueniverse
npm/@iarna/[email protected] eval 0 94.5 kB iarna
npm/@icons/[email protected] None 0 6.33 MB case
npm/@istanbuljs/[email protected] environment, filesystem 0 9.14 kB coreyfarrell
npm/@jest/[email protected] None 0 24.2 kB scotthovestadt
npm/@jest/[email protected] filesystem, unsafe 0 180 kB scotthovestadt
npm/@jest/[email protected] None 0 14.5 kB scotthovestadt
npm/@jest/[email protected] None 0 21.3 kB scotthovestadt
npm/@jest/[email protected] Transitive: environment, filesystem +16 3.01 MB simenb
npm/@jest/[email protected] environment, filesystem Transitive: shell +3 178 kB scotthovestadt
npm/@jest/[email protected] None +1 12.6 kB scotthovestadt
npm/@jest/[email protected] None 0 23.1 kB scotthovestadt
npm/@jest/[email protected] filesystem 0 8.17 kB scotthovestadt
npm/@jest/[email protected] unsafe +1 48.5 kB scotthovestadt
npm/@jest/[email protected] None 0 47 kB scotthovestadt
npm/@jimp/[email protected] None +1 271 kB alisowski
npm/@jimp/[email protected] environment, filesystem, network +4 550 kB alisowski
npm/@jimp/[email protected] None 0 35.1 kB alisowski
npm/@jimp/[email protected] None +1 17.6 kB alisowski
npm/@jimp/[email protected] None +1 170 kB alisowski
npm/@jimp/[email protected] None +1 741 kB alisowski
npm/@jimp/[email protected] None +1 83 kB alisowski
npm/@jimp/[email protected] None +1 418 kB alisowski
npm/@jimp/[email protected] None +1 37.2 kB alisowski
npm/@jimp/[email protected] None +1 32.6 kB alisowski
npm/@jimp/[email protected] None 0 89.1 kB alisowski
npm/@jimp/[email protected] None +1 23.7 kB alisowski
npm/@jimp/[email protected] None +1 21 kB alisowski
npm/@jimp/[email protected] None +1 23.1 kB alisowski
npm/@jimp/[email protected] None +1 31.4 kB alisowski
npm/@jimp/[email protected] None +1 18.1 kB alisowski
npm/@jimp/[email protected] None +1 32.4 kB alisowski
npm/@jimp/[email protected] None +1 31.1 kB alisowski
npm/@jimp/[email protected] environment +1 918 kB alisowski
npm/@jimp/[email protected] None 0 227 kB alisowski
npm/@jimp/[email protected] None 0 75.6 kB alisowski
npm/@jimp/[email protected] None 0 19.6 kB alisowski
npm/@jimp/[email protected] None +5 404 kB alisowski
npm/@jimp/[email protected] None +1 271 kB alisowski
npm/@jimp/[email protected] None 0 1.46 MB alisowski
npm/@jimp/[email protected] None 0 5.18 kB alisowski
npm/@juggle/[email protected] None 0 47.9 kB trem
npm/@kwsites/[email protected] filesystem 0 14.4 kB steveukx
npm/@kwsites/[email protected] None 0 6.2 kB steveukx

🚮 Removed packages: npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@prettier/[email protected], npm/@starptech/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

do-not-merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@adamlaska @snyk-bot