[Snyk] Security upgrade superagent from 1.7.1 to 2.0.0 #22

snyk-bot · 2020-03-02T07:46:05Z

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- samples/client/petstore-security-test/javascript/package.json

Vulnerabilities that will be fixed

With an upgrade:

Issue	Breaking Change	Exploit Maturity
Prototype Pollution npm:extend:20180424	Yes	No Known Exploit
Regular Expression Denial of Service (ReDoS) npm:mime:20170907	Yes	No Known Exploit
Prototype Override Protection Bypass npm:qs:20170213	Yes	No Known Exploit

Commit messages

Package name: superagent

The new version differs by 161 commits.

fda9b5e v2.0.0
2429a1e 2.0.0-alpha.3
2ae9281 Catch errors thrown during end event
536e9a6 Merge pull request How to code generate nested array property using swagger-code-gen client swagger-api/swagger-codegen#989 from focusaurus/doc-electron-browser
d0c57f1 document browser version in electron
b3ef32c Merge pull request [Swift] Support use in Framework swagger-api/swagger-codegen#981 from visionmedia/pipeevents
b24ab0b Emit response event when piping
8ae7380 Exclude bower.json from npm to avoid generating a confusing package
6b0e527 Alpha 2
b47a011 Backwards compatibility with superagent-mock
984fbc6 Merge remote-tracking branch 'origin/headredirects'
d351b1c Skip redirect test that exposes bug in IE
94f6f0a Merge pull request PHP Namespace Is Not API-Specific swagger-api/swagger-codegen#974 from visionmedia/formserialize
6ff9350 Browsers are broken
1d8dc66 Localtunnel timeouts
61401a7 Fix Support binary data in body swagger-api/swagger-codegen#669
93a1cef Move method
e302db1 Split test
62a077b Reused server for redirect tests
b29520d Catch assertion errors to report them properly
d7c3daa Redundant
781580f Moved tests
4ecd3f0 Serialize nested objects same way as node
2097cd2 Lint

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

… reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/npm:extend:20180424 - https://snyk.io/vuln/npm:mime:20170907 - https://snyk.io/vuln/npm:qs:20170213

fix: samples/client/petstore-security-test/javascript/package.json to…

68c51c0

… reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/npm:extend:20180424 - https://snyk.io/vuln/npm:mime:20170907 - https://snyk.io/vuln/npm:qs:20170213

SeppPenner self-assigned this Mar 2, 2020

SeppPenner added the enhancement New feature or request label Mar 2, 2020

SeppPenner merged commit 6380e09 into master Mar 2, 2020

SeppPenner deleted the snyk-fix-803cdbc361aee9f62a4bdd8895a08836 branch March 2, 2020 07:48

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Security upgrade superagent from 1.7.1 to 2.0.0 #22

[Snyk] Security upgrade superagent from 1.7.1 to 2.0.0 #22

snyk-bot commented Mar 2, 2020

[Snyk] Security upgrade superagent from 1.7.1 to 2.0.0 #22

[Snyk] Security upgrade superagent from 1.7.1 to 2.0.0 #22

Conversation

snyk-bot commented Mar 2, 2020

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade: