NASA Mission Control Deno Project
Deno Planets Project
RESTful API skeleton in Express.js for workshop
SpaceX Launch Data Project
odziem/github-fetcher-exercise 2
Deno GitHub Fetcher Exercise
Deno Planet Project Exercise
:rocket: Open Source REST API for rocket, core, capsule, pad, and launch data
Starter for an API server using Koa
Angular 2 development tools for Chrome
Bluebird is a full featured promise library with unmatched performance.
PR opened rangle/angular-training-slides
<h3>Snyk has created this PR to fix one or more vulnerable packages in the npm
dependencies of this project.</h3>
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
![]() |
768/1000 <br/> Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Denial of Service (DoS) <br/>SNYK-JS-ENGINEIO-1056749 | No | Proof of Concept |
![]() |
768/1000 <br/> Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Denial of Service (DoS) <br/>SNYK-JS-SOCKETIOPARSER-1056752 | No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
<details> <summary><b>Commit messages</b></summary> </br> <details> <summary>Package name: <b>reveal.js</b></summary> The new version differs by 217 commits.</br> <ul> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/360bc940062711db9b8020ce4e848f6c37014481">360bc94</a> new fix for prematurely autoplaying background videos</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/9f4ed56bb3a3685c315ac162d4f77f755c2ec4d0">9f4ed56</a> larger headings for background sections</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/caccf67d3a8016c5ca4a735ec2cfcb6b0720e521">caccf67</a> add for iframe backgrounds</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/b19dc7fc8020491c95f92bf22277746e28da2df9">b19dc7f</a> don't autoplay background videos in overview mode</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/8e93a1ddf96f36d982a9949d7e4240ba91a123bd">8e93a1d</a> 3.5.0</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/0c3d89bfce2723b077f075b22e536f7e530a0b13">0c3d89b</a> minor tweak for #1564</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/715cf0ba11db0f913cfd2edb56a2c66aed57b505">715cf0b</a> optionally display pacing advice based on slide timings</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/921a605567e8c08409fefa2cea75f66c851de748">921a605</a> document clock and timer in speaker notes window</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/9c7fda43e9e09c720d545d8b7e8d914f00802cb5">9c7fda4</a> don't show negative signs inside minutes/seconds elements</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/933eba8789f9702ff6db76c4310f7b21db14a7b9">933eba8</a> round decreasing timers to mirror increasing timers</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/1eada3b3600f6ae3ecda4edec877571b409c61c8">1eada3b</a> avoid deleting existing classes when muting time elements</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/b1b4ee270b189c4c9ed699df70ea10badc43edc9">b1b4ee2</a> don't mute minutes when hours is unmuted</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/89b0c5a8d04e347492ce7dd28fdb1305c6b5724a">89b0c5a</a> use opacity for muted clock elements</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/a161acaba93378573237e8764e3ffa1ed62ecee1">a161aca</a> extract time display code into new _displayTime() function</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/eb23e58114dadd6c68e41d077e32ce4959678c5a">eb23e58</a> Allow popup window access to Reveal API</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/ef9cbbbbb92560f1ffd41dce23a584474922fe16">ef9cbbb</a> add new getSlides() API</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/40912ace1f3597adadb42a8b4a30b8721fc9b6df">40912ac</a> clarify getTotalSlides() returns the number of slides</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/d75afd6108aa8cfe1a471d5a832d84b1e10fc601">d75afd6</a> expose getPastSlideCount() via public API</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/eac37990e1c53f5c44737e6841540e55feab8b06">eac3799</a> clarify meaning of getProgress() value</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/9bbd5f2735241af6b2f2fe02d8add87f19f618bb">9bbd5f2</a> formatting</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/2289b92961912a06c14377bb5c6ff3404c1cfc4a">2289b92</a> Merge pull request #1851 from astone123/master</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/d1d44cf6b711ca75ee1fde9d40200060c1ef4e8c">d1d44cf</a> formatting</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/30f2af0ac512534e7d66ed60514f07f14a8bb6d7">30f2af0</a> Merge pull request #1844 from riezebosch/pdf-print-stretch</li> <li><a href="https://snyk.io/redirect/github/hakimel/reveal.js/commit/8ec5e00062e13cb2dff6750d5ba152567af30653">8ec5e00</a> Merge pull request #1843 from riezebosch/pdf-print-callback</li> </ul>
<a href="https://snyk.io/redirect/github/hakimel/reveal.js/compare/539e774d31f91676bcc3f75e28168921cd27d819...360bc940062711db9b8020ce4e848f6c37014481">See the full diff</a> </details> </details>
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiI3NDNhMzAwNi1iODQ0LTQ2ODMtYmZmMi04OGMzNjA2OTk3Y2MiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6Ijc0M2EzMDA2LWI4NDQtNDY4My1iZmYyLTg4YzM2MDY5OTdjYyJ9fQ==" width="0" height="0"/> 🧐 View latest project report
pr created time in 17 days
push eventrangle/angular-training-slides
commit sha 41cdf139e41a10d16f69d921b36f75b30f201ad3
fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ENGINEIO-1056749 - https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752
push time in 17 days
create barnchrangle/angular-training-slides
branch : snyk-fix-641dd88e5916e0e72a3da191b531269b
created branch time in 17 days
push eventrangle/angular-training-slides
commit sha 7e4be6365f80020e753da51491f5df9e7effd053
fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SOCKETIO-1024859
push time in 18 days
create barnchrangle/angular-training-slides
branch : snyk-fix-5873dfabca39cba8f52363c6822e69f9
created branch time in 18 days
startedodziem/planet-csv-deno
started time in a month
PR opened rangle/catch-webhooks
<h3>Snyk has created this PR to fix one or more vulnerable packages in the yarn
dependencies of this project.</h3>
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- frontend/package.json
- frontend/yarn.lock
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
![]() |
616/1000 <br/> Why? Proof of Concept exploit, Has a fix available, CVSS 5.9 | Server-Side Request Forgery (SSRF) <br/>SNYK-JS-AXIOS-1038255 | No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiJlNDNmZDZmMy03MjA0LTRkNGMtYTAwZi01YmJhMDZiM2I0MmIiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6ImU0M2ZkNmYzLTcyMDQtNGQ0Yy1hMDBmLTViYmEwNmIzYjQyYiJ9fQ==" width="0" height="0"/> 🧐 View latest project report
pr created time in a month
push eventrangle/catch-webhooks
commit sha 62363304c4febc0d1c23b22b0d1b2245c80116f3
fix: frontend/package.json & frontend/yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-1038255
push time in a month
create barnchrangle/catch-webhooks
branch : snyk-fix-b37b07f5d929e69e5611a6cd5b4a5233
created branch time in a month
PR opened rangle/react-native-example
<h3>Snyk has created this PR to fix one or more vulnerable packages in the yarn
dependencies of this project.</h3>
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- yarn.lock
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
![]() |
768/1000 <br/> Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS) <br/>SNYK-JS-UAPARSERJS-1023599 | No | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiIxZDJhMzRlMy1lNmI4LTQ4NjYtOWU3YS04YWYzN2FjZWI1NTgiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjFkMmEzNGUzLWU2YjgtNDg2Ni05ZTdhLThhZjM3YWNlYjU1OCJ9fQ==" width="0" height="0"/> 🧐 View latest project report
pr created time in a month
push eventrangle/react-native-example
commit sha 3bc38faf5af11e10ae73e572f7000c6e07f77b58
fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UAPARSERJS-1023599
push time in a month
create barnchrangle/react-native-example
branch : snyk-fix-d36dc541188ba9bd7de472c6ad5a2534
created branch time in a month
PR opened odziem/export-notes
Bumps ini from 1.3.5 to 1.3.8. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/ini/commit/a2c5da86604bc2238fe393c5ff083bf23a9910eb"><code>a2c5da8</code></a> 1.3.8</li> <li><a href="https://github.com/npm/ini/commit/af5c6bb5dca6f0248c153aa87e25bddfc515ff6e"><code>af5c6bb</code></a> Do not use Object.create(null)</li> <li><a href="https://github.com/npm/ini/commit/8b648a1ac49e1b3b7686ea957e0b95e544bc6ec1"><code>8b648a1</code></a> don't test where our devdeps don't even work</li> <li><a href="https://github.com/npm/ini/commit/c74c8af35f32b801a7e82a8309eab792a95932f6"><code>c74c8af</code></a> 1.3.7</li> <li><a href="https://github.com/npm/ini/commit/024b8b55ac1c980c6225607b007714c54eb501ba"><code>024b8b5</code></a> update deps, add linting</li> <li><a href="https://github.com/npm/ini/commit/032fbaf5f0b98fce70c8cc380e0d05177a9c9073"><code>032fbaf</code></a> Use Object.create(null) to avoid default object property hazards</li> <li><a href="https://github.com/npm/ini/commit/2da90391ef70db41d10f013e3a87f9a8c5d01a72"><code>2da9039</code></a> 1.3.6</li> <li><a href="https://github.com/npm/ini/commit/cfea636f534b5ca7550d2c28b7d1a95d936d56c6"><code>cfea636</code></a> better git push script, before publish instead of after</li> <li><a href="https://github.com/npm/ini/commit/56d2805e07ccd94e2ba0984ac9240ff02d44b6f1"><code>56d2805</code></a> do not allow invalid hazardous string as section name</li> <li>See full diff in <a href="https://github.com/isaacs/ini/compare/v1.3.5...v1.3.8">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~isaacs">isaacs</a>, a new releaser for ini since your current version.</p> </details> <br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
<details> <summary>Dependabot commands and options</summary> <br />
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
</details>
pr created time in a month
create barnchodziem/export-notes
branch : dependabot/npm_and_yarn/ini-1.3.8
created branch time in a month
PR opened rangle/catch-webhooks
<h3>Snyk has created this PR to fix one or more vulnerable packages in the yarn
dependencies of this project.</h3>
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- frontend/package.json
- frontend/yarn.lock
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
![]() |
758/1000 <br/> Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.3 | Prototype Pollution <br/>SNYK-JS-INI-1048974 | Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiI1MjgxZDc0Ni1iM2ZiLTQwNmYtYTQ4ZC1lOGI0YTVhNmU2NmEiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjUyODFkNzQ2LWIzZmItNDA2Zi1hNDhkLWU4YjRhNWE2ZTY2YSJ9fQ==" width="0" height="0"/> 🧐 View latest project report
pr created time in a month
push eventrangle/catch-webhooks
commit sha 641063a4e23a4fa5ef6c37075258125992cc0148
fix: frontend/package.json & frontend/yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-INI-1048974
push time in a month
create barnchrangle/catch-webhooks
branch : snyk-fix-ab5dfd58370bce1d4f0e68dc0886c7ab
created branch time in a month
fork josepot/ReactiveTraderCloud
Real-time FX trading showcase by Adaptive.
https://web-demo.adaptivecluster.com
fork in 2 months
PR opened rangle/angular-training-slides
<h3>Snyk has created this PR to fix one or more vulnerable packages in the npm
dependencies of this project.</h3>
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
---|---|---|---|---|
![]() |
551/1000 <br/> Why? Recently disclosed, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS) <br/>SNYK-JS-HIGHLIGHTJS-1048676 | Yes | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiI2M2ZmM2FlNi00MmQ4LTRkNTMtYTA3Ni1hZDM5MTY5MTY5ZTgiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjYzZmYzYWU2LTQyZDgtNGQ1My1hMDc2LWFkMzkxNjkxNjllOCJ9fQ==" width="0" height="0"/><img src="https://app.snyk.io/badges/merge-advice/?package_manager=npm&package_name=highlight.js&from_version=9.6.0&to_version=10.4.1&pr_id=63ff3ae6-42d8-4d53-a076-ad39169169e8&visibility=false&has_feature_flag=false" width="0" height="0"/> 🧐 View latest project report
pr created time in 2 months
push eventrangle/angular-training-slides
commit sha 6ad29cba4dbdf87a67d7c117104ac3583b5ab45d
fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676
push time in 2 months
create barnchrangle/angular-training-slides
branch : snyk-fix-9554019b9e02cfcf5fa01e581301007e
created branch time in 2 months