Skip to content

[Snyk] Security upgrade hapi from 10.5.0 to 13.0.0#12

Open
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-5cbaa2c6e2f044a990fe46df0cc58226
Open

[Snyk] Security upgrade hapi from 10.5.0 to 13.0.0#12
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-5cbaa2c6e2f044a990fe46df0cc58226

Conversation

@snyk-bot
Copy link

@snyk-bot snyk-bot commented May 11, 2021

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 529/1000
Why? Has a fix available, CVSS 6.3		 Prototype Pollution
npm:hoek:20180212		 Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: hapi The new version differs by 122 commits.
  • e82e47c Update iron. Closes #3038. Closes #3039
  • 6a4fdcd Merge pull request #3032 from briandela/patch-3
  • 7d63cad server.method examples with caching were missing generateTimeout
  • 9348fad auth.api example
  • 4e78875 Expose auth scheme api. Closes #3018
  • c22b3c5 12.0.1
  • 6d75ea0 Merge pull request #3013 from kanongil/patch-3
  • acefc8c Fix hapijs/shot dependency
  • 9cc0eba Update catbox. Closes #3012
  • 780904c Update deps. Closes #3004. Closes #3005. Closes #3006. Closes #3007. Closes #3008. Closes #3009. Closes #3010. Closes #3011
  • d34f0de Reorg lines
  • e724897 Expose cors origin status. Closes #2936
  • 70b31a6 Expose full request.auth to validation context. Closes #2886
  • df6fffd Remove session placeholders. Closes #3002
  • 34a490b Update statehood. Closes #3001
  • ee1fd9d Promise api. Closes #3000
  • b3c657c misc
  • 70c2fe1 Complex scope. Closes #2993. Closes #2999
  • 26a9697 Auth access settings. For #2998
  • 4307b00 Refactor auth access config. Closes #2992. Closes #2998
  • baf7b9c Auth refactor. Fix dynamic scopes in default. Closes #2994
  • 6295de7 Prevent double end(). Closes #2966
  • 6949888 Merge branch 'master' of github.com:hapijs/hapi
  • c7ba806 Test for #2979

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

@snyk-bot
fix: package.json to reduce vulnerabilities
baa4794 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/npm:hoek:20180212
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snyk-bot