Skip to content

[Snyk] Upgrade @graphprotocol/graph-cli from 0.28.0 to 0.68.5#18

Open
nek0ill wants to merge 1 commit intomainfrom
snyk-upgrade-ab733ab295ad558a5033390e98404a60
Open

[Snyk] Upgrade @graphprotocol/graph-cli from 0.28.0 to 0.68.5#18
nek0ill wants to merge 1 commit intomainfrom
snyk-upgrade-ab733ab295ad558a5033390e98404a60

Conversation

@nek0ill
Copy link
Copy Markdown
Owner

@nek0ill nek0ill commented Mar 23, 2024

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @graphprotocol/graph-cli from 0.28.0 to 0.68.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 593 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2024-03-01.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Improper Verification of Cryptographic Signature
SNYK-JS-NODEFORGE-2430339		 365/1000
Why? CVSS 7.3		 No Known Exploit
Prototype Pollution
SNYK-JS-ASYNC-2441827		 365/1000
Why? CVSS 7.3		 Proof of Concept
Server-side Request Forgery (SSRF)
SNYK-JS-IP-6240864		 365/1000
Why? CVSS 7.3		 Proof of Concept
Denial of Service
SNYK-JS-NODEFETCH-674311		 365/1000
Why? CVSS 7.3		 No Known Exploit
Open Redirect
SNYK-JS-NODEFORGE-2330875		 365/1000
Why? CVSS 7.3		 Proof of Concept
Prototype Pollution
SNYK-JS-NODEFORGE-2331908		 365/1000
Why? CVSS 7.3		 No Known Exploit
Improper Verification of Cryptographic Signature
SNYK-JS-NODEFORGE-2430337		 365/1000
Why? CVSS 7.3		 No Known Exploit
Improper Verification of Cryptographic Signature
SNYK-JS-NODEFORGE-2430341		 365/1000
Why? CVSS 7.3		 No Known Exploit
Server-side Request Forgery (SSRF)
SNYK-JS-REQUEST-3361831		 365/1000
Why? CVSS 7.3		 Proof of Concept
Prototype Pollution
SNYK-JS-TOUGHCOOKIE-5672873		 365/1000
Why? CVSS 7.3		 Proof of Concept
Information Exposure
SNYK-JS-NODEFETCH-2342118		 365/1000
Why? CVSS 7.3		 No Known Exploit
Regular Expression Denial of Service (ReDoS)
npm:debug:20170905		 365/1000
Why? CVSS 7.3		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@snyk-bot
fix: upgrade @graphprotocol/graph-cli from 0.28.0 to 0.68.5
56397e0 
Snyk has created this PR to upgrade @graphprotocol/graph-cli from 0.28.0 to 0.68.5.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/muisance/project/48a9ec63-a3cd-400a-a9b6-9b5880462936?utm_source=github&utm_medium=referral&page=upgrade-pr
@vercel
Copy link
Copy Markdown

vercel bot commented Mar 23, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
noosphere ❌ Failed (Inspect) Mar 23, 2024 8:42pm

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nek0ill @snyk-bot