[Snyk] Upgrade mkdirp from 0.5.1 to 1.0.4 #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open

snyk-bot wants to merge 1 commit into master from snyk-upgrade-861677440deb50a6c3f21cca4a5acc9a

snyk-bot commented Sep 18, 2022

Snyk has created this PR to upgrade mkdirp from 0.5.1 to 1.0.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

The recommended version is 10 versions ahead of your current version.
The recommended version was released 2 years ago, on 2020-04-03.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-MINIMIST-559764	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mkdirp

from mkdirp GitHub release notes

Commit messages

Package name: mkdirp

b694079 1.0.4
2d42170 Remove unnecessary process.umask()
4d59b81 update tap
117328b remove outdated example
7cd4e9e correct gitignore
9f29fc8 1.0.3
e84d327 Handle EROFS errors
6b2632d add sponsorship button
6a061db 1.0.2
11d2b2a readme typo
ab8b754 1.0.1
73f8f38 add files list to package.json
1b64c7b 1.0.0
ed0ae94 new implementation for v1.0
ae00d44 modernize travis
824f3f8 ignore stuff
2ecfd49 package updates
b6ea965 coverage-map for test coverage focus
19511d6 add a changelog
2ed0350 give myself credit/blame along with subs
c360cf5 tests for new version
3e68692 docs for new version
f2003bb test: add v4 and v5 to travis
b8629ff tools: update tap + mock-fs. Fix broken test

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

feat: upgrade mkdirp from 0.5.1 to 1.0.4

1d35be3

Snyk has created this PR to upgrade mkdirp from 0.5.1 to 1.0.4. See this package in npm: https://www.npmjs.com/package/mkdirp See this project in Snyk: https://app.snyk.io/org/contentstack-cli/project/48e01156-bda4-4b15-ae2f-09e8636b982c?utm_source=github&utm_medium=referral&page=upgrade-pr

snyk-bot requested a review from a team as a code owner

September 18, 2022 00:23

snyk-bot requested a review from a team

September 18, 2022 00:23

cs-raj force-pushed the master branch from 2a57e25 to 9ebed9d Compare

June 20, 2024 06:05

cs-raj force-pushed the snyk-upgrade-861677440deb50a6c3f21cca4a5acc9a branch from f17d1f0 to 1d35be3 Compare

June 20, 2024 06:05

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment