Skip to content

[Snyk] Fix for 4 vulnerabilities#977

Open
tradetrustimda wants to merge 14 commits intomasterfrom
snyk-fix-1c5bbc6d4896680f13dcad8e34feabc9
Open

[Snyk] Fix for 4 vulnerabilities#977
tradetrustimda wants to merge 14 commits intomasterfrom
snyk-fix-1c5bbc6d4896680f13dcad8e34feabc9

Conversation

@tradetrustimda
Copy link
Contributor

@tradetrustimda tradetrustimda commented Jan 30, 2025

snyk-top-banner

Snyk has created this PR to fix 4 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • package.json
  • package-lock.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Uncontrolled resource consumption
SNYK-JS-BRACES-6838727		   696  
medium severity Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		   631  
high severity Inefficient Regular Expression Complexity
SNYK-JS-MICROMATCH-6838728		   589  
medium severity Improper Input Validation
SNYK-JS-NANOID-8492085		   529  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption
🦉 Improper Input Validation

RishabhS7 and others added 14 commits November 4, 2024 08:17
@RishabhS7 @nghaninn @RishabhSGT
feat: tt 266 add rejection functions (#942)
60d3797 
* feat: Update endorsement chain page to support remark (#941)

* feat: v5 update endorement chain

* chore: fix test case

* chore: resolve type error

* chore: resolve package-lock

* chore: resolve test error

* chore: resolve test error

* chore: update cli package version

* chore: add missing os in package-lock

* chore: revert test fixes

* chore: update amoy rpcUrl

---------

Co-authored-by: nghaninn <han-inn.ng@sgtradex.com>

* chore: update test

* chore: resolve package-lock

* feat: add rejection functions

* fix: add e2e test cases

* fix: adjust UI mark

* fix: adjust UI mark

* fix: tests check types

* fix: update test cases and resolve synpress error

---------

Co-authored-by: Ng Han Inn <43451336+nghaninn@users.noreply.github.com>
Co-authored-by: nghaninn <han-inn.ng@sgtradex.com>
Co-authored-by: Ng Han Inn <nghaninn@gmail.com>
Co-authored-by: Rishabh Singh <rishabh.singh@sgtradextech.com>
@nghaninn
Revert "feat: tt 266 add rejection functions (#942)" (#944)
653ff82 
This reverts commit 60d3797.
@maxufeng
feat: add astron network info (#946)
f902468 
* feat: add astron network info

* feat: add astron demo tt file

* fix: update astron network info and update package.json

* fix: update astron.tt file

* fix: update package-lock.json

---------

Co-authored-by: maxufeng <maxufeng@caict.ac.cn>
@nghaninn
fix: astron network update available chains (#948)
0c4e596 
* fix: astron network update available chains

* chore: fix linting
@nghaninn
fix: xdc rpc url (#950)
4d844aa
@rongquan1
fix: metamask unconnected accounts error (#953)
220e4d1
@nghaninn @rongquan1
feat: update website to show case v5 token registry (#959)
5bee4bc 
* feat: ui update (#954)

* feat: ui update

* fix: align text

* fix: v5 contract get escrow address (#957)

* fix: resolve v5 renamed function error

* chore: update comment

* chore: resolve package-lock

* fix: update v5 url (#958)

---------

Co-authored-by: rongquan1 <85145303+rongquan1@users.noreply.github.com>
@nghaninn
fix: tr v5 dev url (#960)
a96dba0
@rongquan1
feat: removal of hedera network (#962)
e484d9b
@rongquan1
fix: rpc guide link (#964)
b9771c5 
* fix: rpc guide link

* fix: increase jest timeout
@nghaninn
fix: env (#972)
6c13f60 
* fix: env

* fix: update env variable

* chore: update package-lock

* ci: fix package-lock

* chore: remove infura project id

* fix: ci

* chore: upgrade pkgs

* ci: fix testcafe

* fix: ci
@RishabhS7
fix: add allowed origins (#974)
36644ba
@nghaninn
fix: sri (#975)
a2c01b8
@snyk-bot
fix: package.json & package-lock.json to reduce vulnerabilities
021e1a8 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-BRACES-6838727
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
- https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728
- https://snyk.io/vuln/SNYK-JS-NANOID-8492085
@netlify
Copy link

netlify bot commented Jan 30, 2025
edited
Loading

Deploy Preview for reference-implementation ready!

Name Link
🔨 Latest commit 021e1a8
🔍 Latest deploy log https://app.netlify.com/sites/reference-implementation/deploys/679af4d1d6f2470008e96ae7
😎 Deploy Preview https://deploy-preview-977--reference-implementation.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@netlify
Copy link

netlify bot commented Jan 30, 2025
edited
Loading

Deploy Preview for tradetrust-dev ready!

Name Link
🔨 Latest commit 021e1a8
🔍 Latest deploy log https://app.netlify.com/sites/tradetrust-dev/deploys/679af4d11ce80c0008631b25
😎 Deploy Preview https://deploy-preview-977--tradetrust-dev.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@tradetrustimda @RishabhS7 @nghaninn @maxufeng @rongquan1 @snyk-bot

Comments