Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade: vue, apexcharts, axios, bootstrap, datatables.net-responsive, datatables.net-select, datatables.net-vue3, sweetalert2, vue-router, vue-sweetalert2, vue3-apexcharts #1

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade: vue, apexcharts, axios, bootstrap, datatables.net-responsive, datatables.net-select, datatables.net-vue3, sweetalert2, vue-router, vue-sweetalert2, vue3-apexcharts #1

wants to merge 1 commit into from

Conversation

IT21298912
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade multiple dependencies.

👯‍♂ The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name Versions Released on

vue
from 3.3.4 to 3.4.38 | 59 versions ahead of your current version | a month ago
on 2024-08-15
apexcharts
from 3.42.0 to 3.52.0 | 17 versions ahead of your current version | a month ago
on 2024-08-05
axios
from 1.5.0 to 1.7.5 | 19 versions ahead of your current version | 21 days ago
on 2024-08-23
bootstrap
from 5.3.1 to 5.3.3 | 2 versions ahead of your current version | 7 months ago
on 2024-02-20
datatables.net-responsive
from 2.5.0 to 2.5.1 | 1 version ahead of your current version | 7 months ago
on 2024-02-19
datatables.net-select
from 1.7.0 to 1.7.1 | 1 version ahead of your current version | 7 months ago
on 2024-02-19
datatables.net-vue3
from 2.1.2 to 2.1.3 | 1 version ahead of your current version | a year ago
on 2023-08-16
sweetalert2
from 11.7.32 to 11.12.4 | 19 versions ahead of your current version | a month ago
on 2024-08-01
vue-router
from 4.2.4 to 4.4.3 | 15 versions ahead of your current version | a month ago
on 2024-08-06
vue-sweetalert2
from 5.0.5 to 5.0.11 | 4 versions ahead of your current version | 3 months ago
on 2024-06-04
vue3-apexcharts
from 1.4.4 to 1.5.3 | 4 versions ahead of your current version | 4 months ago
on 2024-05-21

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Cross-site Request Forgery (CSRF)
SNYK-JS-AXIOS-6032459		 479 Proof of Concept
high severity Prototype Pollution
SNYK-JS-AXIOS-6144788		 479 No Known Exploit
high severity Server-side Request Forgery (SSRF)
SNYK-JS-AXIOS-7361793		 479 Proof of Concept
high severity Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137		 479 Proof of Concept
medium severity Improper Input Validation
SNYK-JS-POSTCSS-5926692		 479 No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-AXIOS-6124857		 479 Proof of Concept
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-6444610		 479 Proof of Concept
Release notes
Package name: vue
  • 3.4.38 - 2024-08-15

    For stable releases, please refer to CHANGELOG.md for details.
    For pre-releases, please refer to CHANGELOG.md of the minor branch.

  • 3.4.37 - 2024-08-08

    For stable releases, please refer to CHANGELOG.md for details.
    For pre-releases, please refer to CHANGELOG.md of the minor branch.

  • 3.4.36 - 2024-08-06

    For stable releases, please refer to CHANGELOG.md for details.
    For pre-releases, please refer to CHANGELOG.md of the minor branch.

  • 3.4.35 - 2024-07-31

    For stable releases, please refer to CHANGELOG.md for details.
    For pre-releases, please refer to CHANGELOG.md of the minor branch.

  • 3.4.34 - 2024-07-24

    For stable releases, please refer to CHANGELOG.md for details.
    For pre-releases, please refer to CHANGELOG.md of the minor branch.

  • 3.4.33 - 2024-07-19
  • 3.4.32 - 2024-07-17
  • 3.4.31 - 2024-06-28
  • 3.4.30 - 2024-06-22
  • 3.4.29 - 2024-06-14
  • 3.4.28 - 2024-06-14
  • 3.4.27 - 2024-05-07
  • 3.4.26 - 2024-04-29
  • 3.4.25 - 2024-04-24
  • 3.4.24 - 2024-04-22
  • 3.4.23 - 2024-04-16
  • 3.4.22 - 2024-04-15
  • 3.4.21 - 2024-02-28
  • 3.4.20 - 2024-02-26
  • 3.4.19 - 2024-02-13
  • 3.4.18 - 2024-02-09
  • 3.4.17 - 2024-02-09
  • 3.4.16 - 2024-02-08
  • 3.4.15 - 2024-01-18
  • 3.4.14 - 2024-01-15
  • 3.4.13 - 2024-01-13
  • 3.4.12 - 2024-01-13
  • 3.4.11 - 2024-01-12
  • 3.4.10 - 2024-01-11
  • 3.4.9 - 2024-01-11
  • 3.4.8 - 2024-01-10
  • 3.4.7 - 2024-01-09
  • 3.4.6 - 2024-01-08
  • 3.4.5 - 2024-01-04
  • 3.4.4 - 2024-01-03
  • 3.4.3 - 2023-12-30
  • 3.4.2 - 2023-12-30
  • 3.4.1 - 2023-12-30
  • 3.4.0 - 2023-12-29
  • 3.4.0-rc.3 - 2023-12-27
  • 3.4.0-rc.2 - 2023-12-26
  • 3.4.0-rc.1 - 2023-12-25
  • 3.4.0-beta.4 - 2023-12-19
  • 3.4.0-beta.3 - 2023-12-16
  • 3.4.0-beta.2 - 2023-12-14
  • 3.4.0-beta.1 - 2023-12-13
  • 3.4.0-alpha.4 - 2023-12-04
  • 3.4.0-alpha.3 - 2023-11-28
  • 3.4.0-alpha.2 - 2023-11-27
  • 3.4.0-alpha.1 - 2023-10-28
  • 3.3.13 - 2023-12-19
  • 3.3.12 - 2023-12-16
  • 3.3.11 - 2023-12-08
  • 3.3.10 - 2023-12-04
  • 3.3.9 - 2023-11-25
  • 3.3.8 - 2023-11-06
  • 3.3.7 - 2023-10-24
  • 3.3.6 - 2023-10-20
  • 3.3.5 - 2023-10-20
  • 3.3.4 - 2023-05-18
from vue GitHub release notes
Package name: apexcharts
  • 3.52.0 - 2024-08-05

    What's Changed

    • fix #1339; tooltip.enabledOnSeries bugfix in irregular time series
    • fix #4600; show percentage in 100% stacked bar chart
    • fix #4067; incorrect x-axis labels for numeric x-axis for small dataset
    • fixes #4579; heatmap legend color issue
    • feat(ci): added continuous integration tests by @ Sebastian-Webster in #4577
    • Add null checks on gridRect to avoid safari error by @ Nikkitory in #4599

    New Contributors

    Full Changelog: v3.51.0...v3.52.0

  • 3.51.0 - 2024-07-21

    What's Changed

    ✨ More marker shapes

    hswil69ah

    Full Changelog: v3.50.0...v3.51.0

  • 3.50.0 - 2024-07-05

    What's Changed

    • Refactor markers code for generating new markers shapes (plus, cross, line)
    Screenshot 2024-07-05 at 11 27 12 PM

    New Contributors

    Full Changelog: v3.49.2...v3.50.0

  • 3.49.2 - 2024-06-25

    What's Changed

    New Contributors

    Full Changelog: v3.49.1...v3.49.2

  • 3.49.1 - 2024-05-12

    🆕 Enhancements

    basic-slope-chart

    🐞 Bug fixes

    • Fix issue #4216: grid padding calculation to support array of stroke widths, thanks @ veryinsanee
    • Fix heatmap yaxis offset #2033, thanks @ cart-before-horse
    • FIx types (yaxis.seriesName as an Array), thanks @ j2ghz
    • Remove redundant graphics.move() from end of lower rangeArea paths. - thanks @ rosco54
    • Fix #4386; pie chart size issue when given in percentage
    • Fix #3827 - y-axis tooltip value in reversed
    • Fix #4348 - dumbbell chart fix for timescale xaxis
    • Fix #2251 - pie chart dataPointIndex when clicked
    • Fix #4206 - datalabels in timeline chart
    • Revert PR #4240
  • 3.49.0 - 2024-04-21

    🐞 Bug fixes

    • Fix gradient fill glitches for series with nulls - by @ rosco54
    • Fix point annotation still visible when referenced series is collapsed. - by @ rosco54
    • Additional fixes for indexing errors using yaxis-series mappings after - by @ rosco54
    • Fixed Issue #3525. - by @ rosco54
    • added color evaluation function in Bar.js under stroke property - by @ Digvijayrao-KF
    • Radar chart bugfix #4371
    • Update zh-tw.json - by @ iblislin
    • Fixed #4402 by @ rosco54
  • 3.48.0 - 2024-03-19

    🆕 Enhancements

    • Provide a "step before" version of the current "step after" line chart; Fixes #4313
    • Use ShadowRoot getElementById() when in ShadowDOM; Thanks @ cyraid

    🐞 Bug fixes

    • Fixes #4323 (multiple y-axis scale fixes for backward compatibility)
    • Zoomed scale fixes - In zoomed charts, ensure the Y axis scale fits the full min..max range of Y values
    • Fix css nonce attribute
    • Improve grid-rect to prevent bar overflowing on x-axis
    • When chart is type 'bar', ensure reference to zero is maintained
    • Fixes #2757 (annotation overflow)
    • Fixes #3073 (annotation overflow)
    • Fixes #3421 (annotation overflow)
    • Fixes #3553 (annotation overflow)
    • Fixes #4081 (x-axis annotation fix in sparkline)

    Thanks @ rosco54 for multiple y-axis scale fixes

  • 3.47.0 - 2024-03-08

    🆕 Enhancements

    • Map multiple series to the same y-axis scales (in a multi-axes chart) - fixes #4237

    🐞 Bug fixes

    • Area chart gradient drawing glitch; fixes #4271
    • Point annotation fix when y-axis is not present (in case of sparkline or hidden y-axis)
    • When chart is type 'bar', ensure reference to zero is maintained

    Thanks @ rosco54 for y-axis scale improvements

  • 3.46.0 - 2024-02-17

    🆕 Enhancements

    • Improve the y-axis scale tick generation - Thanks @ rosco54
    • Added "+" and "x" markers - Thanks @ MiguelsPizza
    • Add Belarusan cyrilic and latin locale - Thanks @ hrynko

    🐞 Bug fixes

    • Fix #4167 - shadow bug in multi-series chart
    • Fix #4242 - allow labels with Invalid text
  • 3.45.2 - 2024-01-21

    🆕 Enhancements

    • Update pt.json - Thanks @ artur309
    • Add border-radius to treemap; fixes #4170

    🐞 Bug fixes

    • Fix the range-bar drawing bug when the value is 0
    • Discard initialXRatio in normal category bar charts - fixes #4134
    • Bring back original curve: smooth option for stroke as multiple people reported issues with monotoneCubic curve.
  • 3.45.1 - 2023-12-22
  • 3.45.0 - 2023-12-15
  • 3.44.2 - 2023-12-05
  • 3.44.1 - 2023-12-03
  • 3.44.0 - 2023-10-17
  • 3.43.2-0 - 2023-10-12
  • 3.43.0 - 2023-09-30
  • 3.42.0 - 2023-08-25
from apexcharts GitHub release notes
Package name: axios

@snyk-bot
fix: upgrade multiple dependencies with Snyk
2e63eba 
Snyk has created this PR to upgrade:
  - vue from 3.3.4 to 3.4.38.
    See this package in npm: https://www.npmjs.com/package/vue
  - apexcharts from 3.42.0 to 3.52.0.
    See this package in npm: https://www.npmjs.com/package/apexcharts
  - axios from 1.5.0 to 1.7.5.
    See this package in npm: https://www.npmjs.com/package/axios
  - bootstrap from 5.3.1 to 5.3.3.
    See this package in npm: https://www.npmjs.com/package/bootstrap
  - datatables.net-responsive from 2.5.0 to 2.5.1.
    See this package in npm: https://www.npmjs.com/package/datatables.net-responsive
  - datatables.net-select from 1.7.0 to 1.7.1.
    See this package in npm: https://www.npmjs.com/package/datatables.net-select
  - datatables.net-vue3 from 2.1.2 to 2.1.3.
    See this package in npm: https://www.npmjs.com/package/datatables.net-vue3
  - sweetalert2 from 11.7.32 to 11.12.4.
    See this package in npm: https://www.npmjs.com/package/sweetalert2
  - vue-router from 4.2.4 to 4.4.3.
    See this package in npm: https://www.npmjs.com/package/vue-router
  - vue-sweetalert2 from 5.0.5 to 5.0.11.
    See this package in npm: https://www.npmjs.com/package/vue-sweetalert2
  - vue3-apexcharts from 1.4.4 to 1.5.3.
    See this package in npm: https://www.npmjs.com/package/vue3-apexcharts

See this project in Snyk:
https://app.snyk.io/org/it21298912/project/bbc559c9-e65b-4a7e-8830-a1ce5f35c222?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@IT21298912 @snyk-bot