Skip to content

[Snyk] Security upgrade jsoneditor from 5.5.11 to 9.0.2 #15

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade jsoneditor from 5.5.11 to 9.0.2 #15

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Jul 4, 2020

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity Cross-site Scripting (XSS)
SNYK-JS-JSONEDITOR-575026		 Yes No Known Exploit
Commit messages
Package name: jsoneditor The new version differs by 250 commits.
  • fb99472 Publish v9.0.2
  • 400b1ee Small styling fix
  • 87bc7b2 Fix #1029: XSS vulnerabilities
  • 8826c6f Fix #1017: unable to style the color of a value containing a color. See also #1028
  • 394432d Publish v9.0.1
  • 3a5ddb2 Update devDependencies
  • b6235a8 Fix #1027: create IE11 Array polyfills `find` and `findIndex` in such a way that they are not iterable
  • 70a2f94 Update history
  • d71c7b4 FIXE: powered by ace link is updated to https://ace.c9.io/ (#1018)
  • 3048e71 Bump websocket-extensions in /examples/react_advanced_demo (#1007)
  • 2d38d0b Bump websocket-extensions from 0.1.3 to 0.1.4 in /examples/react_demo (#1006)
  • ae84c74 Update devDependencies
  • f94589c Update devDependencies
  • 901b8aa Describe `onFocus` and `onBlur` in the docs (see #612)
  • 1b259e7 Publish v9.0.0
  • 62025c4 Implemented option `limitDragging`, see #962
  • c2fa821 Update example 20 to also show how to customize font color (See #990)
  • bd69cf9 Remove greenkeeper badge
  • 71e2095 Merge remote-tracking branch 'origin/develop' into develop
  • 27eb02a Publish v8.6.8
  • 9fbd352 Update devDependencies
  • ad021ec Fix #936: too many return characters inserted when pasting formatted text from OpenOffice
  • 81513d0 Bump uglify-js from 3.9.1 to 3.9.2 (#980)
  • 79beb26 Publish v8.6.7

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

@snyk-bot
fix: package.json to reduce vulnerabilities
5f485ee 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSONEDITOR-575026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snyk-bot