Skip to content
This repository has been archived by the owner on Jun 4, 2024. It is now read-only.

[Snyk] Upgrade dotenv from 16.0.0 to 16.0.2 #26

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade dotenv from 16.0.0 to 16.0.2 #26

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to upgrade dotenv from 16.0.0 to 16.0.2.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 21 days ago, on 2022-08-30.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Open Redirect
SNYK-JS-GOT-2932019		 484/1000
Why? Has a fix available, CVSS 5.4		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: dotenv
  • 16.0.2 - 2022-08-30

    Version bump - patch 16.0.2

  • 16.0.1 - 2022-05-10

    Version bump - patch 16.0.1

  • 16.0.0 - 2022-02-02

    Remove multiline on option. Just works now

from dotenv GitHub release notes
Commit messages
Package name: dotenv
  • 0757a1b Version bump - patch 16.0.2
  • d8002ae Update README
  • 5691677 Update CHANGELOG
  • 03f50d5 Merge pull request #660 from lnasc256/fix/config-options
  • cf72d2b Match png to svg and compress
  • d1314a2 Add width to svg
  • 847c8ad Merge pull request #670 from LitoMore/use-svg-logo
  • 591604f Bring back PNG file and move SVG icon to root
  • 08f94ee Use SVG logo
  • 228c7b4 Update README
  • f32799c Update README
  • e085861 Update rate on openbase badge
  • e8ef07d amend to a3c1189a6087b70b0ebda925b0dcebea22cc1db2
  • a1c245e exporting env and cli options files +
  • 8b635d6 Update README with badge
  • b016108 Version bump - patch 16.0.1
  • 582afcd Update CHANGELOG
  • b5d6c02 Merge pull request #658 from motdotla/dev-dep-updates
  • f71fdcd Update various dev dependencies
  • 6be370b Update dev dependency @ types/node
  • 0318510 Update links in README
  • 1c2092c Change link
  • 578574c Update README
  • 5e2f74a Update README

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot