Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade gatsby-plugin-mdx from 3.18.1 to 5.12.1 #1812

Closed
wants to merge 1 commit into from
Closed

[Snyk] Upgrade gatsby-plugin-mdx from 3.18.1 to 5.12.1 #1812

wants to merge 1 commit into from

Conversation

FengShangWuQi
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade gatsby-plugin-mdx from 3.18.1 to 5.12.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

  • The recommended version is 104 versions ahead of your current version.
  • The recommended version was released 25 days ago, on 2023-10-09.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-NTHCHECK-1586032		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept
Information Exposure
SNYK-JS-GATSBYPLUGINMDX-5671902		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: gatsby-plugin-mdx
  • 5.12.1 - 2023-10-09

    gatsby-source-graphql@5.12.1

  • 5.12.0 - 2023-08-24
  • 5.12.0-next.1 - 2023-07-03
  • 5.12.0-next.0 - 2023-06-15
  • 5.11.0 - 2023-06-15
  • 5.11.0-next.1 - 2023-06-05
  • 5.11.0-next.0 - 2023-05-16
  • 5.10.0 - 2023-05-16
  • 5.10.0-next.3 - 2023-05-03
  • 5.10.0-next.2 - 2023-04-27
  • 5.10.0-next.1 - 2023-04-19
  • 5.10.0-next.0 - 2023-04-18
  • 5.9.0 - 2023-04-18
  • 5.9.0-next.1 - 2023-04-06
  • 5.9.0-next.0 - 2023-03-21
  • 5.9.0-image-cdn-configurable.4 - 2023-04-11
  • 5.8.0 - 2023-03-21
  • 5.8.0-next.1 - 2023-03-14
  • 5.8.0-next.0 - 2023-02-16
  • 5.7.0 - 2023-02-21
  • 5.7.0-next.0 - 2023-02-03
  • 5.6.0 - 2023-02-07
  • 5.6.0-next.1 - 2023-01-26
  • 5.6.0-next.0 - 2023-01-19
  • 5.5.0 - 2023-01-24
  • 5.5.0-next.1 - 2023-01-17
  • 5.5.0-next.0 - 2023-01-05
  • 5.4.0 - 2023-01-10
  • 5.4.0-next.2 - 2023-01-04
  • 5.4.0-next.1 - 2022-12-14
  • 5.4.0-next.0 - 2022-12-08
  • 5.3.1 - 2022-12-14
  • 5.3.0 - 2022-12-13
  • 5.3.0-next.3 - 2022-12-07
  • 5.3.0-next.2 - 2022-12-06
  • 5.3.0-next.1 - 2022-12-01
  • 5.3.0-next.0 - 2022-11-25
  • 5.2.0 - 2022-11-25
  • 5.2.0-next.0 - 2022-11-17
  • 5.1.0 - 2022-11-22
  • 5.1.0-next.0 - 2022-11-08
  • 5.0.0 - 2022-11-08
  • 5.0.0-next.6 - 2022-11-04
  • 5.0.0-next.5 - 2022-10-25
  • 5.0.0-next.4 - 2022-10-24
  • 5.0.0-next.3 - 2022-10-20
  • 5.0.0-next.2 - 2022-10-20
  • 5.0.0-next.1 - 2022-10-18
  • 5.0.0-next.0 - 2022-10-12
  • 5.0.0-alpha-v5.d20221012t101120.57 - 2022-10-12
  • 5.0.0-alpha-v5.d20221010t183635.51 - 2022-10-10
  • 5.0.0-alpha-v5.d20221007t081809.41 - 2022-10-07
  • 5.0.0-alpha-v5.d20221005t111511.35 - 2022-10-05
  • 5.0.0-alpha-v5.25 - 2022-08-30
  • 5.0.0-alpha-v5.24 - 2022-08-30
  • 5.0.0-alpha-v5.16 - 2022-09-28
  • 5.0.0-alpha-v5.11 - 2022-09-14
  • 5.0.0-alpha-drupal-proxyurl.14 - 2022-11-22
  • 4.4.0 - 2022-12-07
  • 4.4.0-next.0 - 2022-09-22
  • 4.4.0-alpha-image-cdn-pathprefix.48 - 2022-10-07
  • 4.4.0-alpha-image-cdn-pathprefix.47 - 2022-10-07
  • 4.3.1-alpha-wordpress-image-err.27 - 2022-11-09
  • 4.3.1-alpha-wordpress-image-err.26 - 2022-11-09
  • 4.3.1-alpha-wordpress-image-err.25 - 2022-11-09
  • 4.3.0 - 2022-09-27
  • 4.3.0-next.4 - 2022-09-21
  • 4.3.0-next.3 - 2022-09-21
  • 4.3.0-next.2 - 2022-09-14
  • 4.3.0-next.1 - 2022-09-13
  • 4.3.0-next.0 - 2022-09-08
  • 4.2.1 - 2022-09-22
  • 4.2.0 - 2022-09-13
  • 4.2.0-next.1 - 2022-08-31
  • 4.2.0-next.0 - 2022-08-25
  • 4.2.0-alpha-v5.26 - 2022-09-04
  • 4.2.0-alpha-preview-gh-api.26 - 2022-09-08
  • 4.2.0-alpha-image-cdn-enc.24 - 2022-09-16
  • 4.2.0-alpha-image-cdn-enc.7 - 2022-09-13
  • 4.2.0-alpha-a5-peer.54 - 2022-09-14
  • 4.2.0-alpha-a5-peer.53 - 2022-09-14
  • 4.2.0-alpha-9689ff.25 - 2022-08-31
  • 4.1.1 - 2022-09-08
  • 4.1.0 - 2022-08-30
  • 4.1.0-next.1 - 2022-08-15
  • 4.1.0-next.0 - 2022-08-11
  • 4.0.0 - 2022-08-16
  • 4.0.0-rc.3 - 2022-07-27
  • 4.0.0-rc.2 - 2022-07-26
  • 4.0.0-rc.1 - 2022-07-25
  • 4.0.0-rc.0 - 2022-07-07
  • 4.0.0-next.1 - 2022-08-10
  • 4.0.0-next.0 - 2022-08-10
  • 4.0.0-alpha-v4.27 - 2022-06-01
  • 4.0.0-alpha-v4.25 - 2022-06-01
  • 3.21.0-next.1 - 2022-08-04
  • 3.21.0-next.0 - 2022-07-28
  • 3.20.0 - 2022-08-02
  • 3.20.0-next.2 - 2022-07-27
  • 3.20.0-next.1 - 2022-07-25
  • 3.20.0-next.0 - 2022-07-14
  • 3.19.0 - 2022-07-19
  • 3.19.0-next.1 - 2022-07-05
  • 3.19.0-next.0 - 2022-06-30
  • 3.18.1 - 2022-07-12
from gatsby-plugin-mdx GitHub release notes
Commit messages
Package name: gatsby-plugin-mdx
  • 1e8748c chore(release): Publish
  • f1a4107 chore(deps): upgrade sharp to latest v0.32.6 (#38374) (#38617)
  • 4dc464b chore(source-npm-package-search): bespoke treatment for `plugin-gatsby-cloud` and `source-contentful` (#38619) (#38622)
  • aff105b chore(release): Publish
  • 8061500 Update gatsby-contentful-plugin README (#38480) (#38607)
  • aefefa9 chore(release): Publish
  • 9ffed29 feat(gatsby-graphiql-explorer): lower minimum node version (#38577) (#38579)
  • d055a99 chore(release): Publish
  • 56ddcce fix(gatsby-adapter-netlify): handle cases with large cached _redirects and/or _headers files (#38559) (#38564)
  • 68be864 chore(release): Publish
  • dfcc546 Update gatsby-cloud-plugin README (#38479) (#38550)
  • 0642eb7 chore(release): Publish
  • 232ec13 fix(gatsby): don't break builds when using features unsupported by adapter (#38520) (#38521)
  • 4b082d3 chore(release): Publish
  • da050e5 fix(gatsby): fix api function compilation on Windows (#38489) (#38491)
  • b6f1a10 chore(release): Publish
  • 6a73ee1 fix: fix fetching adapters manifest from latest gatsby version (#38475) (#38482)
  • 1fe0cf1 chore(release): Publish
  • 1f9e806 fix: fix fetching adapters manifest from latest gatsby version
  • a1c87bc chore(release): Publish
  • b2d4aef feat(gatsby): Adapters (#38232)
  • 7a2778b fix(gatsby-source-contentful): handle nullable fields (#38358)
  • 2e08202 chore(docs): clarify react upgrade with --legacy-peer-deps (#38359)
  • e5126f9 fix(gatsby-source-wordpress): Set empty default alt tag for inline images (#38341)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@vercel Vercel
Copy link

vercel bot commented Nov 4, 2023
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
blog ❌ Failed (Inspect) Nov 4, 2023 0:24am
storybook ❌ Failed (Inspect) Nov 4, 2023 0:24am

@stale Stale
Copy link

stale bot commented Nov 11, 2023

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

@stale stale bot added the wontfix This will not be worked on label Nov 11, 2023
@stale stale bot closed this Nov 18, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
wontfix This will not be worked on
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@FengShangWuQi @snyk-bot