New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade helmet from 4.2.0 to 4.3.1 #1130

Merged

liangyuanruo merged 1 commit into develop from snyk-upgrade-a9c62611f4eb0c26fa7c86d0fc3ca7ff

Jan 19, 2021

Contributor

snyk-bot commented Jan 18, 2021

Snyk has created this PR to upgrade helmet from 4.2.0 to 4.3.1.

:sparkles: Snyk has automatically assigned this pull request, [set who gets assigned](https://app.snyk.io/org/open-government-products/project/d22bc45c-b5cc-4da5-be5a-73a96abf4e41/settings/integration?utm_source&#x3D;github&amp;utm_medium&#x3D;upgrade-pr/settings/integration).

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 2 versions ahead of your current version.
The recommended version was released 21 days ago, on 2020-12-27.

Release notes

Package name: helmet

4.3.1 - 2020-12-27
4.3.1
4.3.0 - 2020-12-27
4.3.0
4.2.0 - 2020-11-01
4.2.0

from helmet GitHub release notes

Commit messages

Package name: helmet

042ee40 4.3.1
41e0947 Update changelog for 4.3.1 release
5ca9792 Content-Security-Policy 3.3.1
f1afeb9 Fix TypeScript error
08b5f46 Stop double-running CI jobs
4a721ec 4.3.0
471400a Update changelog for 4.3.0 release
c6f4ba5 Content-Security-Policy 3.3.0
f4520bb Switch to GitHub Actions for CI
e1c989e Update devDependencies to latest versions
b7f841c npm run clean: avoid deprecation error
90da643 Add comma in SECURITY.md
6fd0fbd X-Frame-Options: use `switch` for clarity
383e83b Expect-CT: minor shortening of directive computation
cbc8bb6 Expect-CT and Strict-Transport-Security: shorten `maxAge` parsing
b05f151 Remove duplicate test for hidePoweredBy
74aa032 Remove verbosity comment
814055a Remove unnecessary undefined checks
0f9c53d Content-Security-Policy: allow `default-src` to be disabled
a0d5fc8 Content-Security-Policy: allow `default-src` to be disabled
05cb9fa Content-Security-Policy: mark an internal argument as Readonly
8c25dd0 Add noUncheckedIndexedAccess flag
1a2e828 Update devDependencies to latest versions
43d7a14 X-Frame-Options 4.0.0

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs


          fix: upgrade helmet from 4.2.0 to 4.3.1

1c2fb2f

Snyk has created this PR to upgrade helmet from 4.2.0 to 4.3.1.

See this package in npm:
https://www.npmjs.com/package/helmet

See this project in Snyk:
https://app.snyk.io/org/open-government-products/project/d22bc45c-b5cc-4da5-be5a-73a96abf4e41?utm_source=github&utm_medium=upgrade-pr

liangyuanruo approved these changes

View reviewed changes

liangyuanruo merged commit 4ca5c95 into develop

liangyuanruo deleted the snyk-upgrade-a9c62611f4eb0c26fa7c86d0fc3ca7ff branch

January 19, 2021 08:21

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet