[Snyk] Upgrade: , eslint, lucide-react, next-auth, novel, prettier-plugin-tailwindcss, sharp

[patooworld]

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

@vercel/blob
from 0.15.1 to 0.23.4 | 35 versions ahead of your current version | 3 months ago
on 2024-07-01
eslint
from 8.53.0 to 8.57.0 | 4 versions ahead of your current version | 7 months ago
on 2024-02-23
lucide-react
from 0.292.0 to 0.437.0 | 139 versions ahead of your current version | 21 days ago
on 2024-08-31
next-auth
from 4.24.5 to 4.24.7 | 2 versions ahead of your current version | 6 months ago
on 2024-03-07
novel
from 0.1.22 to 0.5.0 | 21 versions ahead of your current version | 2 months ago
on 2024-07-25
prettier-plugin-tailwindcss
from 0.5.14 to 0.6.6 | 7 versions ahead of your current version | a month ago
on 2024-08-09
sharp
from 0.32.6 to 0.33.5 | 24 versions ahead of your current version | a month ago
on 2024-08-16

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ZOD-5925617	66	Proof of Concept
	HTTP Request Smuggling SNYK-JS-NEXT-6828456	66	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NEXT-7442548	66	No Known Exploit
	Improper Input Validation SNYK-JS-POSTCSS-5926692	66	No Known Exploit
	Improper Authorization SNYK-JS-UNDICI-6564964	66	No Known Exploit
	Permissive Cross-domain Policy with Untrusted Domains SNYK-JS-UNDICI-6252336	66	No Known Exploit
	Improper Access Control SNYK-JS-UNDICI-6564963	66	No Known Exploit
	Improper Authorization SNYK-JS-UNDICI-6564964	66	No Known Exploit
	Information Exposure SNYK-JS-UNDICI-5962466	66	No Known Exploit
	Permissive Cross-domain Policy with Untrusted Domains SNYK-JS-UNDICI-6252336	66	No Known Exploit
	Improper Access Control SNYK-JS-UNDICI-6564963	66	No Known Exploit

Release notes

Package name: @vercel/blob

• 0.23.4 - 2024-07-01
  

  Patch Changes

  • 30401f4: fix(blob): Throw when trying to upload a plain JS object
• 0.23.3 - 2024-05-21
• 0.23.3-e14181a4-20240517133706 - 2024-05-17
• 0.23.2 - 2024-04-18
• 0.23.1 - 2024-04-18
• 0.23.0 - 2024-04-17
• 0.23.0-f6147d74-20240411135804 - 2024-04-11
• 0.23.0-a6b0ece4-20240411134808 - 2024-04-11
• 0.22.3 - 2024-04-08
• 0.22.2 - 2024-04-04
• 0.22.1 - 2024-02-21
• 0.22.1-0cb7edd4-20240221003206 - 2024-02-21
• 0.22.0 - 2024-02-12
• 0.21.0 - 2024-02-06
• 0.20.0 - 2024-01-30
• 0.19.0 - 2024-01-18
• 0.19.0-8de77fbc-20240116145546 - 2024-01-16
• 0.18.0 - 2024-01-15
• 0.17.1 - 2024-01-15
• 0.17.0 - 2024-01-12
• 0.17.0-c2239f49-20240111125313 - 2024-01-11
• 0.17.0-c2239f49-20231218111237 - 2023-12-18
• 0.16.2 - 2024-01-12
• 0.16.1 - 2023-12-13
• 0.16.1-b2c49a85-20231208201339 - 2023-12-08
• 0.16.1-aee432c5-20231208105426 - 2023-12-08
• 0.16.1-7ad3a84d-20231208223839 - 2023-12-08
• 0.16.1-2e8490f0-20231213124417 - 2023-12-13
• 0.16.1-190f79db-20231208213101 - 2023-12-08
• 0.16.1-14fade3a-20231208224408 - 2023-12-08
• 0.16.0 - 2023-12-08
• 0.16.0-a06e5b22-20231214173003 - 2023-12-14
• 0.16.0-99c35286-20231214174115 - 2023-12-14
• 0.16.0-30f46919-20231207123038 - 2023-12-07
• 0.16.0-20f0b999-20231207091928 - 2023-12-07
• 0.15.1 - 2023-11-14

from @vercel/blob GitHub release notes

Package name: eslint

• 8.57.0 - 2024-02-23
  

  Features

  • 1120b9b feat: Add loadESLint() API method for v8 (#18098) (Nicholas C. Zakas)
  • dca7d0f feat: Enable eslint.config.mjs and eslint.config.cjs (#18066) (Nitin Kumar)

  Bug Fixes

  • 2196d97 fix: handle absolute file paths in FlatRuleTester (#18064) (Nitin Kumar)
  • 69dd1d1 fix: Ensure config keys are printed for config errors (#18067) (Nitin Kumar)
  • 9852a31 fix: deep merge behavior in flat config (#18065) (Nitin Kumar)
  • 4c7e9b0 fix: allow circular references in config (#18056) (Milos Djermanovic)

  Documentation

  • 84922d0 docs: Show prerelease version in dropdown (#18139) (Nicholas C. Zakas)
  • 5b8c363 docs: Switch to Ethical Ads (#18117) (Milos Djermanovic)
  • 77dbfd9 docs: show NEXT in version selectors (#18052) (Milos Djermanovic)

  Chores

  • 1813aec chore: upgrade @ eslint/js@8.57.0 (#18143) (Milos Djermanovic)
  • 5c356bb chore: package.json update for @ eslint/js release (Jenkins)
  • f4a1fe2 test: add more tests for ignoring files and directories (#18068) (Nitin Kumar)
  • 42c0aef ci: Enable CI for v8.x branch (#18047) (Milos Djermanovic)
• 8.56.0 - 2023-12-15
  

  Features

  • 0dd9704 feat: Support custom severity when reporting unused disable directives (#17212) (Bryan Mishkin)
  • 31a7e3f feat: fix no-restricted-properties false negatives with unknown objects (#17818) (Arka Pratim Chaudhuri)

  Bug Fixes

  • 7d5e5f6 fix: TypeError: fs.exists is not a function on read-only file system (#17846) (Francesco Trotta)
  • 74739c8 fix: suggestion with invalid syntax in no-promise-executor-return rule (#17812) (Bryan Mishkin)

  Documentation

  • 9007719 docs: update link in ways-to-extend.md (#17839) (Amel SELMANE)
  • 3a22236 docs: Update README (GitHub Actions Bot)
  • 54c3ca6 docs: fix migration-guide example (#17829) (Tanuj Kanti)
  • 4391b71 docs: check config comments in rule examples (#17815) (Francesco Trotta)
  • fd28363 docs: remove mention about ESLint stylistic rules in readme (#17810) (Zwyx)
  • 48ed5a6 docs: Update README (GitHub Actions Bot)

  Chores

  • ba6af85 chore: upgrade @ eslint/js@8.56.0 (#17864) (Milos Djermanovic)
  • 60a531a chore: package.json update for @ eslint/js release (Jenkins)
  • ba87a06 chore: update dependency markdownlint to ^0.32.0 (#17783) (renovate[bot])
  • 9271d10 chore: add GitHub issue template for docs issues (#17845) (Josh Goldberg ✨)
  • 70a686b chore: Convert rule tests to FlatRuleTester (#17819) (Nicholas C. Zakas)
  • f3a599d chore: upgrade eslint-plugin-unicorn to v49.0.0 (#17837) (唯然)
  • 905d4b7 chore: upgrade eslint-plugin-eslint-plugin v5.2.1 (#17838) (唯然)
  • 4d7c3ce chore: update eslint-plugin-n v16.4.0 (#17836) (唯然)
  • fd0c60c ci: unpin Node.js 21.2.0 (#17821) (Francesco Trotta)
• 8.55.0 - 2023-12-01
  

  Features

  • 8c9e6c1 feat: importNamePattern option in no-restricted-imports (#17721) (Tanuj Kanti)

  Documentation

  • 83ece2a docs: fix typo --rules -> --rule (#17806) (OKURA Masafumi)
  • fffca5c docs: remove "Open in Playground" buttons for removed rules (#17791) (Francesco Trotta)
  • a6d9442 docs: fix correct/incorrect examples of rules (#17789) (Tanuj Kanti)
  • 383e999 docs: update and fix examples for no-unused-vars (#17788) (Tanuj Kanti)
  • 5a8efd5 docs: add specific stylistic rule for each deprecated rule (#17778) (Etienne)

  Chores

  • eb8950c chore: upgrade @ eslint/js@8.55.0 (#17811) (Milos Djermanovic)
  • 93df384 chore: package.json update for @ eslint/js release (Jenkins)
  • fe4b954 chore: upgrade @ eslint/eslintrc@2.1.4 (#17799) (Milos Djermanovic)
  • bd8911d ci: pin Node.js 21.2.0 (#17809) (Milos Djermanovic)
  • b29a16b chore: fix several cli tests to run in the intended flat config mode (#17797) (Milos Djermanovic)
  • de165c1 chore: remove unused config-extends fixtures (#17781) (Milos Djermanovic)
  • d4304b8 chore: remove formatting/stylistic rules from new rule templates (#17780) (Francesco Trotta)
  • 21024fe chore: check rule examples for syntax errors (#17718) (Francesco Trotta)
• 8.54.0 - 2023-11-17
  

  Features

  • a7a883b feat: for-direction rule add check for condition in reverse order (#17755) (Angelo Annunziata)
  • 1452dc9 feat: Add suggestions to no-console (#17680) (Joel Mathew Koshy)
  • 21ebf8a feat: update no-array-constructor rule (#17711) (Francesco Trotta)

  Bug Fixes

  • 98926e6 fix: Ensure that extra data is not accidentally stored in the cache file (#17760) (Milos Djermanovic)
  • e8cf9f6 fix: Make dark scroll bar in dark theme (#17753) (Pavel)
  • 3cbeaad fix: Use cwd constructor option as config basePath in Linter (#17705) (Milos Djermanovic)

  Documentation

  • becfdd3 docs: Make clear when rules are removed (#17728) (Nicholas C. Zakas)
  • 05d6e99 docs: update "Submit a Pull Request" page (#17712) (Francesco Trotta)
  • eb2279e docs: display info about deprecated rules (#17749) (Percy Ma)
  • d245326 docs: Correct working in migrating plugin docs (#17722) (Filip Tammergård)

  Chores

  • d644de9 chore: upgrade @ eslint/js@8.54.0 (#17773) (Milos Djermanovic)
  • 1e6e314 chore: package.json update for @ eslint/js release (Jenkins)
  • 6fb8805 chore: Fixed grammar in issue_templates/rule_change (#17770) (Joel Mathew Koshy)
  • 85db724 chore: upgrade markdownlint to 0.31.1 (#17754) (Nitin Kumar)
  • 6d470d2 chore: update dependency recast to ^0.23.0 (#17736) (renovate[bot])
  • b7121b5 chore: update dependency markdownlint-cli to ^0.37.0 (#17735) (renovate[bot])
  • 633b9a1 chore: update dependency regenerator-runtime to ^0.14.0 (#17739) (renovate[bot])
  • acac16f chore: update dependency vite-plugin-commonjs to ^0.10.0 (#17740) (renovate[bot])
  • ba8ca7e chore: add .github/renovate.json5 (#17567) (Josh Goldberg ✨)
• 8.53.0 - 2023-11-03
  

  Features

  • 528e1c0 feat: Deprecate formatting rules (#17696) (Nicholas C. Zakas)
  • c0b11dd feat: Add suggestions for no-prototype-builtins (#17677) (Yonathan Randolph)

  Bug Fixes

  • 1ad6257 fix: ensure that exit code for fatal errors is not overwritten (#17683) (Milos Djermanovic)
  • b329ea7 fix: add ; after JSX nodes in no-object-constructor autofix (#17672) (Francesco Trotta)

  Documentation

  • ab8c60d docs: change position of return to top button (#17688) (Tanuj Kanti)
  • 4fc44c0 docs: update twitter icon to new X icon (#17687) (Tanuj Kanti)
  • 4164b2c docs: Update README (GitHub Actions Bot)
  • 8651895 docs: Fix tabs in rule examples (#17653) (Francesco Trotta)
  • 3aec1c5 docs: explained rule fixers and suggestions (#17657) (Josh Goldberg ✨)

  Chores

  • ba4d4d5 chore: remove metascraper (#17707) (Milos Djermanovic)
  • 0d07338 chore: Update dependencies (#17706) (Milos Djermanovic)
  • 93256a3 chore: package.json update for @ eslint/js release (ESLint Jenkins)
  • 485ec7d test: fix ESLint tests for caching (#17699) (Milos Djermanovic)
  • db06a7f ci: bump actions/setup-node from 3 to 4 (#17676) (dependabot[bot])
  • 994596b ci: run tests in Node.js 21 (#17673) (Francesco Trotta)

from eslint GitHub release notes

Package name: lucide-react

• 0.437.0 - 2024-08-31
  

  Modified Icons 🔨

  • send-horizontal (#2346) by @ karsa-mistmere
  • send (#2346) by @ karsa-mistmere
• 0.436.0 - 2024-08-25
  

  Modified Icons 🔨

  • backpack (#2406) by @ jguddas
• 0.435.0 - 2024-08-23
• 0.434.0 - 2024-08-23
• 0.433.0 - 2024-08-23
• 0.432.0 - 2024-08-23
• 0.429.0 - 2024-08-21
• 0.428.0 - 2024-08-16
• 0.427.0 - 2024-08-09
• 0.426.0 - 2024-08-08
• 0.425.0 - 2024-08-08
• 0.424.0 - 2024-08-02
• 0.423.0 - 2024-08-02
• 0.422.0 - 2024-08-02
• 0.421.0 - 2024-08-02
• 0.420.0 - 2024-08-02
• 0.419.0 - 2024-08-01
• 0.418.0 - 2024-07-31
• 0.417.0 - 2024-07-28
• 0.416.0 - 2024-07-25
• 0.415.0 - 2024-07-25
• 0.414.0 - 2024-07-22
• 0.413.0 - 2024-07-22
• 0.412.0 - 2024-07-20
• 0.411.0 - 2024-07-19
• 0.410.0 - 2024-07-19
• 0.409.0 - 2024-07-19
• 0.408.0 - 2024-07-12
• 0.407.0 - 2024-07-09
• 0.406.0 - 2024-07-09
• 0.405.0 - 2024-07-09
• 0.404.0 - 2024-07-09
• 0.403.0 - 2024-07-08
• 0.402.0 - 2024-07-08
• 0.401.0 - 2024-07-07
• 0.400.0 - 2024-07-01
• 0.399.0 - 2024-06-28
• 0.398.0 - 2024-06-28
• 0.397.0 - 2024-06-26
• 0.396.0 - 2024-06-21
• 0.395.0 - 2024-06-14
• 0.394.0 - 2024-06-10
• 0.391.0 - 2024-06-10
• 0.390.0 - 2024-06-06
• 0.387.0 - 2024-06-06
• 0.386.0 - 2024-06-06
• 0.385.0 - 2024-06-06
• 0.384.0 - 2024-06-06
• 0.383.0 - 2024-06-02
• 0.382.0 - 2024-06-02
• 0.381.0 - 2024-05-30
• 0.380.0 - 2024-05-30
• 0.379.0 - 2024-05-21
• 0.378.0 - 2024-05-03
• 0.377.0 - 2024-05-02
• 0.376.0 - 2024-04-26
• 0.375.0 - 2024-04-26
• 0.374.0 - 2024-04-26
• 0.373.0 - 2024-04-24
• 0.372.0 - 2024-04-19
• 0.371.0 - 2024-04-18
• 0.370.0 - 2024-04-17
• 0.369.0 - 2024-04-17
• 0.368.0 - 2024-04-12
• 0.367.0 - 2024-04-10
• 0.366.0 - 2024-04-09
• 0.365.0 - 2024-04-05
• 0.364.0 - 2024-04-01
• 0.363.0 - 2024-03-22
• 0.362.0 - 2024-03-22
• 0.361.0 - 2024-03-22
• 0.360.0 - 2024-03-21
• 0.359.0 - 2024-03-18
• 0.358.0 - 2024-03-14
• 0.357.0 - 2024-03-13
• 0.356.0 - 2024-03-11
• 0.355.0 - 2024-03-11
• 0.354.0 - 2024-03-09
• 0.353.0 - 2024-03-09
• 0.352.0 - 2024-03-08
• 0.351.0 - 2024-03-08
• 0.350.0 - 2024-03-07
• 0.349.0 - 2024-03-06
• 0.348.0 - 2024-03-06
• 0.347.0 - 2024-03-06
• 0.346.0 - 2024-03-06
• 0.345.0 - 2024-03-06
• 0.344.0 - 2024-03-01
• 0.343.0 - 2024-02-28
• 0.342.0 - 2024-02-28
• 0.341.0 - 2024-02-26
• 0.340.0 - 2024-02-25
• 0.339.0 - 2024-02-25
• 0.338.0 - 2024-02-23
• 0.337.0 - 2024-02-23
• 0.336.0 - 2024-02-21
• 0.335.0 - 2024-02-20
• 0.334.0 - 2024-02-19
• 0.333.0 - 2024-02-19
• 0.332.0 - 2024-02-19
• 0.331.0 - 2024-02-15
• 0.330.0 - 2024-02-12
• 0.329.0 - 2024-02-12
• 0.328.0 - 2024-02-12
• 0.327.0 - 2024-02-12
• 0.326.0 - 2024-02-12
• 0.325.0 - 2024-02-11
• 0.324.0 - 2024-02-11
• 0.323.0 - 2024-02-05
• 0.322.0 - 2024-02-05
• 0.321.0 - 2024-02-01
• 0.320.0 - 2024-01-31
• 0.319.0 - 2024-01-30
• 0.318.0 - 2024-01-30
• 0.317.0 - 2024-01-29
• 0.316.0 - 2024-01-26
• 0.315.0 - 2024-01-25
• 0.314.0 - 2024-01-21
• 0.313.0 - 2024-01-21
• 0.312.0 - 2024-01-17
• 0.311.0 - 2024-01-16
• 0.310.0 - 2024-01-16
• 0.309.0 - 2024-01-10
• 0.308.0 - 2024-01-09
• 0.307.0 - 2024-01-06
• 0.306.0 - 2024-01-05
• 0.305.0 - 2024-01-05
• 0.304.0 - 2024-01-04
• 0.303.0 - 2023-12-28
• 0.302.0 - 2023-12-25
• 0.301.0 - 2023-12-24
• 0.300.0 - 2023-12-22
• 0.299.0 - 2023-12-20
• 0.298.0 - 2023-12-16
• 0.297.0 - 2023-12-15
• 0.296.0 - 2023-12-15
• 0.295.0 - 2023-12-13
• 0.294.0 - 2023-11-28
• 0.293.0 - 2023-11-24
• 0.292.0 - 2023-11-03

from lucide-react GitHub release notes

Package name: next-auth

• 4.24.7 - 2024-03-07
• 4.24.6 - 2024-02-14
• 4.24.5 - 2023-11-10

from next-auth GitHub release notes

Package name: novel

• 0.5.0 - 2024-07-25
  

  Breaking Changes

  • simpleExtensions is no longer exported, instead you have to configure each extension manually
  

  What's Changed

  • fix : bold text color + bold highlight color by @ MODSetter in #403
  • Fix: Wrap suggestionItems with by @ ziyaDev in #410
  • bug: Usage of editor.chain().focus() removes focus from tippy popover Fixes #412 by @ tautastic in #413
  • fix: remove default extensions and make them standalone exports by @ cristianrdu in #417
  • feature: add mathematics extension by

[cr-gpt]

Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information