[Snyk] Upgrade enmap from 5.8.0 to 5.9.0 #3

snyk-bot · 2022-09-10T22:59:23Z

Snyk has created this PR to upgrade enmap from 5.8.0 to 5.9.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 15 versions ahead of your current version.
The recommended version was released 5 months ago, on 2022-04-09.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Arbitrary File Write SNYK-JS-TAR-1579155	425/1000 Why? CVSS 8.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	425/1000 Why? CVSS 8.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	425/1000 Why? CVSS 8.5	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	425/1000 Why? CVSS 8.5	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	425/1000 Why? CVSS 8.5	No Known Exploit
Information Exposure SNYK-JS-SIMPLEGET-2361683	425/1000 Why? CVSS 8.5	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	425/1000 Why? CVSS 8.5	Proof of Concept
Prototype Pollution SNYK-JS-INI-1048974	425/1000 Why? CVSS 8.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	425/1000 Why? CVSS 8.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	425/1000 Why? CVSS 8.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	425/1000 Why? CVSS 8.5	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	425/1000 Why? CVSS 8.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: enmap

5.9.0 - 2022-04-09
5.8.14 - 2022-04-09
5.8.13 - 2022-03-26
5.8.12 - 2022-03-26
5.8.11 - 2022-03-26
5.8.10 - 2022-03-26
5.8.9 - 2022-03-26
5.8.8 - 2022-02-10
5.8.7 - 2021-07-17
5.8.6 - 2021-06-30
5.8.5 - 2021-04-27
5.8.4 - 2021-01-19
5.8.3 - 2021-01-19
5.8.2 - 2020-11-07
5.8.1 - 2020-11-07
5.8.0 - 2020-09-19

from enmap GitHub release notes

Commit messages

Package name: enmap

64864cc 5.9.0
f1e44e7 chore: changed iterator condition (#92)
27ec6d4 chore: move to private properties and update dependencies (#94)
ed6c41f 5.8.14
9cf52b3 feat: better auto closure (#93)
cff8382 Re-add the verbose option, not sure how it disappeared
7d0e341 5.8.13
b0ca4c7 fix: final fix for db.close automatically because I forgot memory enmaps were weird
ed8bf83 5.8.12
024bf37 fix(close,jsdoc): fix the doc comment for close() deprecation (#89)
da21aed fix: process.exit overwriting this with globalThis like a moron
823cf7f 5.8.11
d8e68d4 fix: this.database undefined, use this.db
fa89289 5.8.10
772c3e5 fix: use process.emitWarning instead of console.warn for deprecation warnings
1d3d26a 5.8.9
45402d8 Make db.close() automatic and deprecate enmap.close()
5165d83 5.8.8
2d4b2ba Fix typo in typings
feffa96 bugfix: import deseralization (#84)
6e0d489 Fixed some typos in Readme (#87)
233fc9c feat(typings): add update (#83)
f0dddd3 5.8.7
fc7df8a Merge branch 'master' of https://github.com/eslachance/enmap into master