[Snyk] Upgrade restify from 8.3.2 to 8.6.1

[rageshrav]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade restify from 8.3.2 to 8.6.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released a year ago, on 2022-02-10.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	430/1000 Why? CVSS 8.6	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	430/1000 Why? CVSS 8.6	Proof of Concept
	Web Cache Poisoning SNYK-JS-FINDMYWAY-1038269	430/1000 Why? CVSS 8.6	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: restify

• 8.6.1 - 2022-02-10
  

  8.6.1 (2022-02-10)

  Bug Fixes

  • use close event on response instead of socket (91a42d4)
• 8.6.0 - 2021-09-29
  

  8.6.0 (2021-09-28)

  Bug Fixes

  • use more reliable close event (e183e5d)
  • examples/todoapp/package.json to reduce vulnerabilities (#1832) (d9b27c6)
  • npm: exclude extraneous files (#1818) (e8516c3)

  Features

  • send 500s for unhandled requests (#1777) (885cecd)
  • deps: replace cover/istanbul with nyc (#1823) (361f83e)
• 8.5.1 - 2019-12-13
  

  Bug Fixes

  • benchmark: force latest restify version (#1810) (b8ec60e)
  • server: address domain performance regression with Node v12.x (#1809) (e648d49)
• 8.5.0 - 2019-12-02
  

  Tagging as v8.5.0

• 8.4.1 - 2019-11-27
  

  Tagging as v8.4.1

• 8.4.0 - 2019-07-31
  

  Tagging as v8.4.0

• 8.3.3 - 2019-06-04
  

  Tagging as v8.3.3

• 8.3.2 - 2019-05-06
  

  Tagging as v8.3.2

from restify GitHub release notes

Commit messages

Package name: restify

• 5bb5e68 chore(release): release 8.6.1
• 1482a76 docs(CHANGELOG): Update changelog
• 91a42d4 fix: use close event on response instead of socket (#1892)
• 8861e02 chore(release): release 8.6.0
• 6ce3e3d docs(CHANGELOG): Update changelog
• 71502f8 chore: run ci on 8.x
• 5b4f68e chore: Actions CI for 16
• 604ea33 chore: fix flaky test
• e183e5d fix: use more reliable close event
• 982c7f8 tests(ci): fix build (#1840)
• 885cecd feat: send 500s for unhandled requests (#1777)
• 35871c9 chore: use github ci (#1836)
• 75aa689 chore: use release-please-action (#1834)
• c4d71a8 docs(index): Remove restify.errors from examples (#1831)
• d9b27c6 fix: examples/todoapp/package.json to reduce vulnerabilities (#1832)
• acd1e14 chore(git): use new GitHub issue templates (#1822)
• 361f83e feat(deps): replace cover/istanbul with nyc (#1823)
• 1892c78 chore(deps): upgrade mocha (#1824)
• e8516c3 fix(npm): exclude extraneous files (#1818)
• 4a70d9a docs(index): fix link for Error Handling section (#1805)
• 886d2f9 chore(release): release 8.5.1
• 42422de docs(CHANGELOG): Update changelog
• e648d49 fix(server): address domain performance regression with Node v12.x (#1809)
• b8ec60e fix(benchmark): force latest restify version (#1810)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs