[Snyk] Upgrade: , , , tslib, , , mongoose, reflect-metadata #5

XavierMP14 · 2024-09-17T03:48:30Z

Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Name	Versions	Released on

@nestjs/common
from 10.3.3 to 10.4.1 | 9 versions ahead of your current version | a month ago
on 2024-08-13
@nestjs/core
from 10.3.3 to 10.4.1 | 9 versions ahead of your current version | a month ago
on 2024-08-13
@nestjs/platform-express
from 10.3.3 to 10.4.1 | 9 versions ahead of your current version | a month ago
on 2024-08-13
tslib
from 2.6.3 to 2.7.0 | 1 version ahead of your current version | 24 days ago
on 2024-08-23
@apollo/server
from 4.10.1 to 4.11.0 | 5 versions ahead of your current version | a month ago
on 2024-08-08
@nestjs/apollo
from 12.1.0 to 12.2.0 | 1 version ahead of your current version | 2 months ago
on 2024-07-02
mongoose
from 8.2.2 to 8.5.4 | 19 versions ahead of your current version | 24 days ago
on 2024-08-23
reflect-metadata
from 0.1.14 to 0.2.2 | 4 versions ahead of your current version | 6 months ago
on 2024-03-29

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Open Redirect SNYK-JS-EXPRESS-6474509	305	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	305	No Known Exploit

Release notes

Package name: @nestjs/common

10.4.1 - 2024-08-13
v10.4.1
10.4.0 - 2024-08-12
v10.4.0
10.3.10 - 2024-07-01
v10.3.10 (2024-07-01)

Bug fixes
- core
  - #13712 fix(core): when using forward references on exports array (@ micalevisk)
Enhancements
- platform-fastify
  - #13734 feat(fastify-adapter): support for skipping middie registration (@ ancyrweb)
Dependencies
- Other
  - #13706 chore(deps-dev): bump nodemon from 3.1.3 to 3.1.4 (@ dependabot[bot])
  - #13716 chore(deps-dev): bump ts-morph from 22.0.0 to 23.0.0 (@ dependabot[bot])
  - #13697 chore(deps): bump ws from 8.13.0 to 8.17.1 in /sample/16-gateways-ws (@ dependabot[bot])
  - #13708 chore(deps-dev): bump nats from 2.26.0 to 2.27.0 (@ dependabot[bot])
  - #13709 chore(deps-dev): bump typescript from 5.4.5 to 5.5.2 (@ dependabot[bot])
  - #13715 chore(deps-dev): bump graphql from 16.8.2 to 16.9.0 (@ dependabot[bot])
  - #13718 chore(deps-dev): bump engine.io-client from 6.5.4 to 6.6.0 (@ dependabot[bot])
  - #13724 chore(deps-dev): bump @ types/node from 20.14.6 to 20.14.9 (@ dependabot[bot])
  - #13672 chore(deps-dev): bump braces from 3.0.2 to 3.0.3 in /sample/26-queues (@ dependabot[bot])
  - #13693 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.13.0 to 7.13.1 (@ dependabot[bot])
  - #13699 chore(deps-dev): bump engine.io-client from 6.5.3 to 6.5.4 (@ dependabot[bot])
  - #13702 chore(deps-dev): bump @ types/node from 20.14.4 to 20.14.6 (@ dependabot[bot])
  - #13703 chore(deps): bump fast-json-stringify from 5.16.0 to 5.16.1 (@ dependabot[bot])
  - #13694 chore(deps-dev): bump mongoose from 8.4.1 to 8.4.3 (@ dependabot[bot])
  - #13695 chore(deps-dev): bump @ typescript-eslint/parser from 7.13.0 to 7.13.1 (@ dependabot[bot])
  - #13696 chore(deps-dev): bump @ types/node from 20.14.2 to 20.14.4 (@ dependabot[bot])
  - #13678 chore(deps-dev): bump graphql from 16.8.1 to 16.8.2 (@ dependabot[bot])
  - #13682 chore(deps-dev): bump mysql2 from 3.10.0 to 3.10.1 (@ dependabot[bot])
  - #13674 chore(deps-dev): bump prettier from 3.3.1 to 3.3.2 (@ dependabot[bot])
  - #13677 chore(deps-dev): bump lint-staged from 15.2.5 to 15.2.7 (@ dependabot[bot])
  - #13671 chore(deps-dev): bump braces from 3.0.2 to 3.0.3 in /sample/27-scheduling (@ dependabot[bot])
  - #13670 chore(deps-dev): bump braces from 3.0.2 to 3.0.3 in /sample/30-event-emitter (@ dependabot[bot])
  - #13667 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.12.0 to 7.13.0 (@ dependabot[bot])
  - #13665 chore(deps-dev): bump artillery from 2.0.14 to 2.0.15 (@ dependabot[bot])
  - #13660 chore(deps): bump @ grpc/grpc-js from 1.10.0 to 1.10.9 in /sample/04-grpc (@ dependabot[bot])
  - #13662 chore(deps-dev): bump @ grpc/grpc-js from 1.10.8 to 1.10.9 (@ dependabot[bot])
  - #13663 chore(deps-dev): bump @ fastify/multipart from 8.2.0 to 8.3.0 (@ dependabot[bot])
  - #13666 chore(deps-dev): bump @ typescript-eslint/parser from 7.11.0 to 7.13.0 (@ dependabot[bot])
  - #13669 chore(deps): bump uuid from 9.0.1 to 10.0.0 (@ dependabot[bot])
  - #13640 chore(deps-dev): bump nodemon from 3.1.2 to 3.1.3 (@ dependabot[bot])
  - #13641 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.11.0 to 7.12.0 (@ dependabot[bot])
  - #13642 chore(deps-dev): bump mongoose from 8.4.0 to 8.4.1 (@ dependabot[bot])
  - #13651 chore(deps-dev): bump prettier from 3.2.5 to 3.3.1 (@ dependabot[bot])
  - #13652 chore(deps-dev): bump @ types/node from 20.12.12 to 20.14.2 (@ dependabot[bot])
  - #13653 chore(deps-dev): bump cache-manager from 5.5.3 to 5.6.1 (@ dependabot[bot])
- platform-ws
  - #13690 chore(deps): bump ws from 8.17.0 to 8.17.1 (@ dependabot[bot])
- platform-fastify
  - #13691 chore(deps): bump fastify from 4.27.0 to 4.28.0 (@ dependabot[bot])
- common, core, microservices, platform-express, platform-fastify, platform-socket.io, platform-ws, testing, websockets
  - #13649 chore(deps): bump tslib from 2.6.2 to 2.6.3 (@ dependabot[bot])
Committers: 4
- () => { } (@ ragavendra)
- Anthony Cyrille (@ ancyrweb)
- Lincoln (@ L-Qun)
- Micael Levi L. Cavalcante (@ micalevisk)
10.3.9 - 2024-06-03
v10.3.9 (2024-06-03)

Bug fixes
- core
  - #13453 fix(core): possible memory leak when using server side events (@ zhengjitf)
  - #13405 fix(core): auto flush logs on synchronous internal errors (@ micalevisk)
- platform-fastify
  - #13536 feat(fastify): Do not crash if enableVersioning is not used (@ Fcmam5)
Enhancements
- platform-ws
  - #13531 fix(ws): close existing connections (@ bettercalljason)
- common, core
  - #13428 feat(common): support empty @ Inject() on constructor-based injection (@ micalevisk)
- core
  - #13614 fix(core): prevent exclude method from overwriting previous calls (@ dragontaek-lee)
Docs
- common
  - #13471 doc: fix typos & clarify comments (@ le-harivansh)
Dependencies
- Other
  - #13619 chore(deps-dev): bump @ typescript-eslint/parser from 7.9.0 to 7.11.0 (@ dependabot[bot])
  - #13631 chore(deps): bump mysql2 from 3.9.7 to 3.9.8 in /sample/05-sql-typeorm (@ dependabot[bot])
  - #13624 chore(deps-dev): bump mqtt from 5.6.0 to 5.7.0 (@ dependabot[bot])
  - #13617 chore(deps-dev): bump lint-staged from 15.2.2 to 15.2.5 (@ dependabot[bot])
  - #13611 chore(deps-dev): bump cache-manager from 5.5.2 to 5.5.3 (@ dependabot[bot])
  - #13610 chore(deps): bump fast-json-stringify from 5.15.1 to 5.16.0 (@ dependabot[bot])
  - #13620 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.10.0 to 7.11.0 (@ dependabot[bot])
  - #13625 chore(deps-dev): bump artillery from 2.0.12 to 2.0.14 (@ dependabot[bot])
  - #13629 chore(deps-dev): bump nodemon from 3.1.0 to 3.1.2 (@ dependabot[bot])
  - #13633 chore(deps-dev): bump mysql2 from 3.9.7 to 3.10.0 (@ dependabot[bot])
  - #13588 chore(deps): bump express and @ nestjs/platform-express in /sample/04-grpc (@ dependabot[bot])
  - #13591 chore(deps): bump express and @ nestjs/platform-express in /sample/02-gateways (@ dependabot[bot])
  - #13592 chore(deps): bump express and @ nestjs/platform-express in /sample/01-cats-app (@ dependabot[bot])
  - #13594 chore(deps-dev): bump core-js from 3.37.0 to 3.37.1 (@ dependabot[bot])
  - #13595 chore(deps-dev): bump redis from 4.6.13 to 4.6.14 (@ dependabot[bot])
  - #13596 chore(deps-dev): bump sinon from 17.0.1 to 18.0.0 (@ dependabot[bot])
  - #13597 chore(deps-dev): bump @ grpc/grpc-js from 1.10.7 to 1.10.8 (@ dependabot[bot])
  - #13602 chore(deps-dev): bump mongoose from 8.3.4 to 8.4.0 (@ dependabot[bot])
  - #13605 chore(deps-dev): bump nats from 2.25.0 to 2.26.0 (@ dependabot[bot])
  - #13606 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.9.0 to 7.10.0 (@ dependabot[bot])
  - #13590 chore(deps): bump express and @ nestjs/platform-express in /sample/05-sql-typeorm (@ dependabot[bot])
  - #13589 chore(deps): bump express and @ nestjs/platform-express in /sample/03-microservices (@ dependabot[bot])
  - #13587 chore(deps): bump express and @ nestjs/platform-express in /sample/08-webpack (@ dependabot[bot])
  - #13586 chore(deps): bump express and @ nestjs/platform-express in /sample/06-mongoose (@ dependabot[bot])
  - #13585 chore(deps): bump express and @ nestjs/platform-express in /sample/09-babel-example (@ dependabot[bot])
  - #13584 chore(deps): bump express and @ nestjs/platform-express in /sample/07-sequelize (@ dependabot[bot])
  - #13583 chore(deps): bump express and @ nestjs/platform-express in /sample/11-swagger (@ dependabot[bot])
  - #13576 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.8.0 to 7.9.0 (@ dependabot[bot])
  - #13567 chore(deps): bump express and @ nestjs/platform-express in /sample/15-mvc (@ dependabot[bot])
  - #13570 chore(deps): bump express and @ nestjs/platform-express in /sample/19-auth-jwt (@ dependabot[bot])
  - #13563 chore(deps): bump express and @ nestjs/platform-express in /sample/20-cache (@ dependabot[bot])
  - #13564 chore(deps): bump express and @ nestjs/platform-express in /sample/21-serializer (@ dependabot[bot])
  - #13565 chore(deps): bump express and @ nestjs/platform-express in /sample/22-graphql-prisma (@ dependabot[bot])
  - #13568 chore(deps): bump express and @ nestjs/platform-express in /sample/13-mongo-typeorm (@ dependabot[bot])
  - #13569 chore(deps): bump express and @ nestjs/platform-express in /sample/12-graphql-schema-first (@ dependabot[bot])
  - #13571 chore(deps): bump express and @ nestjs/platform-express in /sample/14-mongoose-base (@ dependabot[bot])
  - #13572 chore(deps): bump express and @ nestjs/platform-express in /sample/16-gateways-ws (@ dependabot[bot])
  - #13573 chore(deps-dev): bump artillery from 2.0.11 to 2.0.12 (@ dependabot[bot])
  - #13575 chore(deps-dev): bump chai-as-promised from 7.1.1 to 7.1.2 (@ dependabot[bot])
  - #13577 chore(deps-dev): bump nats from 2.24.0 to 2.25.0 (@ dependabot[bot])
  - #13578 chore(deps-dev): bump @ types/node from 20.12.11 to 20.12.12 (@ dependabot[bot])
  - #13579 chore(deps-dev): bump mqtt from 5.5.5 to 5.6.0 (@ dependabot[bot])
  - #13580 chore(deps-dev): bump @ typescript-eslint/parser from 7.8.0 to 7.9.0 (@ dependabot[bot])
  - #13518 chore(deps): bump express and @ nestjs/platform-express in /sample/29-file-upload (@ dependabot[bot])
  - #13519 chore(deps): bump express and @ nestjs/platform-express in /sample/28-sse (@ dependabot[bot])
  - #13520 chore(deps): bump express and @ nestjs/platform-express in /sample/26-queues (@ dependabot[bot])
  - #13521 chore(deps): bump express and @ nestjs/platform-express in /sample/25-dynamic-modules (@ dependabot[bot])
  - #13522 chore(deps): bump express and @ nestjs/platform-express in /sample/30-event-emitter (@ dependabot[bot])
  - #13523 chore(deps): bump express and @ nestjs/platform-express in /sample/24-serve-static (@ dependabot[bot])
  - #13524 chore(deps): bump express and @ nestjs/platform-express in /sample/27-scheduling (@ dependabot[bot])
  - #13528 chore(deps-dev): bump cache-manager from 5.5.1 to 5.5.2 (@ dependabot[bot])
  - #13529 chore(deps-dev): bump @ grpc/grpc-js from 1.10.6 to 1.10.7 (@ dependabot[bot])
  - #13546 chore(deps-dev): bump mongoose from 8.3.3 to 8.3.4 (@ dependabot[bot])
  - #13549 chore(deps): bump undici and mercurius in /sample/33-graphql-mercurius (@ dependabot[bot])
  - #13552 chore(deps-dev): bump @ types/node from 20.12.10 to 20.12.11 (@ dependabot[bot])
  - #13554 chore(deps-dev): bump @ fastify/static from 7.0.3 to 7.0.4 (@ dependabot[bot])
  - #13517 chore(deps-dev): bump ejs from 3.1.9 to 3.1.10 (@ dependabot[bot])
  - #13545 chore(deps): bump fast-json-stringify from 5.14.1 to 5.15.1 (@ dependabot[bot])
  - #13544 chore(deps-dev): bump @ types/node from 20.12.7 to 20.12.10 (@ dependabot[bot])
  - #13540 chore(deps-dev): bump conventional-changelog from 5.1.0 to 6.0.0 (@ dependabot[bot])
  - #13539 chore(deps-dev): bump nats from 2.23.0 to 2.24.0 (@ dependabot[bot])
  - #13512 chore(deps-dev): bump mongoose from 8.3.2 to 8.3.3 (@ dependabot[bot])
  - #13474 chore(deps-dev): bump mysql2 from 3.9.6 to 3.9.7 (@ dependabot[bot])
  - #13490 chore(deps-dev): bump @ commitlint/config-angular from 19.2.2 to 19.3.0 (@ dependabot[bot])
  - #13499 chore(deps-dev): bump @ typescript-eslint/parser from 7.7.0 to 7.8.0 (@ dependabot[bot])
  - #13502 chore(deps): bump express and @ nestjs/platform-express in /sample/32-graphql-federation-schema-first/posts-application (@ dependabot[bot])
  - #13503 chore(deps): bump express and @ nestjs/platform-express in /sample/32-graphql-federation-schema-first/gateway (@ dependabot[bot])
  - #13504 chore(deps): bump express and @ nestjs/platform-express in /sample/31-graphql-federation-code-first/users-application (@ dependabot[bot])
  - #13505 chore(deps): bump express and @ nestjs/platform-express in /sample/31-graphql-federation-code-first/posts-application (@ dependabot[bot])
  - #13506 chore(deps): bump express and @ nestjs/platform-express in /sample/32-graphql-federation-schema-first/users-application (@ dependabot[bot])
  - #13507 chore(deps): bump express and @ nestjs/platform-express in /sample/31-graphql-federation-code-first/gateway (@ dependabot[bot])
  - #13510 chore(deps-dev): bump artillery from 2.0.10 to 2.0.11 (@ dependabot[bot])
  - #13511 chore(deps-dev): bump @ fastify/view from 9.0.0 to 9.1.0 (@ dependabot[bot])
  - #13513 chore(deps-dev): bump mqtt from 5.5.4 to 5.5.5 (@ dependabot[bot])
  - #13515 chore(deps-dev): bump @ grpc/proto-loader from 0.7.11 to 0.7.13 (@ dependabot[bot])
  - #13479 chore(deps-dev): bump nats from 2.22.0 to 2.23.0 (@ dependabot[bot])
  - #13487 chore(deps): bump mysql2 from 3.9.4 to 3.9.7 in /sample/07-sequelize (@ dependabot[bot])
  - #13488 chore(deps): bump mysql2 from 3.9.4 to 3.9.7 in /sample/05-sql-typeorm (@ dependabot[bot])
  - #13491 chore(deps-dev): bump @ commitlint/cli from 19.2.2 to 19.3.0 (@ dependabot[bot])
  - #13495 chore(deps-dev): bump supertest from 6.3.3 to 7.0.0 (@ dependabot[bot])
  - #13498 chore(deps-dev): bump mqtt from 5.5.2 to 5.5.4 (@ dependabot[bot])
  - #13500 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.7.0 to 7.8.0 (@ dependabot[bot])
- platform-fastify
  - #13525 chore(deps): bump @ fastify/middie from 8.3.0 to 8.3.1 (@ dependabot[bot])
  - #13553 chore(deps): bump fastify from 4.26.2 to 4.27.0 (@ dependabot[bot])
- platform-ws
  - #13509 chore(deps): bump ws from 8.16.0 to 8.17.0 (@ dependabot[bot])
Committers: 14
- Anaël Bonnafous (@ AnaelBonnafous)
- Antonio Tripodi (@ Tony133)
- Fortas Abdeldjalil (@ Fcmam5)
- Jason (@ bettercalljason)
- Johaven (@ johaven)
- Kamil Mysliwiec (@ kamilmysliwiec)
- Micael Levi L. Cavalcante (@ micalevisk)
- Shalva Kakauridze (@ techsolvers-skakauridze)
- Steve (@ ssilve1989)
- YongtaekLee (@ dragontaek-lee)
- YoungJae Kwon (@ yjiq150)
- @ le-harivansh
- @ welfuture
- zhengjitf (@ zhengjitf)
10.3.8 - 2024-04-19
v10.3.8
10.3.7 - 2024-03-28
v10.3.7
10.3.6 - 2024-03-27
v10.3.6 (2024-03-27)

Bug fixes
- microservices
  - #13367 Revert "fix(microservices): fix redundant code to emit error" (@ kamilmysliwiec)
- core
  - #13366 fix(core): break reference chain to instance object (@ breeeew)
Dependencies
- Other
  - #13362 chore(deps-dev): bump @ grpc/proto-loader from 0.7.10 to 0.7.11 (@ dependabot[bot])
  - #13358 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.3.1 to 7.4.0 (@ dependabot[bot])
  - #13361 chore(deps-dev): bump mocha from 10.3.0 to 10.4.0 (@ dependabot[bot])
  - #13363 chore(deps-dev): bump @ grpc/grpc-js from 1.10.3 to 1.10.4 (@ dependabot[bot])
  - #13364 chore(deps-dev): bump mysql2 from 3.9.2 to 3.9.3 (@ dependabot[bot])
  - #13355 chore(deps-dev): bump @ apollo/server from 4.10.1 to 4.10.2 (@ dependabot[bot])
  - #13359 chore(deps-dev): bump @ typescript-eslint/parser from 7.3.1 to 7.4.0 (@ dependabot[bot])
  - #13343 chore(deps-dev): bump core-js from 3.36.0 to 3.36.1 (@ dependabot[bot])
  - #13344 chore(deps-dev): bump @ commitlint/cli from 19.2.0 to 19.2.1 (@ dependabot[bot])
  - #13347 chore(deps-dev): bump typescript from 5.4.2 to 5.4.3 (@ dependabot[bot])
  - #13345 chore(deps-dev): bump @ types/node from 20.11.29 to 20.11.30 (@ dependabot[bot])
  - #13348 chore(deps-dev): bump @ fastify/multipart from 8.1.0 to 8.2.0 (@ dependabot[bot])
  - #13352 chore(deps-dev): bump mongoose from 8.2.2 to 8.2.3 (@ dependabot[bot])
- platform-express
  - #13357 chore(deps): bump express from 4.19.1 to 4.19.2 (@ dependabot[bot])
  - #13349 chore(deps): bump express from 4.18.3 to 4.19.1 (@ dependabot[bot])
Committers: 2
- Abdulla Bayramov (@ breeeew)
- Kamil Mysliwiec (@ kamilmysliwiec)
10.3.5 - 2024-03-22
v10.3.5
10.3.4 - 2024-03-18
v10.3.4 (2024-03-18)

Bug fixes
- core, platform-fastify
  - #13337 fix(core): middleware is not executed for root route when global prefix is set (@ kamilmysliwiec)
- microservices
  - #13285 fix(microservices): fix rabbitmq no-assert not being applied correctly (@ sorooshme)
- common
  - #13317 fix(common): fix stacktrace regex (@ hokaccha)
Enhancements
- common, core
  - #13225 feat(core,common): Add @ RawBody() decorator (@ tolgap)
Docs
- common
  - #13221 docs(common): remove incorrect constructor signature of HttpException (@ kalmanbendeguz)
Dependencies
- Other
  - #13133 chore(deps): update dependency webpack to v5.90.3 (@ renovate[bot])
  - #13335 chore(deps): bump undici and mercurius in /sample/33-graphql-mercurius (@ dependabot[bot])
  - #13331 chore(deps-dev): bump @ grpc/grpc-js from 1.10.2 to 1.10.3 (@ dependabot[bot])
  - #13332 chore(deps-dev): bump @ types/node from 20.11.27 to 20.11.28 (@ dependabot[bot])
  - #13333 chore(deps-dev): bump mongoose from 8.2.1 to 8.2.2 (@ dependabot[bot])
  - #13334 chore(deps-dev): bump @ commitlint/cli from 19.1.0 to 19.2.0 (@ dependabot[bot])
  - #13314 chore(deps-dev): bump @ commitlint/config-angular from 19.0.3 to 19.1.0 (@ dependabot[bot])
  - #13320 chore(deps-dev): bump mqtt from 5.3.6 to 5.4.0 (@ dependabot[bot])
  - #13321 chore(deps-dev): bump @ types/node from 20.11.26 to 20.11.27 (@ dependabot[bot])
  - #13323 chore(deps-dev): bump socket.io-client from 4.7.4 to 4.7.5 (@ dependabot[bot])
  - #13329 chore(deps-dev): bump follow-redirects from 1.15.4 to 1.15.6 (@ dependabot[bot])
  - #13315 chore(deps): bump fast-json-stringify from 5.12.0 to 5.13.0 (@ dependabot[bot])
  - #13307 chore(deps-dev): bump @ typescript-eslint/parser from 7.1.1 to 7.2.0 (@ dependabot[bot])
  - #13316 chore(deps-dev): bump @ commitlint/cli from 19.0.3 to 19.1.0 (@ dependabot[bot])
  - #13305 chore(deps-dev): bump ts-morph from 21.0.1 to 22.0.0 (@ dependabot[bot])
  - #13306 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.1.1 to 7.2.0 (@ dependabot[bot])
  - #13308 chore(deps-dev): bump @ types/node from 20.11.25 to 20.11.26 (@ dependabot[bot])
  - #13309 chore(deps-dev): bump @ grpc/grpc-js from 1.10.1 to 1.10.2 (@ dependabot[bot])
  - #13291 chore(deps-dev): bump @ typescript-eslint/parser from 7.1.0 to 7.1.1 (@ dependabot[bot])
  - #13299 chore(deps-dev): bump @ types/node from 20.11.24 to 20.11.25 (@ dependabot[bot])
  - #13300 chore(deps-dev): bump typescript from 5.3.3 to 5.4.2 (@ dependabot[bot])
  - #13280 chore(deps-dev): bump @ types/node from 20.11.22 to 20.11.24 (@ dependabot[bot])
  - #13281 chore(deps): bump cli-color from 2.0.3 to 2.0.4 (@ dependabot[bot])
  - #13289 chore(deps-dev): bump artillery from 2.0.6 to 2.0.7 (@ dependabot[bot])
  - #13290 chore(deps-dev): bump mongoose from 8.2.0 to 8.2.1 (@ dependabot[bot])
  - #13292 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.1.0 to 7.1.1 (@ dependabot[bot])
  - #13296 chore(deps-dev): bump @ apollo/server from 4.10.0 to 4.10.1 (@ dependabot[bot])
  - #13263 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 7.0.2 to 7.1.0 (@ dependabot[bot])
  - #13274 chore(deps-dev): bump @ commitlint/cli from 18.6.1 to 19.0.3 (@ dependabot[bot])
  - #13269 chore(deps-dev): bump @ types/amqplib from 0.10.4 to 0.10.5 (@ dependabot[bot])
  - #13273 chore(deps-dev): bump @ types/node from 20.11.20 to 20.11.22 (@ dependabot[bot])
  - #13275 chore(deps-dev): bump @ commitlint/config-angular from 18.6.1 to 19.0.3 (@ dependabot[bot])
  - #13258 chore(deps-dev): bump eslint from 8.56.0 to 8.57.0 (@ dependabot[bot])
  - #13259 chore(deps-dev): bump graphql-tools from 9.0.0 to 9.0.1 (@ dependabot[bot])
  - #13262 chore(deps-dev): bump mysql2 from 3.9.1 to 3.9.2 (@ dependabot[bot])
  - #13264 chore(deps-dev): bump mqtt from 5.3.5 to 5.3.6 (@ dependabot[bot])
  - #13265 chore(deps-dev): bump @ typescript-eslint/parser from 7.0.2 to 7.1.0 (@ dependabot[bot])
  - #13266 chore(deps): bump es5-ext from 0.10.49 to 0.10.63 (@ dependabot[bot])
  - #13217 chore(deps-dev): bump @ grpc/grpc-js from 1.10.0 to 1.10.1 (@ dependabot[bot])
  - #13230 chore(deps-dev): bump @ typescript-eslint/eslint-plugin from 6.21.0 to 7.0.2 (@ dependabot[bot])
  - #13232 chore(deps-dev): bump artillery from 2.0.5 to 2.0.6 (@ dependabot[bot])
  - #13240 chore(deps): bump ip from 2.0.0 to 2.0.1 in /sample/32-graphql-federation-schema-first/posts-application (@ dependabot[bot])
  - #13231 chore(deps-dev): bump @ typescript-eslint/parser from 7.0.1 to 7.0.2 (@ dependabot[bot])
  - #13209 chore(deps-dev): bump @ commitlint/config-angular from 18.6.0 to 18.6.1 (@ dependabot[bot])

Snyk has created this PR to upgrade: - @nestjs/common from 10.3.3 to 10.4.1. See this package in npm: https://www.npmjs.com/package/@nestjs/common - @nestjs/core from 10.3.3 to 10.4.1. See this package in npm: https://www.npmjs.com/package/@nestjs/core - @nestjs/platform-express from 10.3.3 to 10.4.1. See this package in npm: https://www.npmjs.com/package/@nestjs/platform-express - tslib from 2.6.3 to 2.7.0. See this package in npm: https://www.npmjs.com/package/tslib - @apollo/server from 4.10.1 to 4.11.0. See this package in npm: https://www.npmjs.com/package/@apollo/server - @nestjs/apollo from 12.1.0 to 12.2.0. See this package in npm: https://www.npmjs.com/package/@nestjs/apollo - mongoose from 8.2.2 to 8.5.4. See this package in npm: https://www.npmjs.com/package/mongoose - reflect-metadata from 0.1.14 to 0.2.2. See this package in npm: https://www.npmjs.com/package/reflect-metadata See this project in Snyk: https://app.snyk.io/org/xaviermp14/project/f82bf1da-5c15-464e-bb3a-274b60417703?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade: , , , tslib, , , mongoose, reflect-metadata #5

[Snyk] Upgrade: , , , tslib, , , mongoose, reflect-metadata #5

XavierMP14 commented Sep 17, 2024

v10.3.10 (2024-07-01)

Bug fixes

Enhancements

Dependencies

Committers: 4

v10.3.9 (2024-06-03)

Bug fixes

Enhancements

Docs

Dependencies

Committers: 14

v10.3.6 (2024-03-27)

Bug fixes

Dependencies

Committers: 2

v10.3.4 (2024-03-18)

Bug fixes

Enhancements

Docs

Dependencies

[Snyk] Upgrade: , , , tslib, , , mongoose, reflect-metadata #5

Are you sure you want to change the base?

[Snyk] Upgrade: , , , tslib, , , mongoose, reflect-metadata #5

Conversation

XavierMP14 commented Sep 17, 2024

Snyk has created this PR to upgrade multiple dependencies.

Issues fixed by the recommended upgrade:

v10.3.10 (2024-07-01)

Bug fixes

Enhancements

Dependencies

Committers: 4

v10.3.9 (2024-06-03)

Bug fixes

Enhancements

Docs

Dependencies

Committers: 14

v10.3.6 (2024-03-27)

Bug fixes

Dependencies

Committers: 2

v10.3.4 (2024-03-18)

Bug fixes

Enhancements

Docs

Dependencies