Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Restyle Bump ws from 7.4.0 to 7.4.6 #13

Conversation

restyled-io[bot]
Copy link

@restyled-io restyled-io bot commented May 31, 2021

Automated style fixes for #12, created by Restyled.

The following restylers made fixes:

To incorporate these changes, merge this Pull Request into the original. We
recommend using the Squash or Rebase strategies.

NOTE: As work continues on the original Pull Request, this process will
re-run and update (force-push) this Pull Request with updated style fixes as
necessary. If the style is fixed manually at any point (i.e. this process finds
no fixes to make), this Pull Request will be closed automatically.

Sorry if this was unexpected. To disable it, see our documentation.

@guardrails
Copy link

guardrails bot commented May 31, 2021

⚠️ We detected 7 security issues in this pull request:

Mode: paranoid | Total findings: 7 | Considered vulnerability: 7

Hard-Coded Secrets (5)
Docs Details
💡 Title: Hard-coded Secrets, Severity: Medium
program.etherscanApiKey || 'ZAD4UI2RCXCQTP38EXS3UY2MPHFU5H9KB1'
💡 Title: Hard-coded Secrets, Severity: Medium
protected apikey: string = 'ZAD4UI2RCXCQTP38EXS3UY2MPHFU5H9KB1',
💡 Title: Hard-coded API secret, Severity: Medium
constructor(apikey = 'ZAD4UI2RCXCQTP38EXS3UY2MPHFU5H9KB1', network = 'mainnet') {
💡 Title: Hard-coded API secret, Severity: Medium
.option('-k, --etherscanApiKey <key>', 'Etherscan API Key')
💡 Title: Hard-coded API secret, Severity: Medium
.option('-k, --etherscanApiKey <key>', 'Etherscan API Key')

More info on how to fix Hard-Coded Secrets in General and JavaScript.


Vulnerable Libraries (2)
Severity Details
Medium hosted-git-info@2.8.8 upgrade to `>=2.8.9
High lodash@4.17.20 upgrade to >=4.17.21

More info on how to fix Vulnerable Libraries in JavaScript.


👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

@dotam99 dotam99 merged commit 56b9d0d into dependabot/npm_and_yarn/ws-7.4.6 Jun 26, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants