[Snyk] Upgrade jimp from 0.16.1 to 0.22.10 #17

rizkimaung · 2023-08-20T20:43:18Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade jimp from 0.16.1 to 0.22.10.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 108 versions ahead of your current version.
The recommended version was released 25 days ago, on 2023-07-26.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Prototype Poisoning SNYK-JS-QS-3153490	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Information Exposure SNYK-JS-SIMPLEGET-2361683	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
Denial of Service (DoS) SNYK-JS-JPEGJS-2859218	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-JPEGJS-2859218	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-JPEGJS-570039	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
Information Exposure SNYK-JS-NODEFETCH-2342118	482/1000 Why? Proof of Concept exploit, CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: jimp

0.22.10 - 2023-07-26
🎉 This release contains work from a new contributor! 🎉

Thank you, Zach Stevenson (@ stevezac-osu), for all your work!

🚀 Enhancement
- @ jimp/core
  - Encoder for GIF provides a Promise to getBuffer when a string, Buffer, or Uint8Array is expected #1239 (@ stevezac-osu @ hipstersmoothie)
Authors: 2
- Andrew Lisowski (@ hipstersmoothie)
- Zach Stevenson (@ stevezac-osu)
0.22.9 - 2023-07-26
🎉 This release contains work from new contributors! 🎉

Thanks for all your work!

❤️ Artur (@ Artur-)

❤️ Tim O. (macer) (@ gitmacer)

❤️ aab (@ aabccd021)

❤️ Zsolt Medgyesi (@ zmedgyes)

❤️ Nicolas Morel (@ Marsup)

🚀 Enhancement
- Support commonjs default export #1225 (@ zmedgyes)
- jimp, @ jimp/plugin-print
  - Add € to extended Fonts #1249 (@ gitmacer)
- @ jimp/gif
  - chore: upgrade gifwrap #1222 (@ Marsup)
🐛 Bug Fix
- @ jimp/core
  - fix: Remove dependency on mkdirp #1248 (@ Artur-)
📝 Documentation
- delete cli link from readme #1250 (@ aabccd021)
Authors: 5
- aab (@ aabccd021)
- Artur (@ Artur-)
- Nicolas Morel (@ Marsup)
- Tim O. (macer) (@ gitmacer)
- Zsolt Medgyesi (@ zmedgyes)
0.22.8 - 2023-05-11
🎉 This release contains work from new contributors! 🎉

Thanks for all your work!

❤️ Sjoerd (@ sjoerd108)

❤️ null@ php4fan

❤️ null@ JunkMeal

🚀 Enhancement
- @ jimp/core, jimp
  - Composite: don't write to null pixels #1226 (@ sjoerd108)
- @ jimp/plugin-color
  - Fix: convolute not defaulting to 0, 0 as starting point #1228 (@ sjoerd108)
- @ jimp/plugin-rotate
  - Fix: rotate resize param on multiples of 90 #1229 (@ sjoerd108)
🐛 Bug Fix
- @ jimp/plugin-crop, @ jimp/test-utils
  - Fix autocrop mixing up east and west #1227 (@ sjoerd108)
📝 Documentation
- Fixed typo in README #1215 (@ php4fan)
- jimp
  - Changing the Hiero url #1213 (@ JunkMeal)
Authors: 3
- @ JunkMeal
- @ php4fan
- Sjoerd (@ sjoerd108)
0.22.7 - 2023-02-25
🎉 This release contains work from a new contributor! 🎉

Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!

Release Notes

use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)

Fixes a bug where rotating by 90 degrees introduced extra pixels

🐛 Bug Fix
- @ jimp/plugin-rotate
  - use matrix rotate, if rotate angle is multiple of 90 degrees #1209 (@ black-turtle)
Authors: 1
- MD KHAIRUL ISLAM (@ black-turtle)
0.22.6 - 2023-02-24
🎉 This release contains work from a new contributor! 🎉

Thank you, Daniell (@ daniellwdb), for all your work!

🐛 Bug Fix
- jimp, @ jimp/plugin-color
  - Export ColorActionName enum #1205 (@ daniellwdb)
Authors: 1
- Daniell (@ daniellwdb)
0.22.6--canary.1198.9324a88b87a1fc38b528af47ca707d97593dddaa.0 - 2023-02-22
0.22.5 - 2023-02-21
🎉 This release contains work from new contributors! 🎉

Thanks for all your work!

❤️ Charly Poirier (@ charlypoirier)

❤️ Ihor Bodnarchuk (@ ihorbond)

🐛 Bug Fix
- @ jimp/plugin-resize
  - Fix resizing issue with Jimp.AUTO #1202 (@ charlypoirier)
📝 Documentation
- Update README.md #1203 (@ ihorbond @ hipstersmoothie)
Authors: 3
- Andrew Lisowski (@ hipstersmoothie)
- Charly Poirier (@ charlypoirier)
- Ihor Bodnarchuk (@ ihorbond)
0.22.4 - 2023-02-07
🚀 Enhancement
- @ jimp/core, @ jimp/plugin-color
  - update tinycolor2 #1187 (@ hipstersmoothie)
Authors: 1
- Andrew Lisowski (@ hipstersmoothie)
0.22.4--canary.1187.30d10f964404705d383d7163b7d3f85baa2201b7.0 - 2023-02-07
0.22.3 - 2023-02-06
🚀 Enhancement
- jimp
  - Fix browser build #1184 (@ hipstersmoothie)
Authors: 1
- Andrew Lisowski (@ hipstersmoothie)
0.22.3--canary.1184.ff6583af74ba85d9555c36db2844886e269feb16.0 - 2023-02-06
0.22.2 - 2023-02-06
🎉 This release contains work from new contributors! 🎉

Thanks for all your work!

❤️ Ollie Chick (@ olliechick)

❤️ Andrey Kutejko (@ andy128k)

🚀 Enhancement
- @ jimp/core
  - Change type of mime from string to string|number to fix #990 #1182 (@ olliechick)
📝 Documentation
- Remove mentioning of favicons #1176 (@ andy128k)
Authors: 2
- Andrey Kutejko (@ andy128k)
- Ollie Chick (@ olliechick)
0.22.1 - 2023-02-06
🚀 Enhancement
- @ jimp/core
  - upgrade mkdrip #1173 (@ hipstersmoothie)
🏠 Internal
- Windows scripts #1172 (@ hipstersmoothie)
- @ jimp/core, @ jimp/custom, jimp, @ jimp/plugin-blit, @ jimp/plugin-blur, @ jimp/plugin-circle, @ jimp/plugin-color, @ jimp/plugin-contain, @ jimp/plugin-cover, @ jimp/plugin-crop, @ jimp/plugin-displace, @ jimp/plugin-dither, @ jimp/plugin-fisheye, @ jimp/plugin-flip, @ jimp/plugin-gaussian, @ jimp/plugin-invert, @ jimp/plugin-mask, @ jimp/plugin-normalize, @ jimp/plugin-print, @ jimp/plugin-resize, @ jimp/plugin-rotate, @ jimp/plugin-scale, @ jimp/plugin-shadow, @ jimp/plugin-threshold, @ jimp/plugins, @ jimp/test-utils, @ jimp/bmp, @ jimp/gif, @ jimp/jpeg, @ jimp/png, @ jimp/tiff, @ jimp/types, @ jimp/utils
  - rename master to main #1169 (@ hipstersmoothie)
Authors: 1
- Andrew Lisowski (@ hipstersmoothie)
0.22.1--canary.1173.30a931db5f6552c59e4c99f41fdb9e2b9ccf8291.0 - 2023-02-06
0.22.1--canary.1169.6db477d088d28aea43b31d9ca8b0eaf74dc511d1.0 - 2023-02-06
0.22.0 - 2023-02-06
0.21.4--canary.1163.d07ed6254d130e2995d24101e93427ec091016e6.0 - 2023-02-06
0.21.4--canary.1163.a26f5b300ee88c2fadb9909dd390cb4380b32a42.0 - 2023-02-06
0.21.4--canary.1163.7b9287fff1036ae67190d5ea3a8dec9926373a63.0 - 2023-02-06
0.21.4--canary.1163.6a6ae39e83bd731ccd25120a160a75b32273f9bd.0 - 2023-02-06
0.21.3 - 2023-02-05
0.21.2 - 2023-02-05
0.21.2--canary.1156.ba9fec9d0c9109924b4a5acab31bcaef8159a610.0 - 2023-02-05
0.21.2--canary.1156.8b2cc45.0 - 2023-02-05
0.21.2--canary.1156.1f8a92bfc1cbc6b5f3ad2490d0ec86710c81f635.0 - 2023-02-05
0.21.1 - 2023-02-05
0.21.1--canary.1153.3cc6d7b.0 - 2023-02-05
0.21.0 - 2023-02-05
0.21.0--canary.1149.a81f653.0 - 2023-02-05
0.21.0--canary.1149.3239903.0 - 2023-02-05
0.20.2 - 2023-02-05
0.20.1 - 2023-02-05
0.20.0 - 2023-02-05
0.19.0 - 2023-02-05
0.18.0 - 2023-02-05
0.18.0--canary.1135.911ed04.0 - 2023-02-04
0.18.0--canary.1133.54bf269.0 - 2023-02-04
0.17.10 - 2023-02-04
0.17.9 - 2023-02-04
0.17.9--canary.fc042e5.0 - 2023-02-05
0.17.9--canary.1144.3455afd.0 - 2023-02-05
0.17.9--canary.1143.90575e6.0 - 2023-02-05
0.17.9--canary.1141.cd4d455.0 - 2023-02-05
0.17.9--canary.1140.e3ff49d.0 - 2023-02-04
0.17.9--canary.1140.831bc3c.0 - 2023-02-04
0.17.9--canary.1140.4042b43.0 - 2023-02-04
0.17.8 - 2023-02-04
0.17.8--canary.1137.476d7bd.0 - 2023-02-04
0.17.7 - 2023-02-04
0.17.6 - 2023-02-04
0.17.6--canary.cd893f3.0 - 2023-02-04
0.17.6--canary.1cb89cf.0 - 2023-02-04
0.17.6--canary.1137.5e459dc.0 - 2023-02-04
0.17.5 - 2023-02-04
0.17.4 - 2023-02-04
0.17.3 - 2023-02-04
0.17.3--canary.1136.7f5f5d8.0 - 2023-02-04
0.17.2 - 2023-02-04
0.17.1 - 2023-02-04
0.17.1--canary.e22c14a.0 - 2023-02-04
0.17.1--canary.1134.e007a48.0 - 2023-02-04
0.17.0 - 2023-02-04
0.17.0--canary.1131.af3cb94.0 - 2023-02-04
0.16.13 - 2023-02-04
0.16.12 - 2023-02-04
0.16.11 - 2023-02-04
0.16.10 - 2023-02-04
0.16.9 - 2023-02-04
0.16.8 - 2023-02-04
0.16.7 - 2023-02-04
0.16.6 - 2023-02-04
0.16.5 - 2023-02-04
0.16.4 - 2023-02-04
0.16.3 - 2023-02-04
0.16.3-canary.1125.1580.0 - 2023-02-03
0.16.3-canary.1113.1404.0 - 2022-12-10
0.16.3-canary.1109.1388.0 - 2022-11-21
0.16.3-canary.1108.1382.0 - 2022-11-16
0.16.3-canary.1100.1371.0 - 2022-10-09
0.16.3-canary.1085.1581.0 - 2023-02-03
0.16.3-canary.1082.1591.0 - 2023-02-03
0.16.3-canary.1045.1590.0 - 2023-02-03
0.16.3-canary.1040.1589.0 - 2023-02-03
0.16.3-canary.1014.1579.0 - 2023-02-03
0.16.3-canary.999.1588.0 - 2023-02-03
0.16.3-canary.993.1592.0 - 2023-02-03
0.16.2 - 2022-09-15
0.16.2-canary.1094.1345.0 - 2022-08-02
0.16.2-canary.1093.1332.0 - 2022-07-25
0.16.2-canary.1086.1311.0 - 2022-05-21
0.16.2-canary.1084.1305.0 - 2022-05-16
0.16.2-canary.1082.1294.0 - 2022-04-28
0.16.2-canary.1080.1288.0 - 2022-04-04
0.16.2-canary.1073.1276.0 - 2022-02-21
0.16.2-canary.1070.1265.0 - 2022-02-11
0.16.2-canary.1052.1235.0 - 2021-10-27
0.16.2-canary.1051.1228.0 - 2021-10-22
0.16.2-canary.1045.1221.0 - 2021-09-01
0.16.2-canary.1016.1185.0 - 2021-05-25
0.16.2-canary.1008.1164.0 - 2021-04-29
0.16.2-canary.984.1126.0 - 2021-01-25
0.16.2-canary.969.1115.0 - 2020-12-11
0.16.2-canary.964.1101.0 - 2020-11-24
0.16.2-canary.956.1095.0 - 2020-10-23
0.16.2-canary.947.1077.0 - 2020-10-03
0.16.2-canary.938.1059.0 - 2020-09-07
0.16.2-canary.934.1053.0 - 2020-08-28
0.16.2-canary.919.1052.0 - 2020-08-28
0.16.1 - 2020-08-28

from jimp GitHub release notes

Commit messages

Package name: jimp

af334ef "Bump version to: v0.22.10 [skip ci]"
f7c7853 Update contributors [skip ci]
68f9e67 Update CHANGELOG.md [skip ci]
0a404ca Encoder for GIF provides a Promise to getBuffer when a string, Buffer, or Uint8Array is expected (feat: add Ten Hands electron/apps#1239)
244e366 "Bump version to: v0.22.9 [skip ci]"
ee90e95 Update contributors [skip ci]
be23723 Update CHANGELOG.md [skip ci]
d5a5303 fix: Remove dependency on mkdirp (fix: ETCD Manager screenshots electron/apps#1248)
2d1bc65 Add € to extended Fonts (feat: Update ebtcalc.yml electron/apps#1249)
2df4796 delete cli link from readme (feat: add CryptoARM GOST electron/apps#1250)
245f1cf support commonjs default export (feat: add TestCafe Studio electron/apps#1225)
18503c7 chore: upgrade gifwrap (fix: Remove Udeler due to DMCA notice electron/apps#1222)
a5b93f8 "Bump version to: v0.22.8 [skip ci]"
b6ad3ab Update contributors [skip ci]
021cfbb Update CHANGELOG.md [skip ci]
aec79d0 Composite: don't write to null pixels (chore: disable wantedly chat electron/apps#1226)
16ee71c Fix: convolute not defaulting to 0, 0 as starting point (feat: Add Redily electron/apps#1228)
bc22100 Fix: rotate resize param on multiples of 90 (feat: update TestCafe Studio electron/apps#1229)
2948127 Fix autocrop mixing up east and west (Update notejoy.yml electron/apps#1227)
e04dd91 Fixed typo in README (feat: add Pragli electron/apps#1215)
6ac63c0 Changing the Hiero url (feat: add Terminus electron/apps#1213)
965a14e "Bump version to: v0.22.7 [skip ci]"
eb98ce1 Update contributors [skip ci]
07f4fd1 Update CHANGELOG.md [skip ci]

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade jimp from 0.16.1 to 0.22.10. See this package in npm: https://www.npmjs.com/package/jimp See this project in Snyk: https://app.snyk.io/org/rizkihorangi/project/65cb260a-f2de-4e5d-abef-5ffd83ca0c9d?utm_source=github&utm_medium=referral&page=upgrade-pr

[Snyk] Upgrade jimp from 0.16.1 to 0.22.10 #17

Are you sure you want to change the base?

[Snyk] Upgrade jimp from 0.16.1 to 0.22.10 #17

Uh oh!

Conversation

rizkimaung commented Aug 20, 2023

Snyk has created this PR to upgrade jimp from 0.16.1 to 0.22.10.

🚀 Enhancement

Authors: 2

🚀 Enhancement

🐛 Bug Fix

📝 Documentation

Authors: 5

🚀 Enhancement

🐛 Bug Fix

📝 Documentation

Authors: 3

Release Notes

use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)

🐛 Bug Fix

Authors: 1

🐛 Bug Fix

Authors: 1

🐛 Bug Fix

📝 Documentation

Authors: 3

🚀 Enhancement

Authors: 1

🚀 Enhancement

Authors: 1

🚀 Enhancement

📝 Documentation

Authors: 2

🚀 Enhancement

🏠 Internal

Authors: 1

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants