Skip to content
This repository has been archived by the owner on Jan 23, 2024. It is now read-only.

[Snyk] Security upgrade bitgo from 4.15.0 to 9.0.0 #34

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade bitgo from 4.15.0 to 9.0.0 #34

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity Cryptographic Issues
SNYK-JS-ELLIPTIC-571484		 Yes Proof of Concept
Commit messages
Package name: bitgo The new version differs by 250 commits.
  • 1bb5e33 chore(release): publish modules
  • 34bb754 chore(release): publish modules
  • ede2009 Merge pull request #603 from BitGo/TRON-36-trx-recoveries
  • d57a29e TRON-36 - prettier run
  • d045509 TRON-36 - updating handlebars dep to pass npm audit
  • 267a41c TRON-36 - fixup from feedback
  • 8f8775b TRON-36 - trx recovery tests
  • efb765e TRON-36 - working core recover for trx
  • ac30ca3 TRON-36 - trx recoveries, initial
  • 2e541b6 chore(release): publish modules
  • 71b64f0 Update statics version
  • c2b3a5d Merge pull request #601 from BitGo/SERV-445-update-ripple-lib
  • 4a33677 Remove node 6 and 11 from testing framework
  • b56b778 Update lerna and resolve handlebars to ^4.5.2
  • eb656dd SERV-445: Update to ripple-lib@^1.4.1, add missing ripple deps
  • fbccfae chore(release): publish modules
  • deb9f4c Merge pull request #598 from BitGo/ERC20-157-add-mcdai
  • 0d8ad0a Merge pull request #597 from BitGo/BG-14814-remove-v1-examples-and-update-ts-examples
  • f04c03a [ERC20-157] Add MCDai ERC20 Token
  • 68e4c94 BG-14814 remove v1 examples and update ts/js examples
  • 5a2efc1 Merge pull request #596 from BitGo/rel/la
  • b8e1772 chore(release): publish modules
  • d4f5f13 chore(release): publish modules
  • fab49ed Merge pull request #595 from BitGo/rel/la

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot