[Snyk] Upgrade bower from 1.2.8 to 1.8.14 #1
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade bower from 1.2.8 to 1.8.14.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
npm:qs:20140806
Why? Has a fix available, CVSS 7.5
npm:deep-extend:20180409
Why? Has a fix available, CVSS 7.5
npm:uglify-js:20150824
Why? Has a fix available, CVSS 7.5
npm:tar:20151103
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-174125
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1579155
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1579152
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1579147
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1536531
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1536528
Why? Has a fix available, CVSS 7.5
npm:open:20180512
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-2342654
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-1014544
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-2342654
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-1014544
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-2342654
Why? Has a fix available, CVSS 7.5
SNYK-JS-MOUT-1014544
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-534478
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-469063
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-173692
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-1056767
Why? Has a fix available, CVSS 7.5
SNYK-JS-FSTREAM-174725
Why? Has a fix available, CVSS 7.5
SNYK-JS-BOWER-73627
Why? Has a fix available, CVSS 7.5
npm:semver:20150403
Why? Has a fix available, CVSS 7.5
npm:semver:20150403
Why? Has a fix available, CVSS 7.5
npm:qs:20140806-1
Why? Has a fix available, CVSS 7.5
npm:http-signature:20150122
Why? Has a fix available, CVSS 7.5
npm:handlebars:20151207
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-567742
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-1279029
Why? Has a fix available, CVSS 7.5
npm:mime:20170907
Why? Has a fix available, CVSS 7.5
SNYK-JS-TAR-1536758
Why? Has a fix available, CVSS 7.5
SNYK-JS-OPEN-174041
Why? Has a fix available, CVSS 7.5
npm:hawk:20160119
Why? Has a fix available, CVSS 7.5
SNYK-JS-HANDLEBARS-534988
Why? Has a fix available, CVSS 7.5
SNYK-JS-DECOMPRESSZIP-73598
Why? Has a fix available, CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs