[Snyk] Upgrade @testing-library/react from 15.0.7 to 16.0.0 #50
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
build(deps): update go-da to v0.1.0 build(deps): update go-da to v0.2.0; add ctx da: add cli flags for da config da: add get timeout to da client build(deps): bump local-celestia-devnet to v0.12.7 fix(cli): fix da rpc check fix(cli): check return err fix(da): blob data source reuse DataFromEVMTransactions
*Total -- 4,016.52kb -> 3,286.76kb (18.17%) /indexer/ops/assets/indexer-service.png -- 84.46kb -> 53.04kb (37.21%) /docs/postmortems/2023-04-26-transaction-delays/outage.png -- 36.86kb -> 28.22kb (23.45%) /op-bindings/bindgen/bindgen_header.png -- 3,815.54kb -> 3,133.07kb (17.89%) /indexer/ops/assets/architecture.png -- 27.82kb -> 24.53kb (11.84%) /ufm-test-services/assets/ufm-ci-execution.svg -- 21.43kb -> 19.54kb (8.8%) /ufm-test-services/assets/ufm-local-execution.svg -- 23.50kb -> 21.46kb (8.65%) /docs/op-stack/src/assets/docs/understand/Celestia-logo-color-color.svg -- 6.90kb -> 6.90kb (0.01%) Signed-off-by: ImgBotApp <[email protected]>
[ImgBot] Optimize images
Create snyk-security.yml
Snyk has created this PR to upgrade change-case from 4.1.2 to 5.4.4. See this package in npm: change-case See this project in Snyk: https://app.snyk.io/org/okeamah/project/ec06289a-db6a-47b5-9391-082534603e7b?utm_source=github&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade ethers from 5.7.2 to 6.12.1. See this package in npm: ethers See this project in Snyk: https://app.snyk.io/org/okeamah/project/f82b92d4-4628-4065-80af-cab505da2f8d?utm_source=github&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade @testing-library/react from 14.3.1 to 15.0.7. See this package in npm: @testing-library/react See this project in Snyk: https://app.snyk.io/org/okeamah/project/ec06289a-db6a-47b5-9391-082534603e7b?utm_source=github&utm_medium=referral&page=upgrade-pr
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536
<p>This PR was automatically created by Snyk using the credentials of a real user.</p><br /> ### Snyk has created this PR to fix 2 vulnerabilities in the dockerfile dependencies of this project. Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image. #### Snyk changed the following file(s): - `op-proposer/Dockerfile` We recommend upgrading to `alpine:3`, as this image has only **1** known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected. #### Vulnerabilities that will be fixed with an upgrade: | | Issue | Score | :-------------------------:|:-------------------------|:-------------------------  | CVE-2024-5535 <br/>[SNYK-ALPINE318-OPENSSL-7413525](https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525) | **54**  | CVE-2024-5535 <br/>[SNYK-ALPINE318-OPENSSL-7413525](https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525) | **54**  | CVE-2024-4741 <br/>[SNYK-ALPINE318-OPENSSL-7413536](https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536) | **54**  | CVE-2024-4741 <br/>[SNYK-ALPINE318-OPENSSL-7413536](https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536) | **54** --- > [!IMPORTANT] > > - Check the changes in this PR to ensure they won't cause issues with your project. > - Max score is 1000. Note that the real score may have changed since the PR was raised. > - This PR was automatically created by Snyk using the credentials of a real user. --- **Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs._ For more information: <img src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiJlNDY3MmFlZi01ZjA3LTQyZmQtOTVlNy1jNGU5YTQxZGFhMTYiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6ImU0NjcyYWVmLTVmMDctNDJmZC05NWU3LWM0ZTlhNDFkYWExNiJ9fQ==" width="0" height="0"/> 🧐 [View latest project report](https://app.snyk.io/org/okeamah/project/69040f43-87d1-4129-8689-dbe74a50478a?utm_source=github&utm_medium=referral&page=fix-pr) 📜 [Customise PR templates](https://docs.snyk.io/scan-using-snyk/pull-requests/snyk-fix-pull-or-merge-requests/customize-pr-templates) 🛠 [Adjust project settings](https://app.snyk.io/org/okeamah/project/69040f43-87d1-4129-8689-dbe74a50478a?utm_source=github&utm_medium=referral&page=fix-pr/settings) 📚 [Read about Snyk's upgrade logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities) --- **Learn how to fix vulnerabilities with free interactive lessons:** 🦉 [Learn about vulnerability in an interactive lesson of Snyk Learn.](https://learn.snyk.io/?loc=fix-pr) [//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"alpine","from":"3.18","to":"3"}],"env":"prod","issuesToFix":[{"exploit_maturity":"No Known Exploit","id":"SNYK-ALPINE318-OPENSSL-7413525","priority_score":54,"priority_score_factors":[{"name":"confidentiality"},{"name":"integrity"},{"name":"availability"},{"name":"scope"},{"name":"exploitCodeMaturity"},{"name":"userInteraction"},{"name":"privilegesRequired"},{"name":"attackComplexity"},{"name":"attackVector"},{"name":"epss","value":0.00044},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sat Jun 29 2024 15:51:14 GMT+0000 (Coordinated Universal Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":false},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"low"},{"name":"relativePopularityRank","value":0},{"name":"impact","value":2.33},{"name":"likelihood","value":2.27},{"name":"scoreVersion","value":"V5"}],"severity":"low","title":"CVE-2024-5535"},{"exploit_maturity":"No Known Exploit","id":"SNYK-ALPINE318-OPENSSL-7413536","priority_score":54,"priority_score_factors":[{"name":"confidentiality"},{"name":"integrity"},{"name":"availability"},{"name":"scope"},{"name":"exploitCodeMaturity"},{"name":"userInteraction"},{"name":"privilegesRequired"},{"name":"attackComplexity"},{"name":"attackVector"},{"name":"epss","value":0.01055},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sat Jun 29 2024 15:52:57 GMT+0000 (Coordinated Universal Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":false},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"low"},{"name":"relativePopularityRank","value":0},{"name":"impact","value":2.33},{"name":"likelihood","value":2.3},{"name":"scoreVersion","value":"V5"}],"severity":"low","title":"CVE-2024-4741"},{"exploit_maturity":"No Known Exploit","id":"SNYK-ALPINE318-OPENSSL-7413525","priority_score":54,"priority_score_factors":[{"name":"confidentiality"},{"name":"integrity"},{"name":"availability"},{"name":"scope"},{"name":"exploitCodeMaturity"},{"name":"userInteraction"},{"name":"privilegesRequired"},{"name":"attackComplexity"},{"name":"attackVector"},{"name":"epss","value":0.00044},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sat Jun 29 2024 15:51:14 GMT+0000 (Coordinated Universal Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":false},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"low"},{"name":"relativePopularityRank","value":0},{"name":"impact","value":2.33},{"name":"likelihood","value":2.27},{"name":"scoreVersion","value":"V5"}],"severity":"low","title":"CVE-2024-5535"},{"exploit_maturity":"No Known Exploit","id":"SNYK-ALPINE318-OPENSSL-7413536","priority_score":54,"priority_score_factors":[{"name":"confidentiality"},{"name":"integrity"},{"name":"availability"},{"name":"scope"},{"name":"exploitCodeMaturity"},{"name":"userInteraction"},{"name":"privilegesRequired"},{"name":"attackComplexity"},{"name":"attackVector"},{"name":"epss","value":0.01055},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sat Jun 29 2024 15:52:57 GMT+0000 (Coordinated Universal Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":false},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"low"},{"name":"relativePopularityRank","value":0},{"name":"impact","value":2.33},{"name":"likelihood","value":2.3},{"name":"scoreVersion","value":"V5"}],"severity":"low","title":"CVE-2024-4741"}],"prId":"e4672aef-5f07-42fd-95e7-c4e9a41daa16","prPublicId":"e4672aef-5f07-42fd-95e7-c4e9a41daa16","packageManager":"dockerfile","priorityScoreList":[54,54],"projectPublicId":"69040f43-87d1-4129-8689-dbe74a50478a","projectUrl":"https://app.snyk.io/org/okeamah/project/69040f43-87d1-4129-8689-dbe74a50478a?utm_source=github&utm_medium=referral&page=fix-pr","prType":"fix","templateFieldSources":{"branchName":"default","commitMessage":"default","description":"default","title":"default"},"templateVariants":["updated-fix-title","priorityScore"],"type":"auto","upgrade":["SNYK-ALPINE318-OPENSSL-7413525","SNYK-ALPINE318-OPENSSL-7413525","SNYK-ALPINE318-OPENSSL-7413536","SNYK-ALPINE318-OPENSSL-7413536"],"vulns":["SNYK-ALPINE318-OPENSSL-7413525","SNYK-ALPINE318-OPENSSL-7413536"],"patch":[],"isBreakingChange":false,"remediationStrategy":"vuln"}'
Snyk has created this PR to upgrade @testing-library/react from 15.0.7 to 16.0.0. See this package in npm: @testing-library/react See this project in Snyk: https://app.snyk.io/org/okeamah/project/ec06289a-db6a-47b5-9391-082534603e7b?utm_source=github&utm_medium=referral&page=upgrade-pr
|
![sourcery-ai[bot]](https://avatars.githubusercontent.com/in/48477?s=60&v=4){kind=small}
There was a problem hiding this comment.
We have skipped reviewing this pull request. Here's why:
- It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
- We don't review packaging changes - Let us know if you'd like us to change this.
|
This PR is stale because it has been open 14 days with no activity. Remove stale label or comment or this will be closed in 5 days. |
OKEAMAH
commented
Aug 17, 2024
|
This PR is stale because it has been open 14 days with no activity. Remove stale label or comment or this will be closed in 5 days. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @testing-library/react from 15.0.7 to 16.0.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 1 version ahead of your current version.
The recommended version was released on 2 months ago.
Release notes
Package name: @testing-library/react
-
16.0.0 - 2024-06-03
- Move
-
15.0.7 - 2024-05-07
- Ensure
from @testing-library/react GitHub release notes16.0.0 (2024-06-03)
Features
@ testing-library/domand@ types/react-domto peer dependencies (#1305) (a4744fa)BREAKING CHANGES
@ testing-library/domwas moved to a peer dependency and needs to be explicitly installed. This reduces the chance of having conflicting versions of@ testing-library/dominstalled that frequently caused bugs when used with@ testing-library/user-event. We will also be able to allow new versions of@ testing-library/dombeing used without a SemVer major release of@ testing-library/reactby just widening the peer dependency.@ types/react-domneeds to be installed if you're typechecking files using@ testing-library/react.15.0.7 (2024-05-07)
Bug Fixes
actis notanywhenReact.actis not declared (#1323) (c1f2957)Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: