Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VM-332 - MEND - Update dependency immer to v9 - autoclosed #24

Closed
wants to merge 1 commit into from
Closed

VM-332 - MEND - Update dependency immer to v9 - autoclosed #24

wants to merge 1 commit into from

Conversation

copper-mend-app[bot]
Copy link

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
immer ^8.0.1 -> ^9.0.0 age adoption passing confidence

By merging this PR, the issue #21 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
Critical Critical 9.8 CVE-2021-23436
Critical Critical 9.8 CVE-2021-3757

Release Notes

immerjs/immer (immer)

v9.0.6

Compare Source

Bug Fixes
  • security: Follow up on CVE-2020-28477 where path: [["__proto__"], "x"] could still pollute the prototype (fa671e5)

v9.0.5

Compare Source

Bug Fixes
  • release missing dist/ folder (bfb8dec)

v9.0.4

Compare Source

Bug Fixes

v9.0.3

Compare Source

Bug Fixes
  • isPlainObject: add quick comparison between input and Object to short-circuit taxing Function.toString invocations (#​805) (07575f3)

v9.0.2

Compare Source

Bug Fixes

v9.0.1

Compare Source

Bug Fixes

v9.0.0

Compare Source

feature
BREAKING CHANGES
  • It is no longer allowed to return nothing from a recipe if the target state doesn't accept undefined.
  • It is no longer allowed to return arbitrary things from a recipe. Recipes should either return nothing, or something that is assignable to the original state type. This will catch mistakes with accidental returns earlier.

v8.0.4

Compare Source

Bug Fixes

v8.0.3

Compare Source

Bug Fixes
  • new Immer().produce now has the same type as produce. Fixes #​749 (f8b77d1)

v8.0.2

Compare Source

Bug Fixes
  • If you want to rebase/retry this PR, check this box

@copper-mend-app copper-mend-app bot added the security fix Security fix generated by Mend label May 23, 2024
@copper-mend-app copper-mend-app bot changed the title VM-332 - MEND - Update dependency immer to v9 VM-332 - MEND - Update dependency immer to v9 - autoclosed May 23, 2024
@copper-mend-app copper-mend-app bot closed this May 23, 2024
@copper-mend-app copper-mend-app bot deleted the fix-VM-332-MEND_immer-9.x branch May 23, 2024 12:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants