[Snyk] Upgrade: gatsby, gatsby-plugin-manifest, gatsby-plugin-netlify, gatsby-plugin-offline
Created by: snyk-bot
Snyk has created this PR to upgrade multiple dependencies.
Name | Versions | Released on |
---|---|---|
gatsbyfrom 2.32.4 to 2.32.13 | 10 versions ahead of your current version | a month agoon 2021-05-04 |
gatsby-plugin-manifestfrom 2.12.0 to 2.12.1 | 1 version ahead of your current version | 4 months agoon 2021-02-24 |
gatsby-plugin-netlifyfrom 2.11.0 to 2.11.1 | 1 version ahead of your current version | 3 months agoon 2021-03-18 |
gatsby-plugin-offlinefrom 3.10.1 to 3.10.2 | 1 version ahead of your current version | 4 months agoon 2021-02-24 |
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
---|---|---|---|
Access Restriction Bypass SNYK-JS-XMLHTTPREQUESTSSL-1255647 |
686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3 |
Proof of Concept | |
Arbitrary Code Injection SNYK-JS-XMLHTTPREQUESTSSL-1082936 |
686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3 |
Proof of Concept | |
Denial of Service (DoS) SNYK-JS-ENGINEIO-1056749 |
686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3 |
Proof of Concept | |
Insecure Defaults SNYK-JS-SOCKETIO-1024859 |
686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3 |
Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.