Skip to content

[Snyk] Security upgrade @wordpress/block-editor from 5.3.0 to 6.0.0

Anthony Nolan requested to merge snyk-fix-46f62b866723dc1dbf7624f6d5b2774e into main

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this Merge Request

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3		 Improper Input Validation
SNYK-JS-POSTCSS-5926692 		Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @wordpress/block-editor The new version differs by 23 commits.
  • 0c80fba chore(release): publish
  • 33e8485 Update changelog files
  • 35fd307 Merge changes published in the Gutenberg plugin "release/10.6" branch
  • 0d7c487 Update changelog files
  • 92a622f Merge changes published in the Gutenberg plugin "release/10.6" branch
  • 6f82f63 chore(release): publish
  • d2c9a42 Scripts: Add `postcss` as a dependency to ensure that the correct version gets installed (#31364)
  • 4abe97c chore(release): publish
  • 1ea1c67 Update changelog files
  • 55fdcdc Merge changes published in the Gutenberg plugin "release/10.5" branch
  • a71b076 chore(release): publish
  • 7e93772 Update changelog files
  • b71595e Merge changes published in the Gutenberg plugin "release/10.4" branch
  • 80a607a Latest posts block: Fix linting errors introduced in 5c0e81f18d57952c6199ff33047929206a28cd19.
  • 22b3bd7 Latest posts block: Show error for password protected posts.
  • 974367a chore(release): publish
  • 09f285f Update changelog files
  • 76ca614 Merge changes published in the Gutenberg plugin "release/10.3" branch
  • fa19358 Update changelog files
  • cda58be Merge changes published in the Gutenberg plugin "release/10.3" branch
  • 65bd554 chore(release): publish
  • 177aab9 Update changelog file
  • e66fe0b Eslint Plugin: Add TypeScript as peer dependency and make it optional (#29942)

See the full diff

Check the changes in this Merge Request to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Improper Input Validation

Merge request reports