[Snyk] Upgrade @top-gg/sdk from 3.1.3 to 3.1.6 #290

MaximKing1 · 2024-10-16T02:26:10Z

Snyk has created this PR to upgrade @top-gg/sdk from 3.1.3 to 3.1.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 3 versions ahead of your current version.
The recommended version was released a year ago, on 2023-09-08.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-MONGOOSE-5777721	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Proof of Concept
Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Proof of Concept
Arbitrary Code Execution SNYK-JS-SQLITE3-3358947	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Open Redirect SNYK-JS-EXPRESS-6474509	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Cross-site Scripting SNYK-JS-EXPRESS-7926867	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Server-Side Request Forgery (SSRF) SNYK-JS-IP-7148531	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Proof of Concept
Information Exposure SNYK-JS-MONGODB-5871303	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Proof of Concept
Cross-site Scripting SNYK-JS-SEND-7926862	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit
Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @top-gg/sdk

3.1.6 - 2023-09-08
What's Changed
- Added tests for API.ts by @ XkijuX in #79
- meta: update GitHub Actions workflows by @ VoltrexKeyva in #83
- deps: update dependencies by @ VoltrexKeyva in #84
- meta: fix publish workflow by @ VoltrexKeyva in #85
- meta: bump version to 3.1.6 by @ VoltrexKeyva in #86
New Contributors
- @ XkijuX made their first contribution in #79
Full Changelog: v3.1.5...v3.1.6
3.1.5 - 2023-04-16
Deprecate the discriminator property on ShortUser @ #77 thanks @ null8626
3.1.4 - 2023-03-23
The first release in a while!

Some quality of life changes thanks to @ VoltrexKeyva @ #75
- Update dependencies and developer dependencies to their latest versions.
- Switch from Node-Fetch to Undici.
- Update the GitHub Actions workflows to their latest versions.
- Remove Node.js v12 from the testing matrix as it reached it's EoL (End-of-Life) stage, and add Node.js v16 and v18 to the testing matrix.
- Align all examples (in README and JSDocs) to the code style of the codebase.
- Inline JSDocs that only have a description.
- Format the typedoc.json file and remove the usage of the minimal theme as it was removed.
- Move the APIOptions interface to the src/typings.ts file and export it so it's shown in the documentation.
- Bump version to 3.1.4.
3.1.3 - 2021-12-03
- Fixes a TypeScript error to do with a catch block in Webhook #73
A possible breaking change to meet intended behavior. Before anything thrown in the webhook listener function would be passed to the error callback, now it only will respond back anything thrown that is an instance of Error, as is typed.

from @top-gg/sdk GitHub release notes

Commit messages

Package name: @top-gg/sdk

6a59ddd meta: bump version to 3.1.6 ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.5 #86)
3b46e52 meta: fix publish workflow ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.5 #85)
a49af28 deps: update dependencies ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.5 #84)
c737bef meta: update GitHub Actions workflows ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.4 #83)
ba8103e Added tests for API.ts ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.3 #79)
c51ae4d fix: deprecate missing property in `ShortUser` ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.2 #77)
cc14fb8 deps,actions: update deps and make tweaks ([Snyk] Upgrade mongoose from 5.11.16 to 5.13.2 #75)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade @top-gg/sdk from 3.1.3 to 3.1.6. See this package in npm: https://www.npmjs.com/package/@top-gg/sdk See this project in Snyk: https://app.snyk.io/org/work-i4y/project/c867776f-a1a0-4821-8fa4-39189e8b8d09?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

[Snyk] Upgrade @top-gg/sdk from 3.1.3 to 3.1.6 #290

[Snyk] Upgrade @top-gg/sdk from 3.1.3 to 3.1.6 #290

Uh oh!

MaximKing1 commented Oct 16, 2024

What's Changed

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Uh oh!

[Snyk] Upgrade @top-gg/sdk from 3.1.3 to 3.1.6 #290

Are you sure you want to change the base?

[Snyk] Upgrade @top-gg/sdk from 3.1.3 to 3.1.6 #290

Uh oh!

Conversation

MaximKing1 commented Oct 16, 2024

Snyk has created this PR to upgrade @top-gg/sdk from 3.1.3 to 3.1.6.

What's Changed

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants