Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update dependency pino to v9 #3301

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix(deps): update dependency pino to v9 #3301

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Apr 27, 2024

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
pino (source) ^8.7.0 -> ^9.0.0 age adoption passing confidence

Release Notes

pinojs/pino (pino)

v9.0.0

Compare Source

v8.21.0

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.20.0...v8.21.0

v8.20.0

Compare Source

v8.19.0

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.18.0...v8.19.0

v8.18.0

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.17.2...v8.18.0

v8.17.2

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.17.1...v8.17.2

v8.17.1

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.17.0...v8.17.1

v8.17.0

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.16.2...v8.17.0

v8.16.2

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.16.1...v8.16.2

v8.16.1

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.16.0...v8.16.1

v8.16.0

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.15.7...v8.16.0

v8.15.7

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.15.6...v8.15.7

v8.15.6

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.15.5...v8.15.6

v8.15.5

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.15.4...v8.15.5

v8.15.4

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.15.3...v8.15.4

v8.15.3

Compare Source

What's Changed

Full Changelog: pinojs/pino@v8.15.2...v8.15.3

v8.15.2

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.15.1...v8.15.2

v8.15.1

Compare Source

What's Changed

New Contributors

Full Changelog: pinojs/pino@v8.15.0...v8.15.1

Configuration

📅 Schedule: Branch creation - "every weekend" in timezone Europe/Paris, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Apr 27, 2024
@codecov-commenter
Copy link

codecov-commenter commented Apr 27, 2024
edited

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 66.86%. Comparing base (b39dbff) to head (51bdb0a).

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

Impacted file tree graph

@@           Coverage Diff           @@
##           master    #3301   +/-   ##
=======================================
  Coverage   66.86%   66.86%           
=======================================
  Files         895      895           
  Lines       14859    14859           
  Branches     2166     2151   -15     
=======================================
  Hits         9935     9935           
- Misses       4745     4756   +11     
+ Partials      179      168   -11

see 118 files with indirect coverage changes

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update b39dbff...51bdb0a. Read the comment docs.

@socket-security Socket Security
Copy link

socket-security bot commented May 7, 2024
edited

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@babel/runtime@7.24.5 None 0 262 kB nicolo-ribaudo
npm/@commitlint/cli@19.3.0 None 0 30.5 kB escapedcat
npm/@commitlint/config-conventional@19.2.2 None 0 18.4 kB escapedcat
npm/@commitlint/config-validator@19.0.3 unsafe 0 12.1 kB escapedcat
npm/@commitlint/ensure@19.0.3 None 0 11.9 kB escapedcat
npm/@commitlint/execute-rule@19.0.0 None 0 3.86 kB escapedcat
npm/@commitlint/format@19.3.0 None 0 10.5 kB escapedcat
npm/@commitlint/is-ignored@19.2.2 None 0 6.86 kB escapedcat
npm/@commitlint/lint@19.2.2 None 0 14 kB escapedcat
npm/@commitlint/load@19.2.0 environment, filesystem, unsafe 0 36.3 kB escapedcat
npm/@commitlint/message@19.0.0 None 0 2.7 kB escapedcat
npm/@commitlint/parse@19.0.3 None 0 4.62 kB escapedcat
npm/@commitlint/read@19.2.1 filesystem 0 11.6 kB escapedcat
npm/@commitlint/resolve-extends@19.1.0 filesystem 0 17.6 kB escapedcat
npm/@commitlint/rules@19.0.3 None 0 70.9 kB escapedcat
npm/@commitlint/to-lines@19.0.0 None 0 2.74 kB escapedcat
npm/@commitlint/top-level@19.0.0 None 0 3.72 kB escapedcat
npm/@commitlint/types@19.0.3 None 0 24.1 kB escapedcat
npm/@hutson/parse-repository-url@3.0.2 None 0 20.6 kB hutson
npm/@lerna/create@8.1.3 Transitive: filesystem +5 139 kB
npm/@npmcli/node-gyp@3.0.0 filesystem 0 1.87 kB lukekarrys
npm/@npmcli/promise-spawn@7.0.2 environment, shell +1 19.7 kB npm-cli-ops
npm/@npmcli/run-script@7.0.2 environment, filesystem 0 18.5 kB npm-cli-ops
npm/@nrwl/devkit@19.0.3 None 0 3.37 kB nrwl-jason
npm/@nx/devkit@19.0.3 environment, filesystem, shell, unsafe 0 209 kB nrwl-jason
npm/@octokit/plugin-enterprise-rest@6.0.1 None 0 8.99 MB octokitbot
npm/@octokit/plugin-request-log@1.0.4 None 0 11.6 kB gr2m
npm/@octokit/plugin-rest-endpoint-methods@7.2.3 None +1 1.73 MB octokitbot
npm/@octokit/rest@19.0.11 None 0 9.85 kB octokitbot
npm/@socialgouv/sre-seal@1.14.5 None 0 7.75 kB socialgroovybot
npm/@socialgouv/sre-secrets@1.14.5 None 0 13.6 kB socialgroovybot
npm/@tsconfig/node16@1.0.4 None 0 2.45 kB typescript-deploys
npm/@types/conventional-commits-parser@5.0.0 None 0 19.7 kB types
npm/add-stream@1.0.0 None 0 5.51 kB wilsonjackson
npm/ajv@8.13.0 eval 0 1.03 MB esp
npm/byte-size@8.1.1 None 0 32.8 kB 75lb
npm/clone-deep@4.0.1 None 0 8 kB jonschlinkert
npm/cmd-shim@6.0.1 filesystem 0 11.8 kB nlf
npm/concat-stream@2.0.0 None 0 9.56 kB mafintosh
npm/conventional-changelog-angular@7.0.0 filesystem 0 13.7 kB oss-bot
npm/conventional-changelog-conventionalcommits@7.0.2 filesystem 0 16.1 kB oss-bot
npm/conventional-changelog-core@5.0.1 shell Transitive: filesystem +8 141 kB oss-bot
npm/conventional-changelog-preset-loader@3.0.0 None 0 5.97 kB oss-bot
npm/conventional-changelog-writer@6.0.1 filesystem Transitive: environment +6 317 kB oss-bot
npm/conventional-commits-filter@3.0.0 None 0 7.85 kB oss-bot
npm/conventional-commits-parser@5.0.0 None 0 29.9 kB oss-bot
npm/conventional-recommended-bump@7.0.1 None +3 49.3 kB oss-bot
npm/cosmiconfig-typescript-loader@5.0.0 None 0 12.6 kB codex-
npm/dargs@8.1.0 None 0 12.3 kB sindresorhus
npm/domifa@0.0.0-use.local None 0 0 B
npm/ejs@3.1.10 eval, filesystem 0 143 kB mde
npm/enquirer@2.3.6 environment 0 197 kB jonschlinkert
npm/eslint-config-prettier@9.1.0 None 0 20.8 kB lydell
npm/execa@8.0.1 environment +7 159 kB ehmicky
npm/find-up@7.0.0 None 0 16.5 kB sindresorhus
npm/get-pkg-repo@4.2.1 Transitive: environment, filesystem +1 303 kB oss-bot
npm/git-raw-commits@4.0.0 shell 0 7.86 kB oss-bot
npm/git-remote-origin-url@2.0.0 None +1 8.79 kB sindresorhus
npm/git-semver-tags@5.0.1 shell 0 6.61 kB oss-bot
npm/git-up@7.0.0 None 0 10.9 kB ionicabizau
npm/git-url-parse@13.1.0 None 0 31 kB ionicabizau
npm/gitconfiglocal@1.0.0 filesystem 0 2.28 kB soldair
npm/global-directory@4.0.1 environment 0 8.05 kB sindresorhus
npm/husky@9.0.11 environment, filesystem, shell 0 3.61 kB typicode
npm/import-fresh@3.3.0 Transitive: filesystem, unsafe +1 9.51 kB sindresorhus
npm/ini@4.1.1 None 0 12.7 kB npm-cli-ops
npm/init-package-json@5.0.0 filesystem 0 13.9 kB lukekarrys
npm/inquirer@8.2.6 None +1 123 kB sboudrias
npm/is-ci@3.0.1 None 0 3.81 kB sibiraj-s
npm/is-ssh@1.4.0 None 0 17.5 kB ionicabizau
npm/is-text-path@2.0.0 None 0 2.95 kB sindresorhus
npm/isexe@3.1.1 environment, filesystem 0 43 kB isaacs
npm/jake@10.9.1 environment, filesystem, shell 0 175 kB mde
npm/jest-diff@29.7.0 None 0 78.5 kB simenb
npm/lerna@8.1.3 Transitive: environment, shell +1 55.5 kB
npm/libnpmaccess@7.0.2 None 0 8.49 kB lukekarrys
npm/libnpmpublish@7.3.0 environment, filesystem 0 22.8 kB lukekarrys
npm/lint-staged@15.2.2 None 0 120 kB okonet
npm/load-json-file@6.2.0 None 0 5.59 kB sindresorhus
npm/locate-path@7.2.0 None 0 7.25 kB sindresorhus
npm/lodash.snakecase@4.1.1 None 0 17.7 kB jdalton
npm/lodash.startcase@4.4.0 None 0 21.5 kB jdalton
npm/lodash.uniq@4.5.0 None 0 25 kB jdalton
npm/lodash.upperfirst@4.3.1 None 0 11.4 kB jdalton
npm/meow@12.1.1 None 0 491 kB sindresorhus
npm/minimatch@3.0.5 None +1 45.1 kB isaacs
npm/minimist-options@4.1.0 None 0 8.53 kB vdemedes
npm/multimatch@5.0.0 None 0 6.03 kB sindresorhus
npm/node-fetch@2.6.7 network 0 152 kB endless
npm/node-gyp@10.1.0 environment, shell 0 1.73 MB lukekarrys
npm/node-talisman@1.29.11 environment, filesystem 0 62 kB pgmanutd
npm/npm-package-arg@8.1.1 None 0 16.3 kB nlf
npm/npm-packlist@5.1.1 filesystem 0 26.5 kB lukekarrys
npm/npm-registry-fetch@14.0.5 environment, filesystem, network 0 38.5 kB npm-cli-ops
npm/nx@19.0.3 environment, filesystem, network, shell, unsafe +1 4.5 MB nrwl-jason
npm/onetime@5.1.2 None 0 6.17 kB sindresorhus
npm/ora@5.4.1 None 0 23.2 kB sindresorhus
npm/p-map-series@2.1.0 None 0 5.63 kB sindresorhus
npm/p-map@4.0.0 None 0 8.69 kB sindresorhus
npm/p-pipe@3.1.0 None 0 8.52 kB sindresorhus
npm/p-queue@6.6.2 None 0 30.9 kB sindresorhus
npm/p-reduce@2.1.0 None 0 6.14 kB sindresorhus
npm/p-waterfall@2.1.1 None 0 10.4 kB sindresorhus
npm/pacote@17.0.7 environment, filesystem, network +1 87.1 kB npm-cli-ops
npm/parse-json@5.2.0 None 0 5.41 kB sindresorhus
npm/pify@5.0.0 None 0 8.87 kB sindresorhus
npm/pipe-args@1.3.0 filesystem 0 25 kB gpestana
npm/prettier@3.2.5 environment, filesystem, unsafe 0 8.39 MB prettier-bot
npm/read-cmd-shim@4.0.0 filesystem 0 5.16 kB lukekarrys
npm/read-package-json-fast@3.0.2 filesystem 0 8.62 kB lukekarrys
npm/read-package-json@6.0.4 filesystem 0 20.6 kB npm-cli-ops
npm/read-pkg-up@3.0.0 None 0 4.25 kB sindresorhus
npm/read-pkg@3.0.0 None 0 4.33 kB sindresorhus
npm/rimraf@4.4.1 environment, filesystem 0 284 kB isaacs
npm/rimraf@5.0.7 environment, filesystem 0 281 kB isaacs
npm/shallow-clone@3.0.1 None 0 9.45 kB jonschlinkert
npm/string-width@4.2.3 None 0 5.16 kB sindresorhus
npm/strong-log-transformer@2.1.0 filesystem 0 16.4 kB rmg
npm/supports-color@7.2.0 None 0 7.04 kB sindresorhus
npm/tar@6.2.1 environment, filesystem 0 167 kB isaacs
npm/temp-dir@1.0.0 filesystem 0 2.79 kB sindresorhus
npm/text-extensions@2.4.0 None 0 6.27 kB sindresorhus
npm/through2@2.0.5 None 0 9.65 kB rvagg
npm/unicorn-magic@0.1.0 None 0 3.45 kB sindresorhus
npm/upath@2.0.1 None 0 36.7 kB anodynos
npm/validate-npm-package-name@5.0.0 None 0 7.88 kB lukekarrys
npm/which@2.0.2 environment 0 9.97 kB isaacs
npm/wrap-ansi@7.0.0 None 0 10.6 kB sindresorhus
npm/write-file-atomic@5.0.1 filesystem 0 12.2 kB npm-cli-ops
npm/write-pkg@4.0.0 None 0 6.51 kB sindresorhus
npm/yargs@17.7.2 environment, filesystem +1 325 kB oss-bot
npm/zone.js@0.14.5 None 0 2.01 MB google-wombot

🚮 Removed packages: npm/@aashutoshrathi/word-wrap@1.2.6, npm/@ampproject/remapping@2.2.1, npm/@aws-crypto/crc32@3.0.0, npm/@aws-crypto/crc32c@3.0.0, npm/@aws-crypto/ie11-detection@3.0.0, npm/@aws-crypto/sha1-browser@3.0.0, npm/@aws-crypto/sha256-browser@3.0.0, npm/@aws-crypto/sha256-js@3.0.0, npm/@aws-crypto/supports-web-crypto@3.0.0, npm/@aws-crypto/util@3.0.0, npm/@aws-sdk/util-utf8-browser@3.259.0, npm/@babel/compat-data@7.24.4, npm/@babel/helper-compilation-targets@7.23.6, npm/@babel/helper-environment-visitor@7.22.20, npm/@babel/helper-hoist-variables@7.22.5, npm/@babel/helper-plugin-utils@7.24.5, npm/@babel/helper-split-export-declaration@7.22.6, npm/@babel/helper-string-parser@7.24.1, npm/@babel/helper-validator-identifier@7.24.5, npm/@babel/helper-validator-option@7.23.5, npm/@babel/plugin-syntax-async-generators@7.8.4, npm/@babel/plugin-syntax-bigint@7.8.3, npm/@babel/plugin-syntax-class-properties@7.12.13, npm/@babel/plugin-syntax-import-meta@7.10.4, npm/@babel/plugin-syntax-json-strings@7.8.3, npm/@babel/plugin-syntax-logical-assignment-operators@7.10.4, npm/@babel/plugin-syntax-nullish-coalescing-operator@7.8.3, npm/@babel/plugin-syntax-numeric-separator@7.10.4, npm/@babel/plugin-syntax-object-rest-spread@7.8.3, npm/@babel/plugin-syntax-optional-catch-binding@7.8.3, npm/@babel/plugin-syntax-optional-chaining@7.8.3, npm/@babel/plugin-syntax-top-level-await@7.14.5, npm/@babel/plugin-syntax-typescript@7.22.5, npm/@babel/regjsgen@0.8.0, npm/@bcoe/v8-coverage@0.2.3, npm/@colors/colors@1.5.0, npm/@cspotcode/source-map-support@0.8.1, npm/@discoveryjs/json-ext@0.5.7, npm/@esbuild/aix-ppc64@0.20.2, npm/@eslint-community/eslint-utils@4.4.0, npm/@eslint-community/regexpp@4.10.0, npm/@eslint/js@8.57.0, npm/@gar/promisify@1.1.3, npm/@humanwhocodes/module-importer@1.0.1, npm/@humanwhocodes/object-schema@2.0.3, npm/@istanbuljs/schema@0.1.3, npm/@jest/schemas@29.6.3, npm/@jest/test-result@29.7.0, npm/@jridgewell/gen-mapping@0.3.5, npm/@jridgewell/resolve-uri@3.1.2, npm/@jridgewell/set-array@1.2.1, npm/@jridgewell/trace-mapping@0.3.25, npm/@nodelib/fs.scandir@2.1.5, npm/@nodelib/fs.stat@2.0.5, npm/@nodelib/fs.walk@1.2.8, npm/@pkgjs/parseargs@0.11.0, npm/@protobufjs/aspromise@1.1.2, npm/@protobufjs/base64@1.1.2, npm/@protobufjs/codegen@2.0.4, npm/@protobufjs/eventemitter@1.1.0, npm/@protobufjs/fetch@1.1.0, npm/@protobufjs/float@1.0.2, npm/@protobufjs/inquire@1.1.0, npm/@protobufjs/path@1.1.2, npm/@protobufjs/pool@1.1.0, npm/@protobufjs/utf8@1.1.0, npm/@sinclair/typebox@0.27.8, npm/@smithy/util-uri-escape@2.2.0, npm/@tootallnate/once@2.0.0, npm/@types/body-parser@1.19.5, npm/@types/connect@3.4.38, npm/@types/estree@1.0.5, npm/@types/express@4.17.21, npm/@types/http-errors@2.0.4, npm/@types/istanbul-lib-coverage@2.0.6, npm/@types/istanbul-lib-report@3.0.3, npm/@types/istanbul-reports@3.0.4, npm/@types/json-schema@7.0.15, npm/@types/mime@1.3.5, npm/@types/minimatch@3.0.5, npm/@types/qs@6.9.15, npm/@types/range-parser@1.2.7, npm/@types/semver@7.5.8, npm/@types/send@0.17.4, npm/@types/stack-utils@2.0.3, npm/@types/ws@8.5.10, npm/@types/yargs-parser@21.0.3, npm/@ungap/structured-clone@1.2.0, npm/@webassemblyjs/floating-point-hex-parser@1.11.6, npm/@webassemblyjs/helper-api-error@1.11.6, npm/@webassemblyjs/helper-buffer@1.12.1, npm/@webassemblyjs/helper-wasm-bytecode@1.11.6, npm/@webassemblyjs/utf8@1.11.6, npm/@xtuc/ieee754@1.2.0, npm/@xtuc/long@4.2.2, npm/abab@2.0.6, npm/accepts@1.3.8, npm/acorn-import-assertions@1.9.0, npm/acorn-jsx@5.3.2, npm/acorn-walk@7.2.0, npm/acorn@8.11.3, npm/agent-base@7.1.1, npm/agentkeepalive@4.5.0, npm/aggregate-error@3.1.0, npm/ansi-escapes@4.3.2, npm/ansi-html-community@0.0.8, npm/ansi-regex@6.0.1, npm/anymatch@3.1.3, npm/aproba@2.0.0, npm/are-we-there-yet@3.0.1, npm/array-buffer-byte-length@1.0.1, npm/array-differ@3.0.0, npm/array-flatten@1.1.1, npm/array-union@2.1.0, npm/arrify@1.0.1, npm/asn1@0.2.6, npm/assert-plus@1.0.0, npm/async@3.2.5, npm/available-typed-arrays@1.0.7, npm/aws-sign2@0.7.0, npm/aws4@1.12.0, npm/babel-plugin-istanbul@6.1.1, npm/base64-js@1.5.1, npm/bcrypt-pbkdf@1.0.2, npm/big.js@5.2.2, npm/binary-extensions@2.3.0, npm/boolbase@1.0.0, npm/bowser@2.11.0, npm/braces@3.0.2, npm/browser-process-hrtime@1.0.0, npm/bytes@3.0.0, npm/call-bind@1.0.7, npm/callsites@3.1.0, npm/caniuse-lite@1.0.30001618, npm/caseless@0.12.0, npm/chardet@0.7.0, npm/chokidar@3.5.3, npm/chownr@2.0.0, npm/chrome-trace-event@1.0.3, npm/clean-stack@2.2.0, npm/cli-width@3.0.0, npm/clone@1.0.4, npm/color-support@1.1.3, npm/colorette@2.0.20, npm/combined-stream@1.0.8, npm/common-path-prefix@3.0.0, npm/concat-map@0.0.1, npm/console-control-strings@1.1.0, npm/content-disposition@0.5.4, npm/content-type@1.0.5, npm/convert-source-map@1.9.0, npm/cookie-signature@1.0.6, npm/cookie@0.6.0, npm/core-util-is@1.0.3, npm/css-what@6.1.0, npm/cssesc@3.0.0, npm/cssom@0.4.4, npm/cssstyle@2.3.0, npm/dashdash@1.14.1, npm/decimal.js@10.4.3, npm/deep-is@0.1.4, npm/defaults@1.0.4, npm/define-data-property@1.1.4, npm/define-lazy-prop@2.0.0, npm/define-properties@1.2.1, npm/delegates@1.0.0, npm/depd@2.0.0, npm/destroy@1.2.0, npm/diff-sequences@29.6.3, npm/dir-glob@3.0.1, npm/doctrine@3.0.0, npm/dom-serializer@2.0.0, npm/domelementtype@2.3.0, npm/domexception@2.0.1, npm/domhandler@5.0.3, npm/domutils@3.1.0, npm/dotenv-expand@10.0.0, npm/duplexer@0.1.2, npm/eastasianwidth@0.2.0, npm/ee-first@1.1.1, npm/emojis-list@3.0.0, npm/encodeurl@1.0.2, npm/encoding@0.1.13, npm/end-of-stream@1.4.4, npm/err-code@2.0.3, npm/error-ex@1.3.2, npm/es-define-property@1.0.0, npm/es-errors@1.3.0, npm/es-module-lexer@1.5.2, npm/escape-html@1.0.3, npm/escape-string-regexp@1.0.5, npm/escodegen@2.1.0, npm/eslint-scope@5.1.1, npm/eslint-visitor-keys@3.4.3, npm/espree@9.6.1, npm/esprima@4.0.1, npm/esquery@1.5.0, npm/esrecurse@4.3.0, npm/estraverse@5.3.0, npm/esutils@2.0.3, npm/etag@1.8.1, npm/eventemitter3@5.0.1, npm/events@3.3.0, npm/exit@0.1.2, npm/exponential-backoff@3.1.1, npm/extend@3.0.2, npm/extsprintf@1.3.0, npm/fast-glob@3.3.2, npm/fast-json-stable-stringify@2.1.0, npm/fast-levenshtein@2.0.6, npm/fast-xml-parser@4.2.5, npm/fastq@1.17.1, npm/file-entry-cache@6.0.1, npm/fill-range@7.0.1, npm/finalhandler@1.2.0, npm/flat@5.0.2, npm/flatted@3.3.1, npm/for-each@0.3.3, npm/forever-agent@0.6.1, npm/form-data@4.0.0, npm/forwarded@0.2.0, npm/fresh@0.5.2, npm/fs-constants@1.0.0, npm/fs-monkey@1.0.6, npm/fs.realpath@1.0.0, npm/fsevents@2.3.3, npm/function-bind@1.1.2, npm/functions-have-names@1.2.3, npm/gauge@4.0.4, npm/gensync@1.0.0-beta.2, npm/get-intrinsic@1.2.4, npm/get-package-type@0.1.0, npm/getpass@0.1.7, npm/glob-to-regexp@0.4.1, npm/globals@11.12.0, npm/gopd@1.0.1, npm/graphemer@1.4.0, npm/har-schema@2.0.0, npm/has-bigints@1.0.2, npm/has-flag@3.0.0, npm/has-property-descriptors@1.0.2, npm/has-proto@1.0.3, npm/has-symbols@1.0.3, npm/has-tostringtag@1.0.2, npm/hasown@2.0.2, npm/html-encoding-sniffer@2.0.1, npm/html-entities@2.5.2, npm/htmlparser2@8.0.2, npm/http-cache-semantics@4.1.1, npm/http-errors@2.0.0, npm/http-parser-js@0.5.8, npm/humanize-ms@1.2.1, npm/iconv-lite@0.4.24, npm/ieee754@1.2.1, npm/ignore-walk@5.0.1, npm/imurmurhash@0.1.4, npm/indent-string@4.0.0, npm/infer-owner@1.0.4, npm/inflight@1.0.6, npm/internal-slot@1.0.7, npm/is-arguments@1.1.1, npm/is-array-buffer@3.0.4, npm/is-arrayish@0.2.1, npm/is-bigint@1.0.4, npm/is-binary-path@2.1.0, npm/is-boolean-object@1.1.2, npm/is-callable@1.2.7, npm/is-core-module@2.13.1, npm/is-date-object@1.0.5, npm/is-docker@2.2.1, npm/is-extglob@2.1.1, npm/is-glob@4.0.3, npm/is-interactive@1.0.0, npm/is-lambda@1.0.1, npm/is-map@2.0.3, npm/is-number-object@1.0.7, npm/is-number@7.0.0, npm/is-path-inside@3.0.3, npm/is-plain-obj@1.1.0, npm/is-potential-custom-element-name@1.0.1, npm/is-regex@1.1.4, npm/is-set@2.0.3, npm/is-shared-array-buffer@1.0.3, npm/is-string@1.0.7, npm/is-symbol@1.0.4, npm/is-typedarray@1.0.0, npm/is-unicode-supported@0.1.0, npm/is-weakmap@2.0.2, npm/is-wsl@2.2.0, npm/isarray@1.0.0, npm/isstream@0.1.2, npm/istanbul-lib-coverage@3.2.2, npm/istanbul-lib-instrument@5.2.1, npm/jest-get-type@29.6.3, npm/jest-regex-util@29.6.3, npm/jest-worker@27.5.1, npm/js-tokens@4.0.0, npm/jsbn@0.1.1, npm/jsesc@2.5.2, npm/json-parse-better-errors@1.0.2, npm/json-schema@0.4.0, npm/json-stable-stringify-without-jsonify@1.0.1, npm/json5@2.2.3, npm/jsprim@1.4.2, npm/klona@2.0.6, npm/levn@0.4.1, npm/loader-runner@4.3.0, npm/loader-utils@3.2.1, npm/lodash.debounce@4.0.8, npm/lodash.escaperegexp@4.1.2, npm/lodash.isboolean@3.0.3, npm/long@5.2.3, npm/media-typer@0.3.0, npm/merge-descriptors@1.0.1, npm/merge2@1.4.1, npm/methods@1.1.2, npm/micromatch@4.0.5, npm/mime-types@2.1.35, npm/mime@1.6.0, npm/min-indent@1.0.1, npm/minimalistic-assert@1.0.1, npm/minipass-flush@1.0.5, npm/minipass-json-stream@1.0.1, npm/minipass-pipeline@1.2.4, npm/minipass-sized@1.0.3, npm/minizlib@2.1.2, npm/mkdirp@1.0.4, npm/ms@2.1.2, npm/mute-stream@0.0.8, npm/natural-compare@1.4.0, npm/negotiator@0.6.3, npm/neo-async@2.6.2, npm/node-forge@1.3.1, npm/node-releases@2.0.14, npm/normalize-path@3.0.0, npm/npm-bundled@1.1.2, npm/npm-normalize-package-bin@1.0.1, npm/nth-check@2.1.1, npm/nwsapi@2.2.10, npm/oauth-sign@0.9.0, npm/object-inspect@1.13.1, npm/object-keys@1.1.1, npm/object.assign@4.1.5, npm/obuf@1.1.2, npm/on-finished@2.4.1, npm/on-headers@1.0.2, npm/open@8.4.2, npm/optionator@0.9.4, npm/os-tmpdir@1.0.2, npm/p-finally@1.0.0, npm/p-limit@4.0.0, npm/p-timeout@3.2.0, npm/p-try@2.2.0, npm/pako@1.0.11, npm/parse5@6.0.1, npm/parseurl@1.3.3, npm/path-is-absolute@1.0.1, npm/path-parse@1.0.7, npm/path-to-regexp@0.1.7, npm/performance-now@2.1.0, npm/pidtree@0.6.0, npm/possible-typed-array-names@1.0.0, npm/postcss-value-parser@4.2.0, npm/prelude-ls@1.2.1, npm/pretty-bytes@5.6.0, npm/pretty-format@29.7.0, npm/process-nextick-args@2.0.1, npm/promise-inflight@1.0.1, npm/psl@1.9.0, npm/punycode@2.3.1, npm/qs@6.5.3, npm/querystringify@2.2.0, npm/queue-microtask@1.2.3, npm/randombytes@2.1.0, npm/range-parser@1.2.1, npm/react-is@18.3.1, npm/readdirp@3.6.0, npm/regenerate@1.4.2, npm/regex-parser@2.3.0, npm/regexp.prototype.flags@1.5.2, npm/requires-port@1.0.0, npm/retry@0.12.0, npm/reusify@1.0.4, npm/run-async@2.4.1, npm/run-parallel@1.2.0, npm/rxjs@7.8.1, npm/safe-buffer@5.2.1, npm/safer-buffer@2.1.2, npm/sax@1.3.0, npm/saxes@5.0.1, npm/selfsigned@2.4.1, npm/serve-static@1.15.0, npm/set-blocking@2.0.0, npm/set-function-name@2.0.2, npm/setprototypeof@1.2.0, npm/shebang-regex@3.0.0, npm/shell-quote@1.8.1, npm/smart-buffer@4.2.0, npm/source-map-support@0.5.21, npm/source-map@0.6.1, npm/spdx-correct@3.2.0, npm/spdx-exceptions@2.5.0, npm/spdx-expression-parse@3.0.1, npm/spdx-license-ids@3.0.17, npm/sprintf-js@1.0.3, npm/stack-utils@2.0.6, npm/statuses@2.0.1, npm/string-argv@0.3.2, npm/string_decoder@1.3.0, npm/strip-bom@4.0.0, npm/strip-indent@3.0.0, npm/strip-json-comments@3.1.1, npm/strnum@1.0.5, npm/supports-preserve-symlinks-flag@1.0.0, npm/symbol-tree@3.2.4, npm/tapable@2.2.1, npm/text-table@0.2.0, npm/to-fast-properties@2.0.0, npm/to-regex-range@5.0.1, npm/toidentifier@1.0.1, npm/tr46@0.0.3, npm/tree-kill@1.2.2, npm/tsutils@3.21.0, npm/tweetnacl@0.14.5, npm/type-check@0.4.0, npm/type-is@1.6.18, npm/uglify-js@3.17.4, npm/unicode-canonical-property-names-ecmascript@2.0.0, npm/unicode-match-property-value-ecmascript@2.1.0, npm/unicode-property-aliases-ecmascript@2.1.0, npm/unpipe@1.0.0, npm/url-parse@1.5.10, npm/util-deprecate@1.0.2, npm/utils-merge@1.0.1, npm/value-or-promise@1.0.12, npm/vary@1.1.2, npm/verror@1.10.0, npm/w3c-hr-time@1.0.2, npm/w3c-xmlserializer@2.0.0, npm/webidl-conversions@3.0.1, npm/webpack-sources@3.2.3, npm/websocket-extensions@0.1.4, npm/whatwg-encoding@1.0.5, npm/whatwg-mimetype@2.3.0, npm/whatwg-url@5.0.0, npm/which-boxed-primitive@1.0.2, npm/wide-align@1.1.5, npm/word-wrap@1.2.5, npm/wordwrap@1.0.0, npm/wrappy@1.0.2, npm/ws@7.5.9, npm/xml-name-validator@3.0.0, npm/xmlchars@2.2.0, npm/xtend@4.0.2, npm/yallist@4.0.0, npm/yocto-queue@1.0.0

View full report↗︎

@socket-security Socket Security
Copy link

socket-security bot commented May 7, 2024
edited

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package Note
Install scripts npm/nx@19.0.3
  • Install script: postinstall
  • Source: node ./bin/post-install

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

  • @SocketSecurity ignore npm/nx@19.0.3

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented May 15, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@codecov-commenter