[Snyk] Fix for 73 vulnerabilities

[songshansitulv]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • examples/getstarted/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	706/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.7	Remote Memory Exposure SNYK-JS-BL-608877	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-CSSWHAT-1298035	Yes	No Known Exploit
	909/1000 Why? Mature exploit, Has a fix available, CVSS 9.6	Heap-based Buffer Overflow SNYK-JS-CWEBPBIN-5923346	Yes	Mature
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESSTAR-559095	Yes	Proof of Concept
	761/1000 Why? Mature exploit, Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-DICER-2311764	Yes	Mature
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	484/1000 Why? Has a fix available, CVSS 5.4	Open Redirect SNYK-JS-GOT-2932019	Yes	No Known Exploit
	584/1000 Why? Has a fix available, CVSS 7.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	Yes	Proof of Concept
	751/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.6	SQL Injection SNYK-JS-KNEX-3175610	Yes	Proof of Concept
	704/1000 Why? Has a fix available, CVSS 9.8	SQL Injection SNYK-JS-KNEX-471962	Yes	No Known Exploit
	539/1000 Why? Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-NODEFETCH-2342118	Yes	No Known Exploit
	520/1000 Why? Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Improper Certificate Validation SNYK-JS-NODESASS-1059081	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Out-of-Bounds SNYK-JS-NODESASS-535498	Yes	Proof of Concept
	761/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.8	NULL Pointer Dereference SNYK-JS-NODESASS-535500	Yes	Proof of Concept
	536/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.3	Out-of-bounds Read SNYK-JS-NODESASS-540958	Yes	Proof of Concept
	536/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.3	Uncontrolled Recursion SNYK-JS-NODESASS-540964	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-JS-NODESASS-540978	Yes	Proof of Concept
	536/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.3	NULL Pointer Dereference SNYK-JS-NODESASS-540992	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Out-of-Bounds SNYK-JS-NODESASS-540998	Yes	Proof of Concept
	654/1000 Why? Has a fix available, CVSS 8.8	Use After Free SNYK-JS-NODESASS-541000	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Out-of-bounds Read SNYK-JS-NODESASS-541002	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	Yes	Proof of Concept
	704/1000 Why? Has a fix available, CVSS 9.8	Arbitrary Code Injection SNYK-JS-OPEN-174041	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Improper Input Validation SNYK-JS-POSTCSS-5926692	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Poisoning SNYK-JS-QS-3153490	Yes	Proof of Concept
	434/1000 Why? Has a fix available, CVSS 4.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-REMOVEMARKDOWN-73635	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SCSSTOKENIZER-2339884	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept
	536/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1047770	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1584358	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1585624	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-2824151	Yes	Proof of Concept
	791/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.4	SQL Injection SNYK-JS-SEQUELIZE-2932027	Yes	Proof of Concept
	564/1000 Why? Has a fix available, CVSS 7	SQL Injection SNYK-JS-SEQUELIZE-2959225	Yes	No Known Exploit
	629/1000 Why? Has a fix available, CVSS 8.3	Improper Filtering of Special Elements SNYK-JS-SEQUELIZE-3324088	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-SEQUELIZE-3324089	Yes	No Known Exploit
	529/1000 Why? Has a fix available, CVSS 6.3	Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-SEQUELIZE-3324090	Yes	No Known Exploit
	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Improper Privilege Management SNYK-JS-SHELLJS-2332187	Yes	Proof of Concept
	574/1000 Why? Has a fix available, CVSS 7.2	Server-side Request Forgery (SSRF) SNYK-JS-STRAPI-1022256	Yes	No Known Exploit
	616/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Information Exposure SNYK-JS-STRAPI-2807810	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Information Exposure SNYK-JS-STRAPI-2840623	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-STRAPI-2840624	Yes	Proof of Concept
	661/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.8	Improper Input Validation SNYK-JS-STRAPI-3034915	Yes	Proof of Concept
	876/1000 Why? Mature exploit, Has a fix available, CVSS 9.8	Improper Access Control SNYK-JS-STRAPI-480418	Yes	Mature
	746/1000 Why? Mature exploit, Has a fix available, CVSS 7.2	Arbitrary Code Injection SNYK-JS-STRAPI-536641	Yes	Mature
	349/1000 Why? Has a fix available, CVSS 2.7	Denial of Service (DoS) SNYK-JS-STRAPI-543624	Yes	No Known Exploit
	509/1000 Why? Has a fix available, CVSS 5.9	Access Restriction Bypass SNYK-JS-STRAPI-572909	Yes	No Known Exploit
	679/1000 Why? Has a fix available, CVSS 9.3	Cross-site Scripting (XSS) SNYK-JS-STRAPIPLUGINCONTENTMANAGER-1021615	Yes	No Known Exploit
	661/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.8	Improper Input Validation SNYK-JS-STRAPIPLUGINCONTENTMANAGER-3034917	Yes	Proof of Concept
	539/1000 Why? Has a fix available, CVSS 6.5	Improper Authorization SNYK-JS-STRAPIPLUGINCONTENTTYPEBUILDER-1021616	Yes	No Known Exploit
	661/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.8	Improper Input Validation SNYK-JS-STRAPIPLUGINCONTENTTYPEBUILDER-3034916	Yes	Proof of Concept
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536528	Yes	No Known Exploit
	624/1000 Why? Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536531	Yes	No Known Exploit
	410/1000 Why? Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579147	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579152	Yes	No Known Exploit
	639/1000 Why? Has a fix available, CVSS 8.5	Arbitrary File Write SNYK-JS-TAR-1579155	Yes	No Known Exploit
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Prototype Pollution npm:extend:20180424	Yes	No Known Exploit
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Yes	Proof of Concept
	539/1000 Why? Has a fix available, CVSS 6.5	Timing Attack npm:http-signature:20150122	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Directory Traversal npm:koa-body:20180127	Yes	No Known Exploit
	741/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.4	Arbitrary Command Injection npm:open:20180512	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Override Protection Bypass npm:qs:20170213	Yes	No Known Exploit
	469/1000 Why? Has a fix available, CVSS 5.1	Remote Memory Exposure npm:request:20160119	Yes	No Known Exploit
	576/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.1	Uninitialized Memory Exposure npm:tunnel-agent:20170305	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: knex

The new version differs by 250 commits.

• ed0e8a5 Fix SQLite not doing rollback when altering columns fails (Heroku Application Error strapi/strapi#4336)
• 3c70dca Prepare 0.95.0 for release
• c1ab23c Await asynchronous expect assertions ([WIP] Add node 12 to TravisCI testing strapi/strapi#4334)
• 3e6176a SQLite parser improvements (naming a field "id" causes data loss strapi/strapi#4333)
• a98614d Made the constraint detection case-insensitive (#4192 left menu icons alignment strapi/strapi#4330)
• 5d2db21 Fix ArrayIfAlready type (Fix your CI Enviroment strapi/strapi#4331)
• 887a4f6 Improve join and conflict types v2 (Cant select an already uploaded file on media field in any content type strapi/strapi#4318)
• 29b8a36 Adjust generateDdlCommands return type (Graphql: Nested objects returns null strapi/strapi#4326)
• d807832 mssql: schema builder - attempt to drop default constraints when changing default value on columns (Update PL translations strapi/strapi#4321)
• c0d8c5c mssql: schema builder - add predictable constraint names for default values (Init database layer v2 strapi/strapi#4319)
• 5ec76f5 Convert produced statements to objects before querying (Feature or help wanted: Query Image width/height to prevent browser reflow strapi/strapi#4323)
• 9e28a72 Add support for altering columns to SQLite (Groups don`t work with MongoDB strapi/strapi#4322)
• 7db2d18 fix mssql alter column must have its own query (GraphQL undefined field when field has relation strapi/strapi#4317)
• 371864d Bump typescript from 4.1.5 to 4.2.2 (File upload providers don't work strapi/strapi#4312)
• 6c3e7b5 mssql: don't raise query-error twice (After installing GraphQL plugin: "an error occurred during models config fetch" strapi/strapi#4314)
• 168f2af Bump eslint-config-prettier from 7.2.0 to 8.1.0 (Mongoose reconnect strapi/strapi#4315)
• 3718d64 Respect KNEX_TEST, support omitting sqlite3 from DB, and reduce outside mssql test db config (CORS doesn't work strapi/strapi#4313)
• c58794b Prepare to release 0.95.0-next3
• 61e1046 Avoid importing entire lodash to ensure tree-shaking is working correctly (Strapi Default File/Image Store strapi/strapi#4302)
• 8c73417 events: introduce queryContext on query-error (Use proper title case strapi/strapi#4301)
• b6fd941 Include 'name' property in MigratorConfig (Spell checking is disabled for rich text fields strapi/strapi#4300)
• 9581100 Prepare to release 0.95.0-next2
• 5614c18 Timestamp UTC Standardization for Migrations (Remove unneeded dependencies strapi/strapi#4245)
• 4899346 Fix for ES Module detection using npm@7 (Make plugin init function async strapi/strapi#4295) (Check if many-many relation is populated before loading it strapi/strapi#4296)

See the full diff

Package name: strapi

The new version differs by 250 commits.

• 86f882b v3.6.10
• 55a6a2b Merge pull request [V3] Remove hidden attributes from admin API responses strapi/strapi#13189 from strapi/fix/user-hidden-attributes-v3
• ed711ac Fix sanitation for admin users in cm
• 93268b6 Pass down withHidden option in sanitize recursion
• 775b5d4 Fix typo, hide tokens from admin user
• 6493b70 Removes hidden configuration from schema files
• 2163660 Use schema.config.attributes instead schema.attributes
• 8edbc4a Hide confirmation and reset-password token from the getstarted U&P extension
• db6a776 v3.6.9
• e1cb927 Merge pull request [V3] Packages Deprecation strapi/strapi#12520 from strapi/packages-deprecation
• dff93d0 Typo
• 0a13a52 Update V3 deprecation estimation
• b0ea40c Add deprecation warning to all concerned readme
• 229c109 Merge pull request Change documentation auth cookie system strapi/strapi#12246 from strapi/fix/change-documentation-auth-cookie
• 2d4c57f change documentation auth cookie system
• 6e3a134 Merge pull request [V3] Enable to trigger empty events webhook strapi/strapi#12192 from strapi/enhancement/enable-to-trigger-empty-events-webhook-v3
• 13f37e9 Enable to create/trigger webhooks with no events
• 53e8381 Add current password requirement to edit own profile password (Add current password requirement to edit own profile password strapi/strapi#11992)
• e8d2e54 Merge pull request Delete relations when disabling dp on a content type strapi/strapi#9878 from strapi/i18n/fix-dp-migration
• 1f0ec43 Merge pull request Simplified Chinese Translation Completed strapi/strapi#10680 from huangyuzhang/master
• 45c515c Merge pull request ✏️ Edit the file watcher to only ignore admin folder occurrences from project folder onwards and not parent folder strapi/strapi#11611 from strapi/fix_parent_folder_ignore
• a845c8f ✏️ Edit the file watcher to only ignore admin folder occurences from the current project folder onwards and not the admin folder
• 077741b Update bug report template to remove outdated message (Update bug report template to remove outdated message strapi/strapi#11242)
• db31902 Merge branch 'master' into master

See the full diff

Package name: strapi-admin

The new version differs by 250 commits.

• e8153d9 v3.2.4
• f08d00e Fix incorrect openapi type for datetime, date and password (Fix incorrect openapi type for datetime, date and password strapi/strapi#8334)
• 0494121 Merge pull request Add confirmationToken to user for email confirmation strapi/strapi#8365 from strapi/fix/email-confirmation-jwt
• bf18c2b Apply feedbacks
• 529d147 Add confirmationToken to user for email confirmation
• 9b62d98 Update sv.json (Update sv.json strapi/strapi#8355)
• 4b9476f Bump sharp from 0.26.0 to 0.26.2 (Bump sharp from 0.26.0 to 0.26.2 strapi/strapi#8348)
• f8bb96d Update issues/PR templates (Update issues/PR templates strapi/strapi#8343)
• 47e0f7a Bump lint-staged from 9.5.0 to 10.4.0 (Bump lint-staged from 9.5.0 to 10.4.0 strapi/strapi#8305)
• 2f97ff1 better error handling for missing model error (better error handling for missing model error strapi/strapi#8328)
• 1186d6a Bump rollup-plugin-postcss from 2.9.0 to 3.1.8 (Bump rollup-plugin-postcss from 2.9.0 to 3.1.8 strapi/strapi#8286)
• c84edea Bump @ fortawesome/fontawesome-svg-core from 1.2.30 to 1.2.32 (Bump @fortawesome/fontawesome-svg-core from 1.2.30 to 1.2.32 strapi/strapi#8289)
• a54e89e Merge pull request Fix links action on role list page strapi/strapi#8272 from MattieBelt/fix/8262
• 69876b9 Merge branch 'master' into fix/8262
• e53b54c Support query operators _or & _where in graphql with deep nesting (Support query operators _or & _where in graphql with deep nesting strapi/strapi#8332)
• 5a10263 Merge branch 'master' into fix/8262
• 435b294 Merge pull request Support node v14 + CI refactor strapi/strapi#8226 from strapi/chore/node-14
• d450937 Fix code factor
• 213d492 Merge branch 'master' into fix/8262
• 4bcce63 Use local actions
• 8b212d1 Merge pull request Reset admin password CLI strapi/strapi#8311 from strapi/cli/reset-admin-pwd
• f132bc1 scope env vars
• ab3489f Add global codecov to ci
• 36b80f2 add codecov

See the full diff

Package name: strapi-plugin-content-manager

The new version differs by 250 commits.

• 86f882b v3.6.10
• 55a6a2b Merge pull request [V3] Remove hidden attributes from admin API responses strapi/strapi#13189 from strapi/fix/user-hidden-attributes-v3
• ed711ac Fix sanitation for admin users in cm
• 93268b6 Pass down withHidden option in sanitize recursion
• 775b5d4 Fix typo, hide tokens from admin user
• 6493b70 Removes hidden configuration from schema files
• 2163660 Use schema.config.attributes instead schema.attributes
• 8edbc4a Hide confirmation and reset-password token from the getstarted U&P extension
• db6a776 v3.6.9
• e1cb927 Merge pull request [V3] Packages Deprecation strapi/strapi#12520 from strapi/packages-deprecation
• dff93d0 Typo
• 0a13a52 Update V3 deprecation estimation
• b0ea40c Add deprecation warning to all concerned readme
• 229c109 Merge pull request Change documentation auth cookie system strapi/strapi#12246 from strapi/fix/change-documentation-auth-cookie
• 2d4c57f change documentation auth cookie system
• 6e3a134 Merge pull request [V3] Enable to trigger empty events webhook strapi/strapi#12192 from strapi/enhancement/enable-to-trigger-empty-events-webhook-v3
• 13f37e9 Enable to create/trigger webhooks with no events
• 53e8381 Add current password requirement to edit own profile password (Add current password requirement to edit own profile password strapi/strapi#11992)
• e8d2e54 Merge pull request Delete relations when disabling dp on a content type strapi/strapi#9878 from strapi/i18n/fix-dp-migration
• 1f0ec43 Merge pull request Simplified Chinese Translation Completed strapi/strapi#10680 from huangyuzhang/master
• 45c515c Merge pull request ✏️ Edit the file watcher to only ignore admin folder occurrences from project folder onwards and not parent folder strapi/strapi#11611 from strapi/fix_parent_folder_ignore
• a845c8f ✏️ Edit the file watcher to only ignore admin folder occurences from the current project folder onwards and not the admin folder
• 077741b Update bug report template to remove outdated message (Update bug report template to remove outdated message strapi/strapi#11242)
• db31902 Merge branch 'master' into master

See the full diff

Package name: strapi-plugin-content-type-builder

The new version differs by 250 commits.

• 86f882b v3.6.10
• 55a6a2b Merge pull request [V3] Remove hidden attributes from admin API responses strapi/strapi#13189 from strapi/fix/user-hidden-attributes-v3
• ed711ac Fix sanitation for admin users in cm
• 93268b6 Pass down withHidden option in sanitize recursion
• 775b5d4 Fix typo, hide tokens from admin user
• 6493b70 Removes hidden configuration from schema files
• 2163660 Use schema.config.attributes instead schema.attributes
• 8edbc4a Hide confirmation and reset-password token from the getstarted U&P extension
• db6a776 v3.6.9
• e1cb927 Merge pull request [V3] Packages Deprecation strapi/strapi#12520 from strapi/packages-deprecation
• dff93d0 Typo
• 0a13a52 Update V3 deprecation estimation
• b0ea40c Add deprecation warning to all concerned readme
• 229c109 Merge pull request Change documentation auth cookie system strapi/strapi#12246 from strapi/fix/change-documentation-auth-cookie
• 2d4c57f change documentation auth cookie system
• 6e3a134 Merge pull request [V3] Enable to trigger empty events webhook strapi/strapi#12192 from strapi/enhancement/enable-to-trigger-empty-events-webhook-v3
• 13f37e9 Enable to create/trigger webhooks with no events
• 53e8381 Add current password requirement to edit own profile password (Add current password requirement to edit own profile password strapi/strapi#11992)
• e8d2e54 Merge pull request Delete relations when disabling dp on a content type strapi/strapi#9878 from strapi/i18n/fix-dp-migration
• 1f0ec43 Merge pull request Simplified Chinese Translation Completed strapi/strapi#10680 from huangyuzhang/master
• 45c515c Merge pull request ✏️ Edit the file watcher to only ignore admin folder occurrences from project folder onwards and not parent folder strapi/strapi#11611 from strapi/fix_parent_folder_ignore
• a845c8f ✏️ Edit the file watcher to only ignore admin folder occurences from the current project folder onwards and not the admin folder
• 077741b Update bug report template to remove outdated message (Update bug report template to remove outdated message strapi/strapi#11242)
• db31902 Merge branch 'master' into master

See the full diff

Package name: strapi-plugin-email

The new version differs by 250 commits.

• 6bb7a7f v3.0.0
• ac7ff09 Merge branch 'master' of github.com:strapi/strapi
• e45a55c Update publish script
• 3401348 Fix mongo error trying to cast from empty array (Fix mongo error trying to cast from empty array strapi/strapi#6358)
• dbaef20 Merge pull request Move header logo to the left strapi/strapi#6353 from strapi/fix/header-logo
• e87610e Merge branch 'master' into fix/header-logo
• 4bf3501 Merge pull request Chore/fix front issues strapi/strapi#6354 from strapi/chore/fix-front-issues
• b1b055f Merge branch 'master' into chore/fix-front-issues
• 5e5a27b Move header logo to the left
• b1b7941 Fixes The link to configure the view in the content type builder is not working properly strapi/strapi#5982
• 5003e47 Adding private field support to UID (Adding private field support to UID #6204  strapi/strapi#6331)
• bc7d42d Fixes Custom swagger link but admin click not change strapi/strapi#6153
• c921bcc Fixes Relation selector from content-manager not working correctly strapi/strapi#6160
• fd6938a Remove help link (Remove help link strapi/strapi#6345)
• 86d5caf fixes Writing the character '%' in the search bar makes it partially reset strapi/strapi#5984 (fixes #5984 strapi/strapi#6055)
• 9e8a084 Add Users count endpoint (Add Users count endpoint strapi/strapi#5859)
• 61c0c9d Add v3.x and remove alpha docs (Add v3.x and remove alpha docs strapi/strapi#6344)
• 549803a Sanitize user object in user plugin update method return value (Sanitize user object in user plugin update method return value strapi/strapi#6003)
• 65cc815 Upload proxy - Using Header objects build-in entries function (Upload proxy - Using Header objects build-in entries function strapi/strapi#6340)
• bdf4775 Add one change in migration guide
• f32bc7b Merge pull request Fix #5653: improve UserPermissions - password mutations strapi/strapi#5655 from ScottAgirs/patch---adjust-naming-to-password-mutations
• 41ca5ea Merge pull request Migration guide for stable strapi/strapi#6343 from strapi/chore/migration-stable
• 7df82f5 Add cleanup instruction
• 9078081 Add strucutre example

See the full diff

Package name: strapi-plugin-graphql

The new version differs by 250 commits.

• 6bb7a7f v3.0.0
• ac7ff09 Merge branch 'master' of github.com:strapi/strapi
• e45a55c Update publish script
• 3401348 Fix mongo error trying to cast from empty array (Fix mongo error trying to cast from empty array strapi/strapi#6358)
• dbaef20 Merge pull request Move header logo to the left strapi/strapi#6353 from strapi/fix/header-logo
• e87610e Merge branch 'master' into fix/header-logo
• 4bf3501 Merge pull request Chore/fix front issues strapi/strapi#6354 from strapi/chore/fix-front-issues
• b1b055f Merge branch 'master' into chore/fix-front-issues
• 5e5a27b Move header logo to the left
• b1b7941 Fixes The link to configure the view in the content type builder is not working properly strapi/strapi#5982
• 5003e47 Adding private field support to UID (Adding private field support to UID #6204  strapi/strapi#6331)
• bc7d42d Fixes Custom swagger link but admin click not change strapi/strapi#6153
• c921bcc Fixes Relation selector from content-manager not working correctly strapi/strapi#6160
• fd6938a Remove help link (Remove help link strapi/strapi#6345)
• 86d5caf fixes Writing the character '%' in the search bar makes it partially reset strapi/strapi#5984 (fixes #5984 strapi/strapi#6055)
• 9e8a084 Add Users count endpoint (Add Users count endpoint strapi/strapi#5859)
• 61c0c9d Add v3.x and remove alpha docs (Add v3.x and remove alpha docs strapi/strapi#6344)
• 549803a Sanitize user object in user plugin update method return value (Sanitize user object in user plugin update method return value strapi/strapi#6003)
• 65cc815 Upload proxy - Using Header objects build-in entries function (Upload proxy - Using Header objects build-in entries function strapi/strapi#6340)
• bdf4775 Add one change in migration guide
• f32bc7b Merge pull request Fix #5653: improve UserPermissions - password mutations strapi/strapi#5655 from ScottAgirs/patch---adjust-naming-to-password-mutations
• 41ca5ea Merge pull request Migration guide for stable strapi/strapi#6343 from strapi/chore/migration-stable
• 7df82f5 Add cleanup instruction
• 9078081 Add strucutre example

See the full diff

Package name: strapi-plugin-upload

The new version differs by 250 commits.

• 6bb7a7f v3.0.0
• ac7ff09 Merge branch 'master' of github.com:strapi/strapi
• e45a55c Update publish script
• 3401348 Fix mongo error trying to cast from empty array (Fix mongo error trying to cast from empty array strapi/strapi#6358)
• dbaef20 Merge pull request Move header logo to the left strapi/strapi#6353 from strapi/fix/header-logo
• e87610e Merge branch 'master' into fix/header-logo
• 4bf3501 Merge pull request Chore/fix front issues strapi/strapi#6354 from strapi/chore/fix-front-issues
• b1b055f Merge branch 'master' into chore/fix-front-issues
• 5e5a27b Move header logo to the left
• b1b7941 Fixes The link to configure the view in the content type builder is not working properly strapi/strapi#5982
• 5003e47 Adding private field support to UID (Adding private field support to UID #6204  strapi/strapi#6331)
• bc7d42d Fixes Custom swagger link but admin click not change strapi/strapi#6153
• c921bcc Fixes Relation selector from content-manager not working correctly strapi/strapi#6160
• fd6938a Remove help link (Remove help link strapi/strapi#6345)
• 86d5caf fixes Writing the character '%' in the search bar makes it partially reset strapi/strapi#5984 (fixes #5984 strapi/strapi#6055)
• 9e8a084 Add Users count endpoint (Add Users count endpoint strapi/strapi#5859)
• 61c0c9d Add v3.x and remove alpha docs (Add v3.x and remove alpha docs strapi/strapi#6344)
• 549803a Sanitize user object in user plugin update method return value (Sanitize user object in user plugin update method return value strapi/strapi#6003)
• 65cc815 Upload proxy - Using Header objects build-in entries function (Upload proxy - Using Header objects build-in entries function strapi/strapi#6340)
• bdf4775 Add one change in migration guide
• f32bc7b Merge pull request Fix #5653: improve UserPermissions - password mutations strapi/strapi#5655 from ScottAgirs/patch---adjust-naming-to-password-mutations
• 41ca5ea Merge pull request Migration guide for stable strapi/strapi#6343 from strapi/chore/migration-stable
• 7df82f5 Add cleanup instruction
• 9078081 Add strucutre example

See the full diff

Package name: strapi-plugin-users-permissions

The new version differs by 250 commits.

• 62b3ff5 v3.6.11
• d8ca7ff Merge pull request v3 dependencies strapi/strapi#14914 from strapi/chore/v3-deps
• ba3552d Revert mongoose
• c313dcf Add missing dependencies
• 105c2c8 Some more deps
• ae41280 Revert swagger
• bb3f562 Revert sharp
• dee19db drop node 12
• e06c6ee Upgrade swagger
• 39ee3d7 Upgrade sharp
• 7215c92 Upgrade koa2-ratelimit
• 6f706e9 wip
• 86f882b v3.6.10
• 55a6a2b Merge pull request [V3] Remove hidden attributes from admin API responses strapi/strapi#13189 from strapi/fix/user-hidden-attributes-v3
• ed711ac Fix sanitation for admin users in cm
• 93268b6 Pass down withHidden option in sanitize recursion
• 775b5d4 Fix typo, hide tokens from admin user
• 6493b70 Removes hidden configuration from schema files
• 2163660 Use schema.config.attributes instead schema.attributes
• 8edbc4a Hide confirmation and reset-password token from the getstarted U&P extension
• db6a776 v3.6.9
• e1cb927 Merge pull request [V3] Packages Deprecation strapi/strapi#12520 from strapi/packages-deprecation
• dff93d0 Typo
• 0a13a52 Update V3 deprecation e...