Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: upgrade sharp from 0.29.3 to 0.32.5 #55254

Merged
merged 3 commits into from Sep 12, 2023
Merged

fix: upgrade sharp from 0.29.3 to 0.32.5 #55254

merged 3 commits into from Sep 12, 2023

Conversation

mayank1513
Copy link
Contributor

upgrade sharp from 0.29.3 to 0.32.5.

Fix Remote Code Execution (RCE)
SNYK-JS-SHARP-2848109

@mayank1513 mayank1513 requested review from a team as code owners September 12, 2023 01:13
@ijjk ijjk added the examples Issue/PR related to examples label Sep 12, 2023
@ijjk
Copy link
Member

ijjk commented Sep 12, 2023
edited by styfle

Allow CI Workflow Run

  • approve CI run for commit: 14f584b

Note: this should only be enabled once the PR is ready to go and can only be enabled by a maintainer

1 similar comment
@ijjk
Copy link
Member

ijjk commented Sep 12, 2023
edited by styfle

Allow CI Workflow Run

  • approve CI run for commit: 14f584b

Note: this should only be enabled once the PR is ready to go and can only be enabled by a maintainer

orca-security-us[bot]
orca-security-us bot reviewed Sep 12, 2023
View reviewed changes
Copy link

@orca-security-us orca-security-us bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Orca Security Scan Summary

Status Check Issues by priority
Passed Passed Secrets high 0   medium 1   low 0   info 0 View in Orca

@styfle styfle added the CI approved Approve running CI for fork label Sep 12, 2023
@kodiakhq kodiakhq bot merged commit 9f85240 into vercel:canary Sep 12, 2023
50 checks passed
@mayank1513 mayank1513 deleted the snyk-upgrade-277eae70689ec5d98e9f5326c5a6cde9 branch September 20, 2023 03:25
@github-actions github-actions bot added the locked label Oct 4, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 4, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@orca-security-us orca-security-us[bot] orca-security-us left review comments

@styfle styfle styfle approved these changes

@S3Prototype S3Prototype Awaiting requested review from S3Prototype S3Prototype is a code owner automatically assigned from vercel/devex

@StephDietz StephDietz Awaiting requested review from StephDietz StephDietz is a code owner automatically assigned from vercel/devex

Assignees
No one assigned
Labels
CI approved Approve running CI for fork examples Issue/PR related to examples locked
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@mayank1513 @ijjk @styfle @snyk-bot