[Snyk] Upgrade react-redux from 5.0.7 to 5.1.2

[snyk-bot]

Snyk has created this PR to upgrade react-redux from 5.0.7 to 5.1.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released 5 months ago, on 2019-10-08.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Arbitrary File Write SNYK-JS-NPM-537606	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-NPM-537603	Proof of Concept
	NULL Pointer Dereference SNYK-JS-NODESASS-535505	No Known Exploit
	Out-of-bounds Read SNYK-JS-NODESASS-535501	No Known Exploit
	NULL Pointer Dereference SNYK-JS-NODESASS-535500	No Known Exploit
	Prototype Pollution SNYK-JS-LODASHMERGEWITH-174136	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-FSTREAM-174725	No Known Exploit
	Arbitrary File Write SNYK-JS-BINLINKS-537610	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-BINLINKS-537608	Proof of Concept
	Cross-site Scripting (XSS) npm:react-dom:20180802	No Known Exploit
	Prototype Pollution npm:hoek:20180212	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NODESASS-542662	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NODESASS-540982	No Known Exploit
	Resource Exhaustion SNYK-JS-NODESASS-535504	No Known Exploit
	Man-in-the-Middle (MitM) SNYK-JS-HTTPSPROXYAGENT-469131	Proof of Concept
	Unauthorized File Access SNYK-JS-NPM-537604	Proof of Concept
	Unauthorized File Access SNYK-JS-BINLINKS-537609	Proof of Concept

Release notes

Package name: react-redux

• 5.1.2 - 2019-10-08
  

  Changes

  • Bump up hoist-non-react-statics version (@timdorr)
  • Avoid warnings in React >=16.3 (#1410 by @samkline)
  • Use UNSAFE_ lifecycle event names where supported (#1383 by @elyobo)
• 5.1.1 - 2018-11-10
• 5.1.0 - 2018-10-25
• 5.1.0-test.1 - 2018-06-21
• 5.0.7 - 2018-02-16

from react-redux GitHub release notes

Commit messages

Package name: react-redux

• 4be2626 5.1.2
• ad8d773 Upgrade hoist-non-react-statics
• 2978315 In React >=16.3, use unsafe lifecycle methods to avoid warnings, even in development (#1410)
• 4144715 Fix React version check to support 16.10 (#1407)
• 9137f7f Use UNSAFE_ lifecycle event names where supported. (#1383)
• 5cdb83a 5.1.1
• c9d214e Treat `null` as a valid plain object prototype in `isPlainObject()` (#1075)
• 574ecc5 Upgrade hoist-non-react-statics to deal with contextType
• b245f83 5.1.0
• 307f463 Rebuild lock files with npm 6.4.1
• 1b43eaa (feat): support react 16.6 (#1062)
• 2093fbb Upgrade to babel@7 (#1043)
• bc7b6a9 docs: enable search for docusaurus site (#1060)
• 1e93536 Add nodejs version 10 for ci (#1058)
• 1ab1596 fix log message hint for ownProps on map function (#1056)
• 0d9325e Docs/refactor getting started (#1054)
• ba6b010 Update docs link
• dde1a0a Clean-Ups after `mapState` (#1042)
• 294c42c [Docs] Fix duplicated words in `mapState` (#1037)
• 05f943d Fixed broked links in footer (#1041)
• cde9c04 Fix a very small typo in mapStateToProps docs (#1040)
• 1db16a4 Fix link to getting started doc (#1039)
• f930a76 Docs/extracting data with mapstate (#1036)
• 588c565 Changed highlight theme and updated snippet language (#1035)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs