Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[Snyk] Upgrade ethereum-waffle from 3.4.4 to 4.0.10 (#189)
<p>This PR was automatically created by Snyk using the credentials of a
real user.</p><br /><h3>Snyk has created this PR to upgrade
ethereum-waffle from 3.4.4 to 4.0.10.</h3>
:information_source: Keep your dependencies up-to-date. This makes it
easier to fix existing vulnerabilities and to more quickly identify and
fix newly disclosed vulnerabilities when they affect your project.
<hr/>
*Warning:* This is a major version upgrade, and may be a breaking
change.
- The recommended version is **144 versions** ahead of your current
version.
- The recommended version was released **9 months ago**, on 2023-02-15.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png"
width="20" height="20" title="high severity"/> | Regular Expression
Denial of Service (ReDoS)<br/>
[SNYK-JS-ANSIREGEX-1583908](https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png"
width="20" height="20" title="high severity"/> | Prototype
Pollution<br/>
[SNYK-JS-ASYNC-2441827](https://snyk.io/vuln/SNYK-JS-ASYNC-2441827) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png"
width="20" height="20" title="high severity"/> | Regular Expression
Denial of Service (ReDoS)<br/>
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png"
width="20" height="20" title="high severity"/> | Prototype
Pollution<br/>
[SNYK-JS-UNSETVALUE-2400660](https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Information
Exposure<br/>
[SNYK-JS-NODEFETCH-2342118](https://snyk.io/vuln/SNYK-JS-NODEFETCH-2342118)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Denial of
Service<br/>
[SNYK-JS-NODEFETCH-674311](https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/c.png"
width="20" height="20" title="critical severity"/> | Incomplete List of
Disallowed Inputs<br/>
[SNYK-JS-BABELTRAVERSE-5962463](https://snyk.io/vuln/SNYK-JS-BABELTRAVERSE-5962463)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png"
width="20" height="20" title="high severity"/> | Command Injection<br/>
[SNYK-JS-LODASH-1040724](https://snyk.io/vuln/SNYK-JS-LODASH-1040724) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Regular Expression
Denial of Service (ReDoS)<br/>
[SNYK-JS-BROWSERSLIST-1090194](https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Open Redirect<br/>
[SNYK-JS-GOT-2932019](https://snyk.io/vuln/SNYK-JS-GOT-2932019) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Arbitrary Code
Injection<br/>
[SNYK-JS-UNDERSCORE-1080984](https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Prototype
Pollution<br/>
[SNYK-JS-JSON5-3182856](https://snyk.io/vuln/SNYK-JS-JSON5-3182856) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Regular Expression
Denial of Service (ReDoS)<br/>
[SNYK-JS-LODASH-1018905](https://snyk.io/vuln/SNYK-JS-LODASH-1018905) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Regular Expression
Denial of Service (ReDoS)<br/>
[SNYK-JS-WS-1296835](https://snyk.io/vuln/SNYK-JS-WS-1296835) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png"
width="20" height="20" title="medium severity"/> | Prototype
Pollution<br/>
[SNYK-JS-YARGSPARSER-560381](https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381)
| **159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | Proof of Concept
<img
src="https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/l.png"
width="20" height="20" title="low severity"/> | Insecure Credential
Storage<br/>
[SNYK-JS-WEB3-174533](https://snyk.io/vuln/SNYK-JS-WEB3-174533) |
**159/1000** <br/> **Why?** Confidentiality impact: None, Integrity
impact: None, Availability impact: High, Scope: Unchanged, Exploit
Maturity: Proof of Concept, User Interaction (UI): None, Privileges
Required (PR): None, Attack Complexity: Low, Attack Vector: Network,
EPSS: 0.00299, Social Trends: No, Days since published: 787, Reachable:
No, Transitive dependency: Yes, Is Malicious: No, Business Criticality:
High, Provider Urgency: High, Package Popularity Score: 99, Impact:
5.99, Likelihood: 2.65, Score Version: V5 | No Known Exploit
(*) Note that the real score may have changed since the PR was raised.
<details>
<summary><b>Release notes</b></summary>
<br/>
<details>
<summary>Package name: <b>ethereum-waffle</b></summary>
<ul>
<li>
<b>4.0.10</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/ethereum-waffle%404.0.10">2023-02-15</a></br><h3>Patch
Changes</h3>
<ul>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/4d83cde07bb77c01b37470da01e6ae87b0136792/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/4d83cde07bb77c01b37470da01e6ae87b0136792"><tt>4d83cde</tt></a>]
<ul>
<li>@ ethereum-waffle/mock-contract@4.0.4</li>
<li>@ ethereum-waffle/chai@4.0.10</li>
<li>@ ethereum-waffle/compiler@4.0.3</li>
</ul>
</li>
</ul>
</li>
<li>
<b>4.0.10-dev.efd5f2a</b> - 2023-10-12
</li>
<li>
<b>4.0.10-dev.4740ec6</b> - 2023-02-06
</li>
<li>
<b>4.0.10-dev.238c11c</b> - 2023-10-12
</li>
<li>
<b>4.0.10-dev.0915e72</b> - 2023-02-15
</li>
<li>
<b>4.0.9</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/ethereum-waffle%404.0.9">2023-01-27</a></br><h3>Patch
Changes</h3>
<ul>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/216f1d8cdfd98d02c6a335d7789831559aecf955/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/216f1d8cdfd98d02c6a335d7789831559aecf955"><tt>216f1d8</tt></a>]
<ul>
<li>@ ethereum-waffle/chai@4.0.9</li>
<li>@ ethereum-waffle/compiler@4.0.3</li>
<li>@ ethereum-waffle/mock-contract@4.0.3</li>
</ul>
</li>
</ul>
</li>
<li>
<b>4.0.9-dev.f8ca718</b> - 2023-01-26
</li>
<li>
<b>4.0.9-dev.a1d89d0</b> - 2023-01-27
</li>
<li>
<b>4.0.8</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/ethereum-waffle%404.0.8">2023-01-26</a></br><h3>Patch
Changes</h3>
<ul>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/f93abe93aab36bb2edf29f6b459c12daefe63383/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/f93abe93aab36bb2edf29f6b459c12daefe63383"><tt>f93abe9</tt></a>:
Move call history injection logic to hardhat plugin</li>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef"><tt>a0f721a</tt></a>:
Move ethers to peer deps</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/da9237577597618afa306161edfbdcad7a426542/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/da9237577597618afa306161edfbdcad7a426542"><tt>da92375</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/f93abe93aab36bb2edf29f6b459c12daefe63383/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/f93abe93aab36bb2edf29f6b459c12daefe63383"><tt>f93abe9</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/46b954e1f9cbf9036ece5837c574ce800e6cdacc/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/46b954e1f9cbf9036ece5837c574ce800e6cdacc"><tt>46b954e</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/9602243ca93cb015baa81c00f06d95d612b73b9f/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/9602243ca93cb015baa81c00f06d95d612b73b9f"><tt>9602243</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/fb6863d0a795db091b925385e1c1c670aa53eedd/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/fb6863d0a795db091b925385e1c1c670aa53eedd"><tt>fb6863d</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/b54c6b93dee70dd54f831b2b6af60b11e4f8c827/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/b54c6b93dee70dd54f831b2b6af60b11e4f8c827"><tt>b54c6b9</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/64707ae357764d7c3632cfeeaeb4491ed8fa48cf/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/64707ae357764d7c3632cfeeaeb4491ed8fa48cf"><tt>64707ae</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/1fa13127d199e43226178ffc45a661fddd657045/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/1fa13127d199e43226178ffc45a661fddd657045"><tt>1fa1312</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326"><tt>ee1d1b8</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/702c6ab299d78c1dbbb42ea72aa8bfbfce0c8390/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/702c6ab299d78c1dbbb42ea72aa8bfbfce0c8390"><tt>702c6ab</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef"><tt>a0f721a</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/f6d240ec6bc654fa81b7337001ef36d2241d48c8/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/f6d240ec6bc654fa81b7337001ef36d2241d48c8"><tt>f6d240e</tt></a>]
<ul>
<li>@ ethereum-waffle/mock-contract@4.0.3</li>
<li>@ ethereum-waffle/chai@4.0.8</li>
<li>@ ethereum-waffle/provider@4.0.5</li>
<li>@ ethereum-waffle/compiler@4.0.3</li>
</ul>
</li>
</ul>
</li>
<li>
<b>4.0.8-dev.f3d5029</b> - 2022-09-27
</li>
<li>
<b>4.0.8-dev.edcb2d5</b> - 2022-11-28
</li>
<li>
<b>4.0.8-dev.e1d3ccd</b> - 2023-01-11
</li>
<li>
<b>4.0.8-dev.d863d0a</b> - 2022-09-19
</li>
<li>
<b>4.0.8-dev.d4cc0eb</b> - 2023-01-10
</li>
<li>
<b>4.0.8-dev.cf5427e</b> - 2022-09-16
</li>
<li>
<b>4.0.8-dev.cf42065</b> - 2022-10-31
</li>
<li>
<b>4.0.8-dev.cc2dc55</b> - 2022-09-16
</li>
<li>
<b>4.0.8-dev.a50814e</b> - 2023-01-24
</li>
<li>
<b>4.0.8-dev.9bdd800</b> - 2022-10-03
</li>
<li>
<b>4.0.8-dev.90390a9</b> - 2022-10-04
</li>
<li>
<b>4.0.8-dev.8671be4</b> - 2022-10-31
</li>
<li>
<b>4.0.8-dev.4d27a34</b> - 2023-01-23
</li>
<li>
<b>4.0.8-dev.4946c9b</b> - 2022-11-10
</li>
<li>
<b>4.0.8-dev.4557ff9</b> - 2023-01-03
</li>
<li>
<b>4.0.8-dev.4541f86</b> - 2022-10-31
</li>
<li>
<b>4.0.8-dev.379ba2f</b> - 2022-09-27
</li>
<li>
<b>4.0.8-dev.166b72c</b> - 2023-01-26
</li>
<li>
<b>4.0.8-dev.13d1af0</b> - 2023-01-26
</li>
<li>
<b>4.0.8-dev.0c72c63</b> - 2022-09-26
</li>
<li>
<b>4.0.8-dev.0bc9af4</b> - 2023-01-26
</li>
<li>
<b>4.0.8-dev.06c4b26</b> - 2022-10-04
</li>
<li>
<b>4.0.7</b> - 2022-09-16
</li>
<li>
<b>4.0.7-dev.dd21fb0</b> - 2022-09-16
</li>
<li>
<b>4.0.7-dev.60ae4b4</b> - 2022-09-16
</li>
<li>
<b>4.0.7-dev.2d19dde</b> - 2022-09-16
</li>
<li>
<b>4.0.6</b> - 2022-08-30
</li>
<li>
<b>4.0.6-dev.f0bea18</b> - 2022-08-30
</li>
<li>
<b>4.0.6-dev.6f16299</b> - 2022-08-30
</li>
<li>
<b>4.0.5</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/%40ethereum-waffle%2Fprovider%404.0.5">2022-08-19</a></br><h3>Patch
Changes</h3>
<ul>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326"><tt>ee1d1b8</tt></a>:
😷 Upgrade ganache version</li>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef"><tt>a0f721a</tt></a>:
Move ethers to peer deps</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/e1c352a6e2520fe751c295966317008dd10c7eef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/e1c352a6e2520fe751c295966317008dd10c7eef"><tt>e1c352a</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/f0b525d5afa69dbeee7439ee148d44d9fba98294/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/f0b525d5afa69dbeee7439ee148d44d9fba98294"><tt>f0b525d</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/ee1d1b8b14a839ba2bcd2a941652110d33eee326"><tt>ee1d1b8</tt></a>]</li>
<li>Updated dependencies [<a class="commit-link"
data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef"><tt>a0f721a</tt></a>]
<ul>
<li>@ ethereum-waffle/ens@4.0.3</li>
</ul>
</li>
</ul>
</li>
<li>
<b>4.0.5-dev.e22c4e6</b> - 2022-08-05
</li>
<li>
<b>4.0.5-dev.b96f0af</b> - 2022-08-30
</li>
<li>
<b>4.0.5-dev.8eb1578</b> - 2022-08-05
</li>
<li>
<b>4.0.5-dev.89498ae</b> - 2022-08-10
</li>
<li>
<b>4.0.5-dev.71e4b73</b> - 2022-08-19
</li>
<li>
<b>4.0.5-dev.2f8bbd1</b> - 2022-08-19
</li>
<li>
<b>4.0.4</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/%40ethereum-waffle%2Fmock-contract%404.0.4">2022-08-03</a></br><h3>Patch
Changes</h3>
<ul>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/4d83cde07bb77c01b37470da01e6ae87b0136792/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/4d83cde07bb77c01b37470da01e6ae87b0136792"><tt>4d83cde</tt></a>:
Emit matcher improvement</li>
</ul>
</li>
<li>
<b>4.0.4-dev.e7e18f6</b> - 2022-08-03
</li>
<li>
<b>4.0.4-dev.18b219e</b> - 2022-08-03
</li>
<li>
<b>4.0.3</b> - <a
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/releases/tag/%40ethereum-waffle%2Foptimism%404.0.3">2022-08-02</a></br><h3>Patch
Changes</h3>
<ul>
<li><a class="commit-link" data-hovercard-type="commit"
data-hovercard-url="https://github.com/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef/hovercard"
href="https://snyk.io/redirect/github/TrueFiEng/Waffle/commit/a0f721a1412bb7998904f4761ed25020868453ef"><tt>a0f721a</tt></a>:
Move ethers to peer deps</li>
</ul>
</li>
<li>
<b>4.0.3-dev.d1f8ca7</b> - 2022-08-01
</li>
<li>
<b>4.0.3-dev.cae5bac</b> - 2022-08-02
</li>
<li>
<b>4.0.3-dev.bd741a4</b> - 2022-07-29
</li>
<li>
<b>4.0.3-dev.41bc646</b> - 2022-08-03
</li>
<li>
<b>4.0.3-dev.3b7020d</b> - 2022-08-01
</li>
<li>
<b>4.0.3-dev.0f5af9a</b> - 2022-08-01
</li>
<li>
<b>4.0.3-dev.0c13fb9</b> - 2022-08-01
</li>
<li>
<b>4.0.2</b> - 2022-07-26
</li>
<li>
<b>4.0.2-dev.c513a49</b> - 2022-07-28
</li>
<li>
<b>4.0.2-dev.b329845</b> - 2022-07-26
</li>
<li>
<b>4.0.2-dev.4e0598e</b> - 2022-07-28
</li>
<li>
<b>4.0.2-dev.382de5b</b> - 2022-07-28
</li>
<li>
<b>4.0.2-dev.1fe07bb</b> - 2022-07-29
</li>
<li>
<b>4.0.2-dev.0a87072</b> - 2022-07-26
</li>
<li>
<b>4.0.1</b> - 2022-07-22
</li>
<li>
<b>4.0.1-dev.37f589d</b> - 2022-07-22
</li>
<li>
<b>4.0.1-dev.2e1837c</b> - 2022-07-25
</li>
<li>
<b>4.0.0</b> - 2022-03-24
</li>
<li>
<b>4.0.0-dev.e3fa452</b> - 2022-05-16
</li>
<li>
<b>4.0.0-dev.e275a26</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.de3905f</b> - 2022-04-27
</li>
<li>
<b>4.0.0-dev.d9a8ab2</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.d8521e6</b> - 2022-06-30
</li>
<li>
<b>4.0.0-dev.c98112a</b> - 2022-07-21
</li>
<li>
<b>4.0.0-dev.c694a2a</b> - 2022-05-06
</li>
<li>
<b>4.0.0-dev.bc0a5b5</b> - 2022-05-06
</li>
<li>
<b>4.0.0-dev.baa1b2f</b> - 2022-04-21
</li>
<li>
<b>4.0.0-dev.ba8cde5</b> - 2022-05-13
</li>
<li>
<b>4.0.0-dev.ba7033f</b> - 2022-05-06
</li>
<li>
<b>4.0.0-dev.b82389f</b> - 2022-04-21
</li>
<li>
<b>4.0.0-dev.b7bb3ba</b> - 2022-05-05
</li>
<li>
<b>4.0.0-dev.b2ee4d0</b> - 2022-06-07
</li>
<li>
<b>4.0.0-dev.b21809a</b> - 2022-06-08
</li>
<li>
<b>4.0.0-dev.b028d7f</b> - 2022-07-21
</li>
<li>
<b>4.0.0-dev.9e7c3d6</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.900b71d</b> - 2022-05-06
</li>
<li>
<b>4.0.0-dev.8f72c9c</b> - 2022-04-21
</li>
<li>
<b>4.0.0-dev.8d4934c</b> - 2022-04-21
</li>
<li>
<b>4.0.0-dev.8aa0bc2</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.838cf4d</b> - 2022-07-08
</li>
<li>
<b>4.0.0-dev.7e092e8</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.79d1c7b</b> - 2022-07-13
</li>
<li>
<b>4.0.0-dev.5c29ca4</b> - 2022-07-19
</li>
<li>
<b>4.0.0-dev.5587e09</b> - 2022-07-19
</li>
<li>
<b>4.0.0-dev.539c432</b> - 2022-06-07
</li>
<li>
<b>4.0.0-dev.51e05d8</b> - 2022-04-21
</li>
<li>
<b>4.0.0-dev.4fd670d</b> - 2022-06-07
</li>
<li>
<b>4.0.0-dev.4ce739d</b> - 2022-07-21
</li>
<li>
<b>4.0.0-dev.498bffb</b> - 2022-04-27
</li>
<li>
<b>4.0.0-dev.2fe3f15</b> - 2022-06-07
</li>
<li>
<b>4.0.0-dev.2ef3d81</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.219fe4f</b> - 2022-05-17
</li>
<li>
<b>4.0.0-dev.1c384e6</b> - 2022-06-15
</li>
<li>
<b>4.0.0-dev.104f4a3</b> - 2022-05-16
</li>
<li>
<b>4.0.0-dev.0f1b253</b> - 2022-06-07
</li>
<li>
<b>4.0.0-dev.0e1e2e5</b> - 2022-05-04
</li>
<li>
<b>4.0.0-dev.06401c4</b> - 2022-07-12
</li>
<li>
<b>4.0.0-dev.4867133</b> - 2022-07-07
</li>
<li>
<b>4.0.0-alpha.b94c36</b> - 2022-04-11
</li>
<li>
<b>4.0.0-alpha.28</b> - 2022-07-21
</li>
<li>
<b>4.0.0-alpha.27</b> - 2022-07-19
</li>
<li>
<b>4.0.0-alpha.26</b> - 2022-06-07
</li>
<li>
<b>4.0.0-alpha.25</b> - 2022-05-17
</li>
<li>
<b>4.0.0-alpha.24</b> - 2022-05-06
</li>
<li>
<b>4.0.0-alpha.23</b> - 2022-04-27
</li>
<li>
<b>4.0.0-alpha.22</b> - 2022-04-21
</li>
<li>
<b>4.0.0-alpha.21</b> - 2022-04-19
</li>
<li>
<b>4.0.0-alpha.20</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.19</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.18</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.17.12</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.17.11</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.17.10</b> - 2022-04-13
</li>
<li>
<b>4.0.0-alpha.17.4</b> - 2022-04-12
</li>
<li>
<b>4.0.0-alpha.17.3</b> - 2022-04-12
</li>
<li>
<b>4.0.0-alpha.17.2</b> - 2022-04-12
</li>
<li>
<b>4.0.0-alpha.17.1</b> - 2022-04-11
</li>
<li>
<b>4.0.0-alpha.17</b> - 2022-04-11
</li>
<li>
<b>4.0.0-alpha.16</b> - 2022-04-11
</li>
<li>
<b>4.0.0-alpha.15</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.14</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.13</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.12</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.11</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.10</b> - 2022-04-08
</li>
<li>
<b>4.0.0-alpha.9</b> - 2022-04-05
</li>
<li>
<b>4.0.0-alpha.8</b> - 2022-03-29
</li>
<li>
<b>4.0.0-alpha.7</b> - 2022-03-28
</li>
<li>
<b>4.0.0-alpha.6</b> - 2022-03-28
</li>
<li>
<b>4.0.0-alpha.5</b> - 2022-03-25
</li>
<li>
<b>4.0.0-alpha.4</b> - 2022-03-25
</li>
<li>
<b>4.0.0-alpha.3</b> - 2022-03-25
</li>
<li>
<b>4.0.0-alpha.2</b> - 2022-03-24
</li>
<li>
<b>4.0.0-alpha.1</b> - 2022-03-23
</li>
<li>
<b>4.0.0-alpha.0</b> - 2022-03-10
</li>
<li>
<b>3.4.4</b> - 2022-03-23
</li>
</ul>
from <a
href="https://snyk.io/redirect/github/EthWorks/Waffle/releases">ethereum-waffle
GitHub release notes</a>
</details>
</details>
<hr/>
**Note:** *You are seeing this because you or someone else with access
to this repository has authorized Snyk to open upgrade PRs.*
For more information: <img
src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiIyNzE3YjhhNi1mNmEwLTQ2YTMtODA5Zi1jMTA1OTI2NWFhODgiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6IjI3MTdiOGE2LWY2YTAtNDZhMy04MDlmLWMxMDU5MjY1YWE4OCJ9fQ=="
width="0" height="0"/>
🧐 [View latest project
report](https://app.snyk.io/org/woodpile37/project/f0dcf1c9-ecf1-445b-bc07-e8f73c595f54?utm_source=github&utm_medium=referral&page=upgrade-pr)
🛠 [Adjust upgrade PR
settings](https://app.snyk.io/org/woodpile37/project/f0dcf1c9-ecf1-445b-bc07-e8f73c595f54/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr)
🔕 [Ignore this dependency or unsubscribe from future upgrade
PRs](https://app.snyk.io/org/woodpile37/project/f0dcf1c9-ecf1-445b-bc07-e8f73c595f54/settings/integration?pkg=ethereum-waffle&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
<!---
(snyk:metadata:{"prId":"2717b8a6-f6a0-46a3-809f-c1059265aa88","prPublicId":"2717b8a6-f6a0-46a3-809f-c1059265aa88","dependencies":[{"name":"ethereum-waffle","from":"3.4.4","to":"4.0.10"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/woodpile37/project/f0dcf1c9-ecf1-445b-bc07-e8f73c595f54?utm_source=github&utm_medium=referral&page=upgrade-pr","projectPublicId":"f0dcf1c9-ecf1-445b-bc07-e8f73c595f54","env":"prod","prType":"upgrade","vulns":["SNYK-JS-ANSIREGEX-1583908","SNYK-JS-ASYNC-2441827","SNYK-JS-SEMVER-3247795","SNYK-JS-UNSETVALUE-2400660","SNYK-JS-NODEFETCH-2342118","SNYK-JS-NODEFETCH-674311","SNYK-JS-BABELTRAVERSE-5962463","SNYK-JS-LODASH-1040724","SNYK-JS-BROWSERSLIST-1090194","SNYK-JS-GOT-2932019","SNYK-JS-UNDERSCORE-1080984","SNYK-JS-JSON5-3182856","SNYK-JS-LODASH-1018905","SNYK-JS-WS-1296835","SNYK-JS-YARGSPARSER-560381","SNYK-JS-WEB3-174533"],"issuesToFix":[{"issueId":"SNYK-JS-ANSIREGEX-1583908","severity":"high","title":"Regular
Expression Denial of Service
(ReDoS)","exploitMaturity":"proof-of-concept","priorityScore":159,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00299},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sun
Sep 12 2021 12:52:37 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"high"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":2.65},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-ASYNC-2441827","severity":"high","title":"Prototype
Pollution","exploitMaturity":"proof-of-concept","priorityScore":159,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00069},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Thu
Apr 07 2022 14:22:18 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"high"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":2.64},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-SEMVER-3247795","severity":"high","title":"Regular
Expression Denial of Service
(ReDoS)","exploitMaturity":"proof-of-concept","priorityScore":169,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00091},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Tue
Jun 20 2023 15:39:58 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"high"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":2.81},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-UNSETVALUE-2400660","severity":"high","title":"Prototype
Pollution","exploitMaturity":"no-known-exploit","priorityScore":115,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.01055},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sun
Feb 13 2022 15:26:38 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"high"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":1.92},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-NODEFETCH-2342118","severity":"medium","title":"Information
Exposure","exploitMaturity":"no-known-exploit","priorityScore":104,"priorityScoreFactors":[{"name":"confidentiality","value":"high"},{"name":"integrity","value":"none"},{"name":"availability","value":"none"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"low"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.0011},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Mon
Jan 17 2022 16:25:00 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":1.73},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-NODEFETCH-674311","severity":"medium","title":"Denial
of
Service","exploitMaturity":"no-known-exploit","priorityScore":101,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"unproven"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"high"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00096},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Fri
Sep 11 2020 14:12:46 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.99},{"name":"likelihood","value":1.67},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-BABELTRAVERSE-5962463","severity":"critical","title":"Incomplete
List of Disallowed
Inputs","exploitMaturity":"no-known-exploit","priorityScore":160,"priorityScoreFactors":[{"name":"confidentiality","value":"high"},{"name":"integrity","value":"high"},{"name":"availability","value":"high"},{"name":"scope","value":"changed"},{"name":"exploitCodeMaturity"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"local"},{"name":"epss","value":0.0006},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Fri
Oct 13 2023 06:39:08 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"critical"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":10.1},{"name":"likelihood","value":1.58},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-LODASH-1040724","severity":"high","title":"Command
Injection","exploitMaturity":"proof-of-concept","priorityScore":239,"priorityScoreFactors":[{"name":"confidentiality","value":"high"},{"name":"integrity","value":"high"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"high"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00606},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Mon
Feb 15 2021 11:50:50 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"high"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":9.79},{"name":"likelihood","value":2.43},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-BROWSERSLIST-1090194","severity":"medium","title":"Regular
Expression Denial of Service
(ReDoS)","exploitMaturity":"proof-of-concept","priorityScore":63,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"low"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00129},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Wed
Apr 28 2021 15:14:31 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":2.35},{"name":"likelihood","value":2.64},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-GOT-2932019","severity":"medium","title":"Open
Redirect","exploitMaturity":"no-known-exploit","priorityScore":61,"priorityScoreFactors":[{"name":"confidentiality","value":"low"},{"name":"integrity","value":"low"},{"name":"availability","value":"none"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity"},{"name":"userInteraction","value":"required"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00058},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sun
Jun 19 2022 15:33:44 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":4.19},{"name":"likelihood","value":1.45},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-UNDERSCORE-1080984","severity":"medium","title":"Arbitrary
Code
Injection","exploitMaturity":"proof-of-concept","priorityScore":173,"priorityScoreFactors":[{"name":"confidentiality","value":"high"},{"name":"integrity","value":"low"},{"name":"availability","value":"low"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"high"},{"name":"attackComplexity","value":"high"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00361},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Mon
Mar 29 2021 14:54:59 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":7.84},{"name":"likelihood","value":2.21},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-JSON5-3182856","severity":"medium","title":"Prototype
Pollution","exploitMaturity":"proof-of-concept","priorityScore":190,"priorityScoreFactors":[{"name":"confidentiality","value":"low"},{"name":"integrity","value":"low"},{"name":"availability","value":"high"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"low"},{"name":"attackComplexity","value":"high"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00225},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sun
Dec 25 2022 08:45:14 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":7.84},{"name":"likelihood","value":2.42},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-LODASH-1018905","severity":"medium","title":"Regular
Expression Denial of Service
(ReDoS)","exploitMaturity":"proof-of-concept","priorityScore":63,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"low"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00182},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Mon
Feb 15 2021 11:50:49 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":2.35},{"name":"likelihood","value":2.64},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-WS-1296835","severity":"medium","title":"Regular
Expression Denial of Service
(ReDoS)","exploitMaturity":"proof-of-concept","priorityScore":63,"priorityScoreFactors":[{"name":"confidentiality","value":"none"},{"name":"integrity","value":"none"},{"name":"availability","value":"low"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00116},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Wed
May 26 2021 11:57:43 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":2.35},{"name":"likelihood","value":2.64},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-YARGSPARSER-560381","severity":"medium","title":"Prototype
Pollution","exploitMaturity":"proof-of-concept","priorityScore":137,"priorityScoreFactors":[{"name":"confidentiality","value":"low"},{"name":"integrity","value":"low"},{"name":"availability","value":"low"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity","value":"proofOfConcept"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"none"},{"name":"attackComplexity","value":"high"},{"name":"attackVector","value":"network"},{"name":"epss","value":0.00044},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Mon
Mar 16 2020 16:35:33 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"medium"},{"name":"relativePopularityRank","value":99},{"name":"impact","value":5.62},{"name":"likelihood","value":2.42},{"name":"scoreVersion","value":"V5"}]},{"issueId":"SNYK-JS-WEB3-174533","severity":"low","title":"Insecure
Credential
Storage","exploitMaturity":"no-known-exploit","priorityScore":30,"priorityScoreFactors":[{"name":"confidentiality","value":"low"},{"name":"integrity","value":"none"},{"name":"availability","value":"none"},{"name":"scope","value":"unchanged"},{"name":"exploitCodeMaturity"},{"name":"userInteraction","value":"none"},{"name":"privilegesRequired","value":"low"},{"name":"attackComplexity","value":"low"},{"name":"attackVector","value":"local"},{"name":"epss","value":0.01055},{"name":"isTrending","value":false},{"name":"publicationDate","value":"Sun
Apr 28 2019 12:03:31 GMT+0000 (Coordinated Universal
Time)"},{"name":"isReachable","value":false},{"name":"isTransitive","value":true},{"name":"isMalicious","value":false},{"name":"businessCriticality","value":"high"},{"name":"relativeImportance","value":"low"},{"name":"relativePopularityRank","value":98},{"name":"impact","value":2.35},{"name":"likelihood","value":1.27},{"name":"scoreVersion","value":"V5"}]}],"upgrade":["SNYK-JS-ANSIREGEX-1583908","SNYK-JS-ASYNC-2441827","SNYK-JS-SEMVER-3247795","SNYK-JS-UNSETVALUE-2400660","SNYK-JS-NODEFETCH-2342118","SNYK-JS-NODEFETCH-674311","SNYK-JS-BABELTRAVERSE-5962463","SNYK-JS-LODASH-1040724","SNYK-JS-BROWSERSLIST-1090194","SNYK-JS-GOT-2932019","SNYK-JS-UNDERSCORE-1080984","SNYK-JS-JSON5-3182856","SNYK-JS-LODASH-1018905","SNYK-JS-WS-1296835","SNYK-JS-YARGSPARSER-560381","SNYK-JS-WEB3-174533"],"upgradeInfo":{"versionsDiff":144,"publishedDate":"2023-02-15T16:37:44.104Z"},"templateVariants":["priorityScore"],"hasFixes":true,"isMajorUpgrade":true,"isBreakingChange":true,"priorityScoreList":[159,159,169,115,104,101,160,239,63,61,173,190,63,63,137,30]})
--->- Loading branch information
