Skip to content

[Snyk] Upgrade dgg-chat-gui from 2.8.2 to 2.57.0#50

Open
MrRaja23 wants to merge 1 commit intomasterfrom
snyk-upgrade-801947d513a501eae498fb78ae9f5be2
Open

[Snyk] Upgrade dgg-chat-gui from 2.8.2 to 2.57.0#50
MrRaja23 wants to merge 1 commit intomasterfrom
snyk-upgrade-801947d513a501eae498fb78ae9f5be2

Conversation

@MrRaja23
Copy link
Owner

@MrRaja23 MrRaja23 commented Oct 27, 2025

snyk-top-banner

Snyk has created this PR to upgrade dgg-chat-gui from 2.8.2 to 2.57.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 79 versions ahead of your current version.

  • The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Denial of Service (DoS)
SNYK-JS-DECODEURICOMPONENT-3149970		 482 Proof of Concept
high severity Directory Traversal
SNYK-JS-MOMENT-2440688		 482 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-MOMENT-2944238		 482 Proof of Concept
high severity Directory Traversal
SNYK-JS-MOMENT-2440688		 482 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-MOMENT-2944238		 482 Proof of Concept
Release notes
Package name: dgg-chat-gui
  • 2.57.0 - 2025-09-22

    What's Changed

    New features

    • Add a user's new messages to the user info menu while it's open by @ 11k in #711

    Other changes

    • build(deps): bump dotenv from 17.2.1 to 17.2.2 by @ dependabot[bot] in #707
    • build(deps-dev): bump lint-staged from 16.1.5 to 16.1.6 by @ dependabot[bot] in #704
    • build(deps): bump overlayscrollbars from 2.11.5 to 2.12.0 by @ dependabot[bot] in #703
    • build(deps-dev): bump jest-environment-jsdom from 30.0.5 to 30.1.2 by @ dependabot[bot] in #705
    • build(deps-dev): bump postcss-loader from 8.1.1 to 8.2.0 by @ dependabot[bot] in #706
    • Watching info in right click info menu is now a clickable link by @ AlexDavies8 in #709
    • fix button toggle highlighting by @ Frozandero in #710

    New Contributors

    Full Changelog: v2.56.0...v2.57.0

  • 2.56.0 - 2025-09-18

    What's Changed

    New features

    • Use localStorage as a cache for settings by @ AlexDavies8 in #692
    • Use linkifyjs instead of a custom regex for linkifying messages by @ vyneer in #690
    • Allow specifying both a custom display name and a custom title for the /host command by @ 11k in #708

    Other changes

    • build(deps-dev): bump jest from 30.0.4 to 30.0.5 by @ dependabot[bot] in #684
    • build(deps-dev): bump jest-environment-jsdom from 30.0.4 to 30.0.5 by @ dependabot[bot] in #683
    • build(deps-dev): bump eslint-plugin-import from 2.31.0 to 2.32.0 by @ dependabot[bot] in #682
    • build(deps-dev): bump webpack from 5.100.2 to 5.101.0 by @ dependabot[bot] in #681
    • build(deps-dev): bump lint-staged from 16.1.2 to 16.1.5 by @ dependabot[bot] in #689
    • build(deps): bump overlayscrollbars from 2.11.4 to 2.11.5 by @ dependabot[bot] in #686
    • build(deps): bump dotenv from 17.2.0 to 17.2.1 by @ dependabot[bot] in #685
    • build(deps): bump actions/checkout from 4 to 5 by @ dependabot[bot] in #688
    • build(deps-dev): bump sass from 1.89.2 to 1.90.0 by @ dependabot[bot] in #687
    • build(deps-dev): bump @ babel/core from 7.28.0 to 7.28.4 by @ dependabot[bot] in #701
    • build(deps-dev): bump html-webpack-plugin from 5.6.3 to 5.6.4 by @ dependabot[bot] in #696
    • build(deps-dev): bump webpack from 5.101.0 to 5.101.3 by @ dependabot[bot] in #695
    • build(deps): bump actions/setup-node from 4 to 5 by @ dependabot[bot] in #699
    • build(deps-dev): bump sass from 1.90.0 to 1.92.1 by @ dependabot[bot] in #700
    • build(deps-dev): bump @ babel/preset-env from 7.28.0 to 7.28.3 by @ dependabot[bot] in #694

    Full Changelog: v2.55.0...v2.56.0

  • 2.55.0 - 2025-07-23

    What's Changed

    New features

    • Display the user's recent messages in the user info menu by @ 11k in #672

    Bugfixes

    • fix: check duplicate event and death messages by @ vyneer in #584

    Other changes

    • build(deps-dev): bump webpack from 5.99.8 to 5.99.9 by @ dependabot[bot] in #646
    • build(deps): bump dotenv from 16.4.7 to 16.5.0 by @ dependabot[bot] in #647
    • build(deps-dev): bump sass from 1.89.0 to 1.89.1 by @ dependabot[bot] in #648
    • build(deps-dev): bump @ babel/core from 7.27.1 to 7.27.4 by @ dependabot[bot] in #652
    • build(deps): bump overlayscrollbars from 2.11.3 to 2.11.4 by @ dependabot[bot] in #650
    • build(deps-dev): bump eslint-plugin-jest from 28.11.0 to 28.12.0 by @ dependabot[bot] in #649
    • build(deps-dev): bump lint-staged from 16.0.0 to 16.1.0 by @ dependabot[bot] in #651
    • build(deps-dev): bump sass from 1.89.1 to 1.89.2 by @ dependabot[bot] in #655
    • build(deps-dev): bump webpack-dev-server from 5.2.1 to 5.2.2 by @ dependabot[bot] in #654
    • build(deps-dev): bump eslint-plugin-jest from 28.12.0 to 28.13.0 by @ dependabot[bot] in #653
    • fix user info menu messages having incorrect timestamp by @ LeviOP in #666
    • Implemented #668 (autocomplete recent mentions) by @ AlexDavies8 in #671
    • build(deps-dev): bump lint-staged from 16.1.0 to 16.1.2 by @ dependabot[bot] in #657
    • build(deps-dev): bump eslint-plugin-jest from 28.13.0 to 29.0.1 by @ dependabot[bot] in #662
    • build(deps-dev): bump prettier from 3.5.3 to 3.6.2 by @ dependabot[bot] in #664
    • build(deps-dev): bump jest from 29.7.0 to 30.0.4 by @ dependabot[bot] in #667
    • build(deps-dev): bump jest-environment-jsdom from 29.7.0 to 30.0.4 by @ dependabot[bot] in #669
    • build(deps-dev): bump eslint-config-prettier from 10.1.5 to 10.1.8 by @ dependabot[bot] in #675
    • build(deps-dev): bump webpack from 5.99.9 to 5.100.2 by @ dependabot[bot] in #677
    • build(deps-dev): bump @ babel/preset-env from 7.27.2 to 7.28.0 by @ dependabot[bot] in #676
    • build(deps): bump dotenv from 16.5.0 to 17.2.0 by @ dependabot[bot] in #673
    • build(deps-dev): bump @ babel/core from 7.27.4 to 7.28.0 by @ dependabot[bot] in #674

    New Contributors

    Full Changelog: v2.54.0...v2.55.0

  • 2.54.0 - 2025-05-22

    What's Changed

    Bugfixes

    • Fix unread message counter duplicating by @ vyneer in #640

    Other changes

    • build(deps-dev): bump @ babel/preset-env from 7.26.7 to 7.26.9 by @ dependabot in #615
    • build(deps): bump sass-loader from 16.0.4 to 16.0.5 by @ dependabot in #616
    • build(deps-dev): bump @ babel/core from 7.26.7 to 7.26.9 by @ dependabot in #618
    • build(deps-dev): bump prettier from 3.4.2 to 3.5.3 by @ dependabot in #620
    • build(deps-dev): bump sass from 1.83.4 to 1.85.1 by @ dependabot in #621
    • build(deps-dev): bump autoprefixer from 10.4.20 to 10.4.21 by @ dependabot in #626
    • build(deps-dev): bump webpack from 5.97.1 to 5.98.0 by @ dependabot in #624
    • build(deps-dev): bump eslint-config-prettier from 10.0.1 to 10.1.1 by @ dependabot in #622
    • build(deps-dev): bump babel-loader from 9.2.1 to 10.0.0 by @ dependabot in #623
    • build(deps): bump overlayscrollbars from 2.10.1 to 2.11.1 by @ dependabot in #625
    • build(deps-dev): bump sass from 1.85.1 to 1.88.0 by @ dependabot in #639
    • build(deps-dev): bump webpack-dev-server from 5.2.0 to 5.2.1 by @ dependabot in #631
    • build(deps-dev): bump shx from 0.3.4 to 0.4.0 by @ dependabot in #628
    • build(deps-dev): bump @ babel/core from 7.26.9 to 7.27.1 by @ dependabot in #636
    • build(deps-dev): bump lint-staged from 15.4.3 to 16.0.0 by @ dependabot in #638
    • build(deps): bump overlayscrollbars from 2.11.1 to 2.11.3 by @ dependabot in #645
    • build(deps-dev): bump eslint-config-prettier from 10.1.1 to 10.1.5 by @ dependabot in #644
    • build(deps-dev): bump sass from 1.88.0 to 1.89.0 by @ dependabot in #641
    • build(deps-dev): bump webpack from 5.98.0 to 5.99.8 by @ dependabot in #643
    • build(deps-dev): bump @ babel/preset-env from 7.26.9 to 7.27.2 by @ dependabot in #642

    Full Changelog: v2.53.0...v2.54.0

  • 2.53.0 - 2025-02-03

    What's Changed

    New features

    • Stop opening virtual keyboard on mobile automatically by @ zr0w1 in #596

    Bugfixes

    • fix: emotes getting removed from autocomplete sometimes by @ vyneer in #595
    • fix: megaphone icon shrinking if there's too much text by @ vyneer in #582
    • fix: add uuids to broadcasts by @ vyneer in #583
    • fix: event actions button being the wrong color sometimes by @ vyneer in #581
    • fix: floating menu position being off during polls by @ vyneer in #492
    • fix: dont invert the colors of the donation event bar event by @ vyneer in #606

    Other changes

    • Update chat.js temporary mute message by @ KyrunaKJ in #573
    • fix shortlinks being broken in user info menu by @ zr0w1 in #593
    • build(deps): bump sass-loader from 16.0.3 to 16.0.4 by @ dependabot in #592
    • build(deps): bump dotenv from 16.4.5 to 16.4.7 by @ dependabot in #590
    • build(deps): bump overlayscrollbars from 2.10.0 to 2.10.1 by @ dependabot in #586
    • fix: remove scrolling animation from long usernames in event bar by @ vyneer in #580
    • build(deps-dev): bump webpack from 5.96.1 to 5.97.1 by @ dependabot in #591
    • build(deps-dev): bump prettier from 3.3.3 to 3.4.2 by @ dependabot in #589
    • build(deps): bump bufferutil from 4.0.8 to 4.0.9 by @ dependabot in #601
    • build(deps-dev): b...

@snyk-bot
fix: upgrade dgg-chat-gui from 2.8.2 to 2.57.0
126c455 
Snyk has created this PR to upgrade dgg-chat-gui from 2.8.2 to 2.57.0.

See this package in npm:
dgg-chat-gui

See this project in Snyk:
https://app.snyk.io/org/nielymmah/project/d8c4aee4-ae55-4a8d-81ab-58807ade7f37?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MrRaja23 @snyk-bot