[Snyk] Upgrade systemjs from 6.1.9 to 6.14.3 #184

rc042 · 2024-01-22T23:29:46Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade systemjs from 6.1.9 to 6.14.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 44 versions ahead of your current version.
The recommended version was released 21 days ago, on 2024-01-01.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-NODEFORGE-598677	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-OBJECTPATH-1017036	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-OBJECTPATH-1585658	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Cryptographic Issues SNYK-JS-ELLIPTIC-571484	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-567746	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434283	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Command Injection SNYK-JS-NODENOTIFIER-1035794	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-OBJECTPATH-1569453	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Poisoning SNYK-JS-QS-3153490	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Poisoning SNYK-JS-QS-3153490	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-AJV-584908	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-ASYNC-2441827	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Directory Traversal SNYK-JS-MOMENT-2440688	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-MOMENT-2944238	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Command Injection SNYK-JS-LODASHES-2434284	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-LODASHES-2434285	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MERGEDEEP-1070277	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TMPL-1583443	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Input Validation SNYK-JS-URLPARSE-2407770	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WEBSOCKETEXTENSIONS-570623	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-JSON5-3182856	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-JSON5-3182856	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-HAPIHOEK-548452	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-DOTPROP-543489	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-EVENTSOURCE-2823375	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HTMLMINIFIER-3091181	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PROMPTS-1729737	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434289	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Denial of Service (DoS) SNYK-JS-SOCKJS-575261	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Input Validation SNYK-JS-URLPARSE-1078283	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Open Redirect SNYK-JS-URLPARSE-1533425	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Access Restriction Bypass SNYK-JS-URLPARSE-2401205	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Authorization Bypass SNYK-JS-URLPARSE-2407759	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TERSER-2806366	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: systemjs

6.14.3 - 2024-01-01
Fixes an issue where the Terser minification of system.min.js would apply unsafe optimizations breaking support for URL rewriting in CSS (#2474).

Full Changelog: 6.14.2...6.14.3
6.14.2 - 2023-08-16
What's Changed
- Fix: Module types should support urls without quotes by @ jackw in #2467
New Contributors
- @ jackw made their first contribution in #2467
Full Changelog: 6.14.1...6.14.2
6.14.1 - 2023-03-21
What's Changed
- fix: avoid shortcut syntax for es5 by @ wenerme in #2456
Full Changelog: 6.14.0...6.14.1
6.14.0 - 2023-02-25
What's Changed
- add dynamic import meta placeholder by @ wenerme in #2431
- add register import meta placeholder by @ wenerme in #2433
- add import assertions to system-register.md by @ wenerme in #2436
- add missing import meta by @ wenerme in #2435
- feat: Add BeyondJS as Project that uses SystemJS by @ jircdev in #2449
- ci: bump actions by @ piwysocki in #2450
- add new line on the end of the file by @ christianhaller3000 in #2454
New Contributors
- @ jircdev made their first contribution in #2449
- @ piwysocki made their first contribution in #2450
- @ christianhaller3000 made their first contribution in #2454
Full Changelog: 6.13.0...6.14.0
6.13.0 - 2022-09-29
What's Changed
- avoid module-types override shouldFetch by @ wenerme in #2427
- expose addImportMap by @ wenerme in #2429
- add community project @ wener/system by @ wenerme in #2430
New Contributors
- @ wenerme made their first contribution in #2427
Full Changelog: 6.12.6...6.13.0
6.12.6 - 2022-08-31
6.12.6
6.12.5 - 2022-08-31
6.12.5
6.12.4 - 2022-08-26
6.12.4
6.12.3 - 2022-08-18
What's Changed
- test: fix typo in chompfile.toml by @ nilzona in #2413
- fix: build source maps by @ guybedford in #2416
New Contributors
- @ nilzona made their first contribution in #2413
Full Changelog: 6.12.2...6.12.3
6.12.2 - 2022-08-10
What's Changed
- feat: Chomp migration, windows build, GitHub CI by @ guybedford in #2405
- ci: fixup size impact script by @ guybedford in #2406
- ci: fix size impact script Node.js version by @ guybedford in #2407
- Fix a concurrent bug due to async execution by @ shrinktofit in #2404
- refactor: replace all git.io within the error message by @ SukkaW in #2390
New Contributors
- @ shrinktofit made their first contribution in #2404
- @ SukkaW made their first contribution in #2390
Full Changelog: 6.12.1...6.12.2
6.12.1 - 2022-01-21
6.12.0 - 2022-01-21
6.11.0 - 2021-10-18
6.10.3 - 2021-08-17
6.10.2 - 2021-07-04
6.10.1 - 2021-06-14
6.10.0 - 2021-06-07
6.9.0 - 2021-05-12
6.8.3 - 2020-12-31
6.8.2 - 2020-12-16
6.8.1 - 2020-11-30
6.8.0 - 2020-11-26
6.7.1 - 2020-10-12
6.7.0 - 2020-10-09
6.6.1 - 2020-09-12
6.6.0 - 2020-09-12
6.5.1 - 2020-09-02
6.5.0 - 2020-08-10
6.4.3 - 2020-08-06
6.4.2 - 2020-08-05
6.4.1 - 2020-07-31
6.4.0 - 2020-07-23
6.3.3 - 2020-06-27
6.3.2 - 2020-05-18
6.3.1 - 2020-04-14
6.3.0 - 2020-04-09
6.2.6 - 2020-03-15
6.2.5 - 2020-02-27
6.2.4 - 2020-02-24
6.2.3 - 2020-02-14
6.2.2 - 2020-02-07
6.2.1 - 2020-02-06
6.2.0 - 2020-02-01
6.1.10 - 2020-01-28
6.1.9 - 2020-01-11

from systemjs GitHub release notes

Commit messages

Package name: systemjs

3400f59 6.14.3
dcd8f31 6.14.2
61bc72f fix(module-types): ignore undefined when checking for quotes in css url strings (Problème de caractère accentué centreon-archive/centreon-archived#2467)
541edff correct chomp token workflow
395c86c fix workflow chomp token
5019eda 6.14.1
898235e fix: avoid shortcut syntax for es5 (Security Issues On the web UI centreon-archive/centreon-archived#2456)
6d95f11 6.14.0
36b6c1a add new line on the end of the file (add enum for host_register centreon-archive/centreon-archived#2454)
672741b ci: bump actions (Differences between update and fresh install for Insert in index data field centreon-archive/centreon-archived#2450)
9ba9206 fixup chomp workflow
7d0e703 feat: Add BeyondJS as Project that uses SystemJS (SQL Injections centreon-archive/centreon-archived#2449)
41c6c92 add missing import meta (Hôtes avec accent centreon-archive/centreon-archived#2435)
16818a2 add import assertions to system-register.md (only 255 chars in inputfields centreon-archive/centreon-archived#2436)
1b03996 feat: add register import meta placeholder (Graphs metrics don't match centreon-archive/centreon-archived#2433)
dd3243d feat: add dynamic import meta placeholder (longer input field for service args centreon-archive/centreon-archived#2431)
9fd1675 6.13.0
f820244 add community project @ wener/system (Change View After Share View centreon-archive/centreon-archived#2430)
1e41039 feat: expose addImportMap (Trap modification (p=61701) deletes linked services when saving centreon-archive/centreon-archived#2429)
6376e51 fix: avoid module-types override shouldFetch (ldap account centreon-archive/centreon-archived#2427)
d44d41f 6.12.6
0d49805 fix: terser extension sourcemaps support
5ec3434 6.12.5
3c64fd5 6.12.4

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade systemjs from 6.1.9 to 6.14.3. See this package in npm: https://www.npmjs.com/package/systemjs See this project in Snyk: https://app.snyk.io/org/reedcrif/project/e1b6cf74-359a-4c02-9c79-4a7e9ec24592?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade systemjs from 6.1.9 to 6.14.3 #184

[Snyk] Upgrade systemjs from 6.1.9 to 6.14.3 #184

Uh oh!

rc042 commented Jan 22, 2024

What's Changed

New Contributors

What's Changed

What's Changed

New Contributors

What's Changed

New Contributors

What's Changed

New Contributors

What's Changed

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

[Snyk] Upgrade systemjs from 6.1.9 to 6.14.3 #184

Are you sure you want to change the base?

[Snyk] Upgrade systemjs from 6.1.9 to 6.14.3 #184

Uh oh!

Conversation

rc042 commented Jan 22, 2024

Snyk has created this PR to upgrade systemjs from 6.1.9 to 6.14.3.

What's Changed

New Contributors

What's Changed

What's Changed

New Contributors

What's Changed

New Contributors

What's Changed

New Contributors

What's Changed

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants