Skip to content

[Snyk] Upgrade webpack-dev-server from 2.1.0-beta.5 to 2.11.5#23

Open
snyk-bot wants to merge 1 commit intomasterfrom
snyk-upgrade-3f8a4c3fc54c42e1295eedd29a2185b5
Open

[Snyk] Upgrade webpack-dev-server from 2.1.0-beta.5 to 2.11.5#23
snyk-bot wants to merge 1 commit intomasterfrom
snyk-upgrade-3f8a4c3fc54c42e1295eedd29a2185b5

Conversation

@snyk-bot
Copy link

@snyk-bot snyk-bot commented Apr 7, 2020

Snyk has created this PR to upgrade webpack-dev-server from 2.1.0-beta.5 to 2.11.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 41 versions ahead of your current version.
  • The recommended version was released a year ago, on 2019-03-23.

The recommended version fixes:

Severity Issue Exploit Maturity
Regular Expression Denial of Service (ReDoS)
npm:braces:20180219		 Proof of Concept
Release notes
Package name: webpack-dev-server
  • 2.11.5 - 2019-03-23
  • 2.11.4 - 2019-03-22
  • 2.11.3 - 2018-08-22
  • 2.11.2 - 2018-02-26
  • 2.11.1 - 2018-01-20
  • 2.11.0 - 2018-01-14
  • 2.10.1 - 2018-01-09
  • 2.10.0 - 2018-01-06
  • 2.9.7 - 2017-12-07
  • 2.9.6 - 2017-12-06
  • 2.9.5 - 2017-11-27
  • 2.9.4 - 2017-11-02
  • 2.9.3 - 2017-10-20
  • 2.9.2 - 2017-10-15
  • 2.9.1 - 2017-09-27
  • 2.9.0 - 2017-09-27
  • 2.8.2 - 2017-09-14
  • 2.8.1 - 2017-09-13
  • 2.8.0 - 2017-09-13
  • 2.7.1 - 2017-08-08
  • 2.6.1 - 2017-07-23
  • 2.6.0 - 2017-07-22
  • 2.5.1 - 2017-07-07
  • 2.5.0 - 2017-06-20
  • 2.4.5 - 2017-04-26
  • 2.4.4 - 2017-04-23
  • 2.4.3 - 2017-04-22
  • 2.4.2 - 2017-03-14
  • 2.4.1 - 2017-02-19
  • 2.4.0 - 2017-02-19
  • 2.3.0 - 2017-02-03
  • 2.2.1 - 2017-01-31
  • 2.2.0 - 2017-01-17
  • 2.2.0-rc.0 - 2016-12-15
  • 2.1.0-beta.12 - 2016-11-25
  • 2.1.0-beta.11 - 2016-11-14
  • 2.1.0-beta.10 - 2016-10-29
  • 2.1.0-beta.9 - 2016-10-11
  • 2.1.0-beta.8 - 2016-10-01
  • 2.1.0-beta.7 - 2016-09-27
  • 2.1.0-beta.6 - 2016-09-26
  • 2.1.0-beta.5 - 2016-09-21
from webpack-dev-server GitHub release notes
Commit messages
Package name: webpack-dev-server
  • 5807c74 chore(release): 2.11.5
  • 2a43fc7 ci: run v2 on Travis and Appveyor (#1737)
  • c92b4a7 fix: delete a comma for Node.js <= v7.x (#1736)
  • 298341f chore(release): 2.11.4
  • c42d0da fix: check origin header for websocket connection (#1626)
  • 2be7196 chore: update dependencies in V2 branch, fix compatibility with Node 10 (#1715)
  • 7cdfb74 2.11.3
  • b71137e Increase sockjs-client version for security fix
  • f33be5b 2.11.2
  • dd32166 Fix support for DynamicEntryPlugin (#1319)
  • ab4eeb0 Fix page not reloading after fixing first error on page (#1317)
  • 83c1625 2.11.1
  • 3aa15aa Merge pull request #1273 from yyx990803/master
  • b78e249 fix: pin strip-ansi to 3.x for ES5 compat
  • 8c1ed7a 2.11.0
  • b0fa5f6 Merge pull request #1270 from yyx990803/client-refactor
  • 676d590 revert to prepublish (fix ci)
  • 449494f cleanup client build setup
  • 6689cb8 adding test for dependency lock-down
  • 3e220fe 2.10.1
  • aaf7fce rollback yargs to 6.6.0
  • ca8b5aa 2.10.0 (#1258)
  • 17355f0 transpile client bundles with babel (#1242)
  • ce30460 rolling back webpack-dev-midddleware 2.0, as it's node6+

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snyk-bot