[Snyk] Upgrade adm-zip from 0.4.7 to 0.5.15 #6
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade adm-zip from 0.4.7 to 0.5.15. See this package in npm: adm-zip See this project in Snyk: https://app.snyk.io/org/david.zieglersnyk.io/project/dec2486f-d93b-41c0-b2bb-260645c3a2f1?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade adm-zip from 0.4.7 to 0.5.15.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 23 versions ahead of your current version.
The recommended version was released on a month ago.
Issues fixed by the recommended upgrade:
SNYK-JS-ADMZIP-1065796
npm:adm-zip:20180415
Release notes
Package name: adm-zip
-
0.5.15 - 2024-08-05
- Fix utils canonical to valid posix by @ skoniks in #499
- addFile backslash test by @ 5saviahv in #500
- added addLocalFolderAsync2 by @ 5saviahv in #501
- fixed windows paths by @ roosipuu in #503
- Add Windows build by @ 5saviahv in #504
- inital "decoder" functionality by @ 5saviahv in #505
- Bump braces from 3.0.2 to 3.0.3 by @ dependabot in #506
- Write out Electron original-fs auto loading by @ 5saviahv in #502
- using writeZip() twice throws "Invalid LOC header (bad signature)" error by @ 5saviahv in #507
- Descriptor check & Main Header locating by @ 5saviahv in #508
- House keeping by @ 5saviahv in #509
- typo by @ 5saviahv in #510
- Allow interoperability files with non-UTF-8 (bit 11 = 0) name by @ yfdyh000 in #450
- package lock update by @ 5saviahv in #511
- small updates by @ 5saviahv in #513
- CodeQL check by @ 5saviahv in #514
- Keep local extra data by @ 5saviahv in #515
- Update old test by @ 5saviahv in #516
- make all errors a function by @ 5saviahv in #517
- Update date time functions by @ 5saviahv in #518
- Add a length check when extra field parsed by @ code-sunbo in #520
- deleteFile is too eager by @ 5saviahv in #525
- @ skoniks made their first contribution in #499
- @ roosipuu made their first contribution in #503
- @ code-sunbo made their first contribution in #520
-
0.5.14 - 2024-06-04
-
0.5.13 - 2024-06-01
- Fixed extractAllToAsync callback @ 5saviahv
- Fixed issue with "toAsyncBuffer" where after that command all entries are gone @ 5saviahv
- Minor fixes (tests, typos etc) @ 5saviahv
- Added a an option to specificy the maximum expectedLength of the file to protect against zip bombs or limit memory usage @ undefined-moe
- Add check for invalid large disk entries @ criyle
-
0.5.12 - 2024-03-14
-
0.5.11 - 2024-03-13
- Add support for Info-Zip password check spec for ZipCrypto @ lukemalcolm
- Extraction of password protected zip entries @ Santa77
- Fixed unnecessary scanning a local file headers (except in the case of corrupted archives) @ likev
- Added GitHub actions @ kibertoad
- Fixed cases when extra data was lost @ yfdyh000
- Fixed throw empty error in extractAllToAsync on operation done @ Autokaka
-
0.5.10 - 2022-12-20
-
0.5.9 - 2021-10-07
-
0.5.8 - 2021-10-07
-
0.5.7 - 2021-10-01
-
0.5.6 - 2021-09-12
-
0.5.5 - 2021-03-31
-
0.5.4 - 2021-03-08
-
0.5.3 - 2021-02-18
-
0.5.2 - 2021-01-27
-
0.5.1 - 2020-11-27
-
0.5.0 - 2020-11-19
-
0.4.16 - 2020-06-23
-
0.4.14 - 2020-02-06
-
0.4.13 - 2018-11-13
-
0.4.11 - 2018-05-12
-
0.4.10 - 2018-05-12
-
0.4.9 - 2018-04-25
-
0.4.8 - 2018-04-23
-
0.4.7 - 2015-02-09
from adm-zip GitHub release notesWhat's Changed
New Contributors
Full Changelog: v0.5.14...v0.5.15
Fixed an issue introduced on version 0.5.13 requiring a new mandatory parameter on the inflater on nodejs version >= 15
Fixed extraction error
v0.5.9
v0.5.8
v0.5.7
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: