Waterloo
Repos
104
Followers
51
Following
102

Events

Add HttpRequest#getCaseSensitiveMethod() to reflect the C++ API (#845)

fix maxBackPressure documented default value (#839)

the actual value is 64*1024 as defined on the source code https://github.com/uNetworking/uWebSockets/blob/43a1f307a0b6cd6704b3f88bcc62e8e38457e312/src/App.h#L229

Wrap app.close, update uWS

App.publish return bool

Fuck me

Ping pong with message

maxLifetime wrapper

Unix socket wrapper

Pause resume docs update and other docs update

update docs

subscription events

Read subscription event

listen_unix is not available for h3

neither is close

Try different boringssl version

Update build.c

Update build.c

Update build.c

Update build.c

Update build.c

Created at 2 weeks ago

fix: core/templates/entinker-boilerplate/package.json & core/templates/entinker-boilerplate/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:

  • https://snyk.io/vuln/SNYK-JS-KNEX-3175610
Created at 3 weeks ago
Waterloo create branch snyk-fix-d631d37a93c7f51468a7197c2d86b25f
Created at 3 weeks ago
pull request opened
[Snyk] Fix for 4 vulnerabilities

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • core/templates/entinker-boilerplate/package.json
    • core/templates/entinker-boilerplate/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- high severity | 671/1000 Why? Recently disclosed, Has a fix available, CVSS 7.7 | Improper Input Validation SNYK-JS-JSONWEBTOKEN-3180020 | Yes | No Known Exploit medium severity | 611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5 | Improper Authentication SNYK-JS-JSONWEBTOKEN-3180022 | Yes | No Known Exploit medium severity | 611/1000 Why? Recently disclosed, Has a fix available, CVSS 6.5 | Improper Restriction of Security Token Assignment SNYK-JS-JSONWEBTOKEN-3180024 | Yes | No Known Exploit medium severity | 526/1000 Why? Recently disclosed, Has a fix available, CVSS 4.8 | Use of a Broken or Risky Cryptographic Algorithm SNYK-JS-JSONWEBTOKEN-3180026 | Yes | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

See the full diff

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Use of a Broken or Risky Cryptographic Algorithm

Created at 1 month ago
Waterloo create branch snyk-fix-6311d86f1fdba57fe687aee80770f772
Created at 1 month ago

fix: core/templates/entinker-boilerplate/package.json & core/templates/entinker-boilerplate/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:

  • https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180020
  • https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180022
  • https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180024
  • https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180026
Created at 1 month ago
pull request opened
[Snyk] Fix for 1 vulnerabilities

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • core/templates/entinker-boilerplate/package.json
    • core/templates/entinker-boilerplate/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- high severity | 768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution SNYK-JS-QS-3153490 | No | Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

See the full diff

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution

Created at 1 month ago

fix: core/templates/entinker-boilerplate/package.json & core/templates/entinker-boilerplate/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:

  • https://snyk.io/vuln/SNYK-JS-QS-3153490
Created at 1 month ago
Waterloo create branch snyk-fix-8be646deb7e48c784ce1d0ec7fb68b26
Created at 1 month ago
Created at 1 month ago
Created at 2 months ago