57
30
96
Events
keisei77 push keisei77/lris
:sparkles: 增加图片切换demo
keisei77 push keisei77/lris
:memo: 增加 badge
keisei77 push keisei77/lris
:chart_with_upwards_trend: 添加 ga
keisei77 push keisei77/lris
:green_heart: 更新 lock 文件
keisei77 push keisei77/lris
:green_heart: 更新 lock 文件
keisei77 push keisei77/lris
:green_heart: 修复CI
keisei77 push keisei77/lris
:package: 增加demo页面
keisei77 push keisei77/lris
Create jekyll-gh-pages.yml
keisei77 push keisei77/lris
:memo: 更新域名
keisei77 push keisei77/lris
Create CNAME
keisei77 push keisei77/lris
Delete CNAME
keisei77 push keisei77/lris
Create CNAME
[Snyk] Security upgrade gatsby-transformer-remark from 2.6.45 to 5.25.1
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- yarn.lock
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
| 798/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.1 | Arbitrary Code Injection SNYK-JS-GATSBYTRANSFORMERREMARK-3228581 | Yes | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
keisei77 push keisei77/blog
fix: package.json & yarn.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-GATSBYTRANSFORMERREMARK-3228581
keisei77 create branch snyk-fix-eb2dd2b8eee1f0e2b944619ecbb9231c
[Snyk] Security upgrade next from 9.3.2 to 10.0.6
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- yarn.lock
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
| 461/1000 Why? Recently disclosed, Has a fix available, CVSS 3.5 | Regular Expression Denial of Service (ReDoS) SNYK-JS-DEBUG-3227433 | Yes | No Known Exploit
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
fix: package.json & yarn.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DEBUG-3227433
