Skip to content

[Snyk] Upgrade react-device-detect from 1.13.1 to 1.14.0#6

Open
snyk-bot wants to merge 1 commit into
masterfrom
snyk-upgrade-6e7195f3c707404b212f7b82df50b4b5
Open

[Snyk] Upgrade react-device-detect from 1.13.1 to 1.14.0#6
snyk-bot wants to merge 1 commit into
masterfrom
snyk-upgrade-6e7195f3c707404b212f7b82df50b4b5

Conversation

@snyk-bot

Copy link
Copy Markdown
Contributor

Snyk has created this PR to upgrade react-device-detect from 1.13.1 to 1.14.0.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 21 days ago, on 2020-10-05.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226
482/1000
Why? Proof of Concept exploit, CVSS 7.5
Proof of Concept

(*) Note that the real score may have changed since the PR was raised.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade react-device-detect from 1.13.1 to 1.14.0.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/crackayus09/project/fb8e7210-0d03-45e5-9ca5-945a74651cba?utm_source=github&utm_medium=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant