[Snyk] Upgrade yeoman-generator from 0.22.6 to 5.7.0 #3

snyk-bot · 2022-08-20T20:33:24Z

Snyk has created this PR to upgrade yeoman-generator from 0.22.6 to 5.7.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

The recommended version is 59 versions ahead of your current version.
The recommended version was released 22 days ago, on 2022-07-29.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) npm:underscore.string:20170908	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Prototype Pollution npm:deep-extend:20180409	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Arbitrary File Overwrite SNYK-JS-TAR-174125	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Arbitrary File Write SNYK-JS-TAR-1579155	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Improper Privilege Management SNYK-JS-SHELLJS-2332187	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Improper Privilege Management SNYK-JS-SHELLJS-2332187	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-450213	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-1540541	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-450213	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-SETVALUE-1540541	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MIXINDEEP-450212	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-LODASHTEMPLATE-1088054	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-73638	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-567746	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-450202	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-567746	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-567746	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-450202	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-INI-1048974	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-FILETYPE-2958042	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Arbitrary Code Execution SNYK-JS-ESLINTUTILS-460220	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Remote Memory Exposure SNYK-JS-BL-608877	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-ASYNC-2441827	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-AJV-584908	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Uninitialized Memory Exposure npm:tunnel-agent:20170305	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Time of Check Time of Use (TOCTOU) npm:chownr:20180731	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-559764	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution npm:lodash:20180130	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESSTAR-559095	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Validation Bypass SNYK-JS-KINDOF-537849	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
Denial of Service (DoS) SNYK-JS-JUSTEXTEND-72674	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: yeoman-generator

5.7.0 - 2022-07-29
- make prompt default value dynamic ea460eb
- show error message when task fails. 92cc534
v5.6.1...v5.7.0
5.6.1 - 2022-01-19
- Move custom args inside the runAsync for better error handling ef3f702
- Allow task to override taskPrefix. d2f4274
- Fix destinationRoot overridden by current value. f6e1e67
- Fix resolved when not passed by options. 52ac34c
v5.6.0...v5.6.1
5.6.0 - 2022-01-18
- Bump version of shelljs to avoid vulnerable 0.8.4 version (#1325) 9c798e6
- Return earlier at extractTasksFromPriority (#1324) 0bfb51a
- Allow to edit priorities. (#1323) 2a6cf47
v5.5.2...v5.6.0
5.5.2 - 2022-01-04
- Fix createStorage with options. 185a408
v5.5.1...v5.5.2
5.5.1 - 2022-01-04
- Add options parameter to createStorage. 82db7d0
v5.5.0...v5.5.1
5.5.0 - 2022-01-04
- Rework private methods. dac452e
- Add args to queueTask. cf8580f
- Add optional support to sorted Storage. cf2e53f
- Documentation improvements.
v5.4.2...v5.5.0
5.4.2 - 2021-08-21
- Fix composing with esm generator (#1308) 4b7f115
v5.4.1...v5.4.2
5.4.1 - 2021-08-12
- Fix for esm generator. 979b63d
v5.4.0...v5.4.1
5.4.0 - 2021-07-05
- Add immediately parameter to composeWith 8fd5c86
- Add support to beforeQueue. b8747da
v5.3.0...v5.4.0
5.3.0 - 2021-05-23
- Implement async fs methods. (#1301) 9cab8c9
- Add test for path unsafe string. (#1300) 8bc6267
- Answer stored inside config should take precedence over suggestions. (#1297) c1c847d
- Bump mem-fs-editor to 9.0.0 (#1298) ce12e7f
- Implement taskPrefix feature. (#1296) 84551ee
- Bump yeoman-test to 6.0.0 (#1295) 5f3b2fb
- Bump mem-fs to 2.0.0 and mem-fs-editor to 8.1.2 (#1290) d8dfd10
- Load environment resources when running help. (#1288) 3579322
- Fix 4.x api documentation link. a0313cd
- Add api documentation link for 4.x b44ec7d
v5.2.0...v5.3.0
5.2.0 - 2021-03-13
5.1.0 - 2021-03-06
5.0.1 - 2021-02-22
5.0.0 - 2021-02-20
5.0.0-rc.0 - 2021-02-15
5.0.0-beta.1 - 2021-02-13
4.13.0 - 2021-01-30
4.12.0 - 2020-08-31
4.11.0 - 2020-06-26
4.10.1 - 2020-05-11
4.10.0 - 2020-05-03
4.9.0 - 2020-04-24
4.8.3 - 2020-04-22
4.8.2 - 2020-04-13
4.8.1 - 2020-04-12
4.8.0 - 2020-04-08
4.7.2 - 2020-03-14
4.7.1 - 2020-03-11
4.7.0 - 2020-03-09
4.6.0 - 2020-02-26
4.5.0 - 2020-01-27
4.4.0 - 2019-12-24
4.3.0 - 2019-12-15
4.2.0 - 2019-10-27
4.1.0 - 2019-09-26
4.0.2 - 2019-09-01
4.0.1 - 2019-05-28
4.0.0 - 2019-05-08
3.2.0 - 2018-12-22
3.1.1 - 2018-07-28
3.1.0 - 2018-07-24
3.0.0 - 2018-07-01
2.0.5 - 2018-04-30
2.0.4 - 2018-04-13
2.0.3 - 2018-02-19
2.0.2 - 2017-12-26
2.0.1 - 2017-09-30
2.0.0 - 2017-09-12
1.1.1 - 2017-03-05
1.1.0 - 2017-01-27
1.0.1 - 2016-12-20
1.0.0 - 2016-12-17
1.0.0-rc1 - 2016-12-08
0.24.1 - 2016-07-18
0.23.4 - 2016-06-16
0.23.3 - 2016-05-04
0.23.2 - 2016-05-03
0.23.1 - 2016-05-03
0.23.0 - 2016-05-02
0.22.6 - 2016-04-19