[Snyk] Upgrade puppeteer from 5.2.1 to 5.5.0 #3
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade puppeteer from 5.2.1 to 5.5.0. See this package in npm: https://www.npmjs.com/package/puppeteer See this project in Snyk: https://app.snyk.io/org/maxmood96/project/45f16614-ea95-4982-af72-d21cb64ab6aa?utm_source=github&utm_medium=upgrade-pr
pull bot
pushed a commit
that referenced
this pull request
Sep 24, 2021
This avoids the scenario where: 1. The user runs busytown/androidx.sh 2. Gradle builds aar files for group1 3. Gradle builds a .zip file of group1 4. Gradle builds aar files for group2 5. Gradle builds a .zip file of group2 6. busytown/androidx.sh runs Gradle again to confirm that all tasks are UP-TO-DATE 7. Gradle checks whether the .zip of group1 is UP-TO-DATE 8. Gradle finds that because more aar files have been created (#4) since the .zip of group1 was last built (#3), the task must be rerun 9. The build fails because when running the build twice in a row, a task was not UP-TO-DATE Bug: 200574943 Test: Treehugger runs busytown/androidx.sh Change-Id: I6c8c4e83dfb251e506d91412cb905a7ef372ab11
pull bot
pushed a commit
that referenced
this pull request
Feb 14, 2022
One more try, now handling osx proto binaries. Test: ./gradlew bOS --dry-run Change-Id: Ia6f4f7f72b68a38b3e0d9e93e3988e24632eb6e6
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade puppeteer from 5.2.1 to 5.5.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-BL-608877
Why? Proof of Concept exploit, CVSS 7.7
SNYK-JS-WS-1296835
Why? Proof of Concept exploit, CVSS 7.7
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: puppeteer
-
5.5.0 - 2020-11-16
- chromium: roll Chromium to r818858 (#6526) (b549256)
- common: fix generic type of
- domworld: fix missing binding for waittasks (#6562) (67da1cf)
-
5.4.1 - 2020-10-27
- Fixed an issue in 5.4.0 on Node.js v10.17.0 and below where trying to access
-
5.4.0 - 2020-10-23
-
5.3.1 - 2020-09-22
- New API:
-
5.3.0 - 2020-09-11
-
5.2.1 - 2020-07-21
- Chromium 85.0.4182.0 (r782078)
- We now allow configuring the browser debug logging behavior via
from puppeteer GitHub release notesv5.5.0 (2020-11-16)
Features
Bug Fixes
_isClosedPromise(#6579) (122f074)Bug fixes
fs.promiseswould throw an error. See #6548 for the bug report and #6550 for the fix. We now run a CI build on Node 10.15 to ensure we don't cause similar regressions in the future.Raw notes
520cd90 - chore: mark version 5.4.1
8f4a79e - docs(troubleshooting): update Alpine Chromium version (#6529)
e45acce - chore: run unit tests on node 10.15 + fix fs.promises access (#6550)
a2175c6 - docs(queryhandler): fix link (#6543)
d787865 - chore: bump version to v5.4.0-post (#6544)
Read more
Highlights
page.emulateIdleState(...)(#6410)Raw notes
c7d32cb - chore: mark version v5.3.1 (#6439)
8f3171a - feat(permissions): Add idle-detection permission (#6438)
083ea41 - test(frame): correct terminology in URL fragment test (#6416)
bb1c521 - chore: remove mime dependency (#6415)
17960e5 - feat(page): emulate idle state (#6410)
03e41da - chore: bump version to v5.3.0-post (#6413)
Read more
Highlights
globalThis.__PUPPETEER_DEBUG(#6210)Raw notes
4ee4649 - chore: mark v5.2.1 (#6254)
e89e264 - feat(chromium): roll Chromium to r782078 (#6250)
b2f6918 - fix: configure debug logging in browser (#6210)
040f37e - docs: fix link text (#6245)
9fdf2ba - chore(docs): migrate page.pdf() docs (#6228)
2331584 - docs(troubleshooting): install libXss in Dockerfile (#6236)
042c4a2 - chore: mark 5.2.0-post (#6240)
Commit messages
Package name: puppeteer
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs