[Snyk] Upgrade sharp from 0.30.7 to 0.32.4

[lukexor]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade sharp from 0.30.7 to 0.32.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 9 versions ahead of your current version.
• The recommended version was released a month ago, on 2023-07-21.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: sharp

• 0.32.4 - 2023-07-21
  No content.
• 0.32.3 - 2023-07-14
  No content.
• 0.32.2 - 2023-07-11
  No content.
• 0.32.1 - 2023-04-27
  No content.
• 0.32.0 - 2023-03-24
  No content.
• 0.31.3 - 2022-12-21
  No content.
• 0.31.2 - 2022-11-04
  No content.
• 0.31.1 - 2022-09-29
  No content.
• 0.31.0 - 2022-09-05
  No content.
• 0.30.7 - 2022-06-22
  No content.

from sharp GitHub release notes

Commit messages

Package name: sharp

• aea368a Release v0.32.4
• 7ecbc20 Upgrade to libvips v8.14.3
• cb0e2a9 Bump dep
• 739b317 Expose ability to (un)block libvips ops by name
• a0e1c39 Release v0.32.3
• 85b26da Expose preset option for WebP output #3639
• 66f7cef Docs: fix a few typos
• 863174f CI: FreeBSD: Use 13.2 stable, upgrade to Node.js 20
• bcd865c Ensure decoding remains sequential for all ops #3725
• 16ea04f Release v0.32.2
• 9c547dc Use copy rather than cache to prevent affine overcompute
• 5522060 Limit HEIF output dimensions to 16384x16384
• d2f0fa8 Tests: loosen threshold for affine rotate then extract
• 2bb3ea8 Bump deps
• 3434eef Guard use of smartcrop premultiplied option #3710
• 2f67823 Allow seq read for EXIF-based auto-orient #3725
• 38c760c Update to latest (temporary) prebuild patch
• 14c3346 Prevent over-compute in affine rotate #3722
• 0da55ba Tests: remove unused dependency
• cfb659f Bump deps
• cc5ac53 Docs: clarify use of extract before composite
• 93fafb0 CI: Upgrade to latest git v2 within centos 7 containers
• 41e3c8c Temporarily use patched prebuild with node-gyp v9
• da61ea0 Docs: changelog and credit for #3674

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
lukeworks	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Aug 26, 2023 5:06pm

[codecov-commenter]

Codecov Report

Patch coverage has no change and project coverage change: -0.17% ⚠️

Comparison is base (f5b303d) 34.13% compared to head (bd8e936) 33.97%.
Report is 1 commits behind head on main.

❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more.

Additional details and impacted files

@@            Coverage Diff             @@
##             main       #6      +/-   ##
==========================================
- Coverage   34.13%   33.97%   -0.17%     
==========================================
  Files          34       34              
  Lines         416      418       +2     
  Branches       32       32              
==========================================
  Hits          142      142              
- Misses        274      276       +2     

Files Changed	Coverage Δ
web/src/components/post/cardGrid.tsx	38.09% <0.00%> (-4.02%)	⬇️

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.