This repository was archived by the owner on Mar 13, 2025. It is now read-only.

[Snyk] Upgrade no-kafka from 3.3.2 to 3.4.3 #42

Open

snyk-bot wants to merge 1 commit into master from snyk-upgrade-513e12ae4ba32b9bd27060c70e24ef44

snyk-bot commented Oct 26, 2021

Snyk has created this PR to upgrade no-kafka from 3.3.2 to 3.4.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 7 versions ahead of your current version.
The recommended version was released 3 years ago, on 2018-12-09.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-LODASH-73638	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: no-kafka

3.4.3 - 2018-12-09
3.4.2 - 2018-11-29
3.4.1 - 2018-11-28
3.4.0 - 2018-11-27
3.3.5 - 2018-11-12
3.3.4 - 2018-11-01
3.3.3 - 2018-10-25
3.3.2 - 2018-10-04

from no-kafka GitHub release notes

Commit messages

Package name: no-kafka

580eede 3.4.3
0d89fca Missing return in error handling map (#243)
a992eeb 3.4.2
f727a17 Disable topic auto-creation
13abf50 Retrieve full metadata upon init
8d5031f Cleanup error state on the produce payload before making next attempt
825e129 3.4.1
d750bf0 Remove indefinite retry loop in updateMetadata (#240)
3cd033e 3.4.0
d386b4f Do not query all Kafka server topics on updateMetadata (#238)
e315a84 Revert "Rewrite client to support high volume of topics (#234)" (#236)
0a3072c Rewrite client to support high volume of topics (#234)
8a0802a 3.3.5
7f7307d Rate limit failed metadata request at 1 per minute
e396bf2 3.3.4
44a4740 Fix connection leak after metadata update (#232)
890c8fd 3.3.3
8529ac1 Update lodash

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs


          fix: upgrade no-kafka from 3.3.2 to 3.4.3

1906c03

Snyk has created this PR to upgrade no-kafka from 3.3.2 to 3.4.3.

See this package in npm:
https://www.npmjs.com/package/no-kafka

See this project in Snyk:
https://app.snyk.io/org/jswheeler/project/b3ee02bf-2de9-4917-a9cc-01795f833774?utm_source=github&utm_medium=referral&page=upgrade-pr

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet