[Snyk] Upgrade immutable from 4.2.2 to 4.3.7 #487
Conversation
Snyk has created this PR to upgrade immutable from 4.2.2 to 4.3.7. See this package in npm: immutable See this project in Snyk: https://app.snyk.io/org/cognigy-gmbh/project/9925025e-9fa9-4575-b30a-373ebb7ce44d?utm_source=github&utm_medium=referral&page=upgrade-pr
🎉 Snyk checks have passed. No issues have been found so far.✅ security/snyk check is complete. No issues have been found. (View Details) ✅ license/snyk check is complete. No issues have been found. (View Details) ✅ code/snyk check is complete. No issues have been found. (View Details) |
There was a problem hiding this comment.
Pull Request Overview
This PR upgrades the immutable library from version 4.2.2 to 4.3.7, addressing security and maintenance concerns by updating to a more recent version that is 10 versions ahead and was released a year ago.
- Updates immutable dependency from 4.2.2 to 4.3.7
- Incorporates bug fixes including slice negative filtering and Repeat().equals() issues
- Includes TypeScript improvements and compatibility updates
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
| "dompurify": "3.2.4", | ||
| "flatpickr": "4.6.3", | ||
| "immutable": "^4.0.0-rc.12", | ||
| "immutable": "^4.3.7", |
There was a problem hiding this comment.
The package.json shows the previous version was ^4.0.0-rc.12 (a release candidate), but the PR description indicates upgrading from 4.2.2. This version mismatch suggests the package.json may not reflect the actual installed version, which could cause confusion about what's being upgraded.
| "immutable": "^4.3.7", | |
| "immutable": "^4.2.2", |
Snyk has created this PR to upgrade immutable from 4.2.2 to 4.3.7.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 10 versions ahead of your current version.
The recommended version was released a year ago.
Release notes
Package name: immutable
-
4.3.7 - 2024-07-22
- Fix issue with slice negative of filtered sequence by @ jdeniau in #2006
-
4.3.6 - 2024-05-13
- Fix Repeat().equals(undefined) incorrectly returning true by @ butchler in #1994
- change youtube image by @ jdeniau in #1973
- Upgrade eslint and ignore no-constructor-return rule for actual constructors by @ jdeniau in #1974
- upgrate documentation website to next 14 by @ jdeniau in #1975
- start migrating to nextjs app router by @ jdeniau in #1976
- upgrade next sitemap by @ jdeniau in #1978
- @ butchler made their first contribution in #1994
-
4.3.5 - 2024-01-26
- Fix Set.fromKeys types with Map constructor in TS 5.0 by @ jdeniau in #1971
- upgrade to TS 5.1 by @ jdeniau in #1972
- fix dist-stats command by @ jdeniau in #1964
- fix Read the Docs link on readme by @ joshding in #1970
- @ joshding made their first contribution in #1970
-
4.3.4 - 2023-08-25
- Rollback toJS type due to circular reference error by @ jdeniau in #1958
-
4.3.3 - 2023-08-23
- [typescript] manage to handle toJS circular reference. #1932 by @ jdeniau
- [doc] Add install instructions for pnpm and Bun #1952 by @ colinhacks and #1953 by @ menglingyu659
- @ colinhacks made their first contribution in #1952
- @ menglingyu659 made their first contribution in #1953
-
4.3.2 - 2023-08-03
- Fix isOrderedSet type by @ jdeniau in #1948
-
4.3.1 - 2023-07-11
-
4.3.0 - 2023-03-10
-
4.2.4 - 2023-02-06
-
4.2.3 - 2023-02-02
-
4.2.2 - 2023-01-06
from immutable GitHub release notesWhat's Changed
Full Changelog: v4.3.6...v4.3.7
What's Changed
Internals
New Contributors
Full Changelog: v4.3.5...v4.3.6
What's Changed
New Contributors
Full Changelog: v4.3.4...v4.3.5
What's Changed
Full Changelog: v4.3.3...v4.3.4
What's Changed
New Contributors
Full Changelog: v4.3.1...v4.3.3
What's Changed
Full Changelog: v4.3.1...v4.3.2
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: