[Snyk] Upgrade edgegrid from 3.0.2 to 3.0.8

[snyk-bot]

Snyk has created this PR to upgrade edgegrid from 3.0.2 to 3.0.8.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 6 versions ahead of your current version.
• The recommended version was released a year ago, on 2019-09-20.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSONPOINTER-598804	597/1000 Why? Proof of Concept exploit, CVSS 9.8	Proof of Concept
	Arbitrary Code Execution SNYK-JS-ISMYJSONVALID-597167	597/1000 Why? Proof of Concept exploit, CVSS 9.8	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISMYJSONVALID-597165	597/1000 Why? Proof of Concept exploit, CVSS 9.8	Proof of Concept
	Uninitialized Memory Exposure npm:tunnel-agent:20170305	597/1000 Why? Proof of Concept exploit, CVSS 9.8	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:moment:20170905	597/1000 Why? Proof of Concept exploit, CVSS 9.8	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:is-my-json-valid:20180214	597/1000 Why? Proof of Concept exploit, CVSS 9.8	Mature

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: edgegrid

• 3.0.8 - 2019-09-20
• 3.0.7 - 2019-09-19
• 3.0.6 - 2019-03-01
• 3.0.5 - 2019-01-03
• 3.0.4 - 2017-12-16
• 3.0.3 - 2017-12-12
• 3.0.2 - 2017-01-31

from edgegrid GitHub release notes

Commit messages

Package name: edgegrid

• ed3fe6c Merge pull request #57 from akamai/binary-fix
• 2e67171 remove unnecessary logic for binary post
• cf9b9b0 Merge pull request #55 from akamai/accept-binary-body
• 801de65 accept binary body as Uint8Array
• 6c72948 check for streams instead of uint8Array as body
• 81c99c6 accept binary as request body to work with edgeworkers
• 9b8910b Bumping the release number
• 7c4fc8a Update Travis CI badge
• bd038b8 Merge pull request #51 from joaquin-gimenez/cli-version-header
• a9aeef6 akamai cli command on UA space fix
• fe0ddfe edgegrid-node code clean
• 28d34cb edgegrid-node added CLI_VERSION and CLI_COMMAND_VERSION to user-agent header
• 0e3dd73 Merge pull request #37 from mobot11/fix-readme-vars
• 006caa4 Merge pull request #42 from jorgesosa/fix-logger-error
• 9809bd2 Merge pull request #48 from bradforj287/master
• 48d462c Merge branch 'master' into master
• 33b2e16 Merge pull request #49 from cncook001/fix_npm_audit_vulnerabilities
• 8f52b98 fix 14 vulnerabilities reported by npm audit (4 low, 6 moderate, 3 high, 1 critical)
• a7fb4b5 rev request dependency and rev version
• 542745c [Debug] Added require for logger
• 30f4af1 Merge pull request #41 from jorgesosa/ignore-edgerc-comments
• a087253 [Config] Making regex more performant
• d6b54c7 [Test] Unit tests for interesting case
• f601b37 [Config] Regexp fixes

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs