Outp0st is an open-source UI tool to enable next-level team collaboration on dApp development over Terra blockchain

Last update: May 4, 2022

Overview

Outp0st

What is Outp0st?

Outp0st is an open-source UI tool to enable next-level team collaboration on dApp development over Terra blockchain.

Our vision for Outp0st is for it to become the trusted standard toolbox (read: UX layer) for the open source contracts infrastructure landscape. Think of it like Kubernetes for developer experience or CMS-like interface for blockchain entrepreneurs.

It consists of two modules: Payload (UI) and Rover (CLI)

Main features

Based on Terra Station - including security mechanisms
UI generation based on contracts source repository
Contract deployment, instantiation and execution in organized, predictable way
Contract and messages documentation
Shareable UI
IPFS as a storage layer

Use cases

TODO: Use openzeppeling docs as refrence to describe use cases

Contract development - quick contracts testing

Developer coded a contract, compiled it and wants to test on localterra
Create Rover config – place it in folder with contract project
Use Rover to generate UI for contracts developed
Use link provided by Rover to check how contracts looks in integrated environment (user - react app - localterra)
Using Payload modules developer can adjust messages and documentation on each contract and message

Team contract development - share work to your teammates

Everything above
Using Payload module, developer can save adjusted contracts, messages and documentation and recieve a new link
He can now share this link with teammates to show and discuss his work

Mainnet deployments with separation of concerns

Stakeholder wants to create mainnet deployment on TGE without the risk of main wallet exposure to other team members
He will ask developer to provide link to outpost with his specific contracts and deplyment steps
After recieving this link he will do it step by step, using his wallet extension to approve every step

Project roadmap

Detailed roadmap will be available soon(tm)

Getting Started

Check out the documentation on how to start using outp0st.

Documentation

Community

Discord chatroom - Get support or discuss the project
Contributing to Outp0st - Start here if you want to contribute
RFCs - Help shape the technical direction
FAQ - Frequently Asked Questions
Code of Conduct - This is how we roll
Adopters - Companies already using Outp0st

Give us a star ⭐️ - If you are using outp0st or think it is an interesting project, we would love a star ❤️

License

Security

For further details please see our complete security release process.

Comments

Storage method not selected automatically, thus no link to web3.storage
Expected Behavior

When initially open payload, config tab, with no manager state object, we should see the link to web3storage

Actual Behavior

Steps to Reproduce

Clean localstorage manager object

F5 payload

...

bug
opened by dimkk 1
[fixes] Indicator that state is loading from web3 #1
Hey, I just made a Pull Request!

This is a first level solution that will be changed after the refactoring store, and useStartup func.

:heavy_check_mark: Checklist

fix: indicator that state is loading from web3

fix: button groups keys in loop
opened by kekswar 1
feat(payload): #24 multiple send restored + memo fast implementation …
…(usestate)

Hey, I just made a Pull Request!

It's enabling users to make multiple transactions in one step!

:heavy_check_mark: Checklist

[x] Added or updated documentation

[ ] Tests for new functionality and regression tests for bug fixes

[x] Screenshots attached (for UI changes)
opened by dimkk 0
[Snyk] Upgrade @testing-library/jest-dom from 5.16.3 to 5.16.4
This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @testing-library/jest-dom from 5.16.3 to 5.16.4.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.

The recommended version was released 22 days ago, on 2022-04-05.

Release notes

Package name: @testing-library/jest-dom

5.16.4 - 2022-04-05
5.16.4 (2022-04-05)

Bug Fixes

Support unenclosed inner text for details elements in to be visible (#396) (af18453)

5.16.3 - 2022-03-24
5.16.3 (2022-03-24)

Bug Fixes

clarify toHaveFocus message when using .not (#447) (6988a67)

from @testing-library/jest-dom GitHub release notes

Commit messages

Package name: @testing-library/jest-dom

af18453 fix: Support unenclosed inner text for details elements in to be visible (#396)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs
opened by dimkk 0
[Snyk] Security upgrade react-scripts from 4.0.3 to 5.0.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

packages/examples/terrain-starter/frontend/package.json

packages/examples/terrain-starter/frontend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 798/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 8.1 | Remote Code Execution (RCE)
SNYK-JS-EJS-2803307 | Yes | Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-scripts
The new version differs by 69 commits.

221e511 Publish

6a3315b Update CONTRIBUTING.md

5614c87 Add support for Tailwind (#11717)

657739f chore(test): make all tests install with `npm ci` (#11723)

20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)

69321b0 Remove cached lockfile (#11706)

3afbbc0 Update all dependencies (#11624)

f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)

e8319da [WIP] Fix integration test teardown / cleanup and missing yarn installation (#11686)

c7627ce Update webpack and dev server (#11646)

f85b064 The default port used by `serve` has changed (#11619)

544befe Update package.json (#11597)

9d0369b Fix ESLint Babel preset resolution (#11547)

d7b23c8 test(create-react-app): assert for exit code (#10973)

1465357 Prepare 5.0.0 alpha release

3880ba6 Remove dependency pinning (#11474)

8b9fbee Update CODEOWNERS

cacf590 Bump template dependency version (#11415)

5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (#11476)

50ea5ad allow CORS on webpack-dev-server (#11325)

63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (#11338)

960b21e Bump immer from 8.0.4 to 9.0.6 (#11364)

134cd3c Resolve dependency issues in v5 alpha (#11294)

b45ae3c Update CONTRIBUTING.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Remote Code Execution (RCE)
opened by snyk-bot 0
[Snyk] Upgrade @iboss/terrain from 0.0.8 to 0.0.9
Snyk has created this PR to upgrade @iboss/terrain from 0.0.8 to 0.0.9.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.

The recommended version was released 23 days ago, on 2022-03-28.

Release notes

Package name: @iboss/terrain

0.0.9 - 2022-03-28

0.0.8 - 2021-11-07
remove tgz

from @iboss/terrain GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs
opened by snyk-bot 0
fix: properly render coins to send when select execute message
Hey, I just made a Pull Request!

:heavy_check_mark: Checklist

[X] Added or updated documentation

[X] Tests for new functionality and regression tests for bug fixes

[X] Screenshots attached (for UI changes)

: (
opened by dimkk 0
[Snyk] Upgrade @testing-library/jest-dom from 5.16.1 to 5.16.3
Snyk has created this PR to upgrade @testing-library/jest-dom from 5.16.1 to 5.16.3.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 2 versions ahead of your current version.

The recommended version was released 22 days ago, on 2022-03-24.

Release notes

Package name: @testing-library/jest-dom

5.16.3 - 2022-03-24
5.16.3 (2022-03-24)

Bug Fixes

clarify toHaveFocus message when using .not (#447) (6988a67)

5.16.2 - 2022-02-03
5.16.2 (2022-02-03)

Bug Fixes

add custom element support to toBeDisabled (#368) (8162115)

5.16.1 - 2021-12-06
5.16.1 (2021-12-06)

Bug Fixes

Improve toHaveClass error message format (#405) (a9beb47)

from @testing-library/jest-dom GitHub release notes

Commit messages

Package name: @testing-library/jest-dom

6988a67 fix: clarify toHaveFocus message when using `.not` (#447)

4d0ceeb docs: add ashleyryan as a contributor for code, ideas (#434)

1f389f8 docs: add astorije as a contributor for code, ideas (#433)

8162115 fix: add custom element support to `toBeDisabled` (#368)

3094eb1 docs: add cbroeren as a contributor for doc (#432)

43a420a docs: Fix wrong toHaveValue example (#431)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs
opened by snyk-bot 0
[Snyk] Upgrade @docsearch/react from 3.0.0-alpha.36 to 3.0.0
Snyk has created this PR to upgrade @docsearch/react from 3.0.0-alpha.36 to 3.0.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 8 versions ahead of your current version.

The recommended version was released 2 months ago, on 2022-02-22.

Release notes

Package name: @docsearch/react

3.0.0 - 2022-02-22
3.0.0 (2022-02-22)

Breaking Change

v3: require appId (#1299) (80630cb)

Bug Fixes

footer: make SVG accessible (#1306) (59a3ebf)

3.0.0-alpha.50 - 2022-02-03
3.0.0-alpha.50 (2022-02-03)

Bug Fixes

deps: update algoliasearch-autocomplete monorepo to v1.5.2 (#1225) (aa309f5)

deps: update dependency @ svgr/webpack to v6 (#1219) (52d6927)

deps: update dependency postcss to v8.4.5 (#1205) (d348589)

deps: update dependency postcss-preset-env to v7.0.2 (#1228) (1a7093b)

deps: update dependency postcss-preset-env to v7.1.0 (#1240) (cbb14eb)

deps: update dependency postcss-preset-env to v7.2.0 (#1252) (b3288fe)

deps: update docusaurus monorepo to v2.0.0-beta.13 (#1226) (02025e5)

deps: update docusaurus monorepo to v2.0.0-beta.14 (#1238) (77f785d)

logo: empty utm campaign (#1259) (30ee161)

Features

noResults: allow providing URL to report missing results (#1289) (2c1fe7c)

3.0.0-alpha.42 - 2021-12-03
v3.0.0-alpha.42 (2021-12-03)

Bug Fixes

deps: update dependency postcss to v8.3.11 (#1153) (0ddad32)

deps: update dependency postcss-import to v14 (#1155) (ebaf66e)

deps: update dependency postcss-preset-env to v7 (#1194) (96af398)

deps: update docusaurus monorepo to v2.0.0-beta.9 (#1166) (5aed646)

discord: update invite link (510cbc6)

DocSearchProps: type searchParameters (#1200) (80677fd)

examples: use new infra credentials (65d9414)

issue template: update codesandbox link (891fd88)

Features

translations: expose Button and Modal translations (#1183) (ef13dea)

3.0.0-alpha.41 - 2021-10-18
v3.0.0-alpha.41 (2021-10-18)

Bug Fixes

build: remove occurences of process in UMD build (#1047) (20f54c9)

ci: update docker image (#1052) (6b4944f)

docs: relative apply link (#1060) (7b48078)

docs: typo in Home.js (#1054) (2942246)

v3: pass initialQuery (#1051) (6e194c7)

website: apply feedbacks from beta testers (#1053) (33d78e7)

Features

website: new documentation (#1048) (9a89cde)

3.0.0-alpha.40 - 2021-08-23
v3.0.0-alpha.40 (2021-08-23)

Bug Fixes

ci: update config file (#1040) (4673f00)

removeHighlightTags: prevent destructuring undefined object (#1039) (6a6f7f6)

3.0.0-alpha.39 - 2021-07-23
v3.0.0-alpha.39 (2021-07-23)

Bug Fixes

button: prevent container keys ui flash (#1033) (7fad6a4)

3.0.0-alpha.38 - 2021-07-23
v3.0.0-alpha.38 (2021-07-23)

Bug Fixes

eliminate keyboard shortcuts UI flash (#1021) (c8e0c27)

searchClient: use client search method (#1019) (9da72a8)

3.0.0-alpha.37 - 2021-07-09
v3.0.0-alpha.37 (2021-07-09)

Bug Fixes

dependencies: upgrade dependencies (#1015) (9300cb4)

3.0.0-alpha.36 - 2021-04-14
v3.0.0-alpha.36 (2021-04-14)

Bug Fixes

escapedResults: fix undefined _highlightResult (#1003) (16e6558)

from @docsearch/react GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs
opened by dimkk 0
[Snyk] Upgrade @testing-library/jest-dom from 5.16.1 to 5.16.2
Snyk has created this PR to upgrade @testing-library/jest-dom from 5.16.1 to 5.16.2.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.

The recommended version was released 2 months ago, on 2022-02-03.

Release notes

Package name: @testing-library/jest-dom

5.16.2 - 2022-02-03
5.16.2 (2022-02-03)

Bug Fixes

add custom element support to toBeDisabled (#368) (8162115)

5.16.1 - 2021-12-06
5.16.1 (2021-12-06)

Bug Fixes

Improve toHaveClass error message format (#405) (a9beb47)

from @testing-library/jest-dom GitHub release notes

Commit messages

Package name: @testing-library/jest-dom

4d0ceeb docs: add ashleyryan as a contributor for code, ideas (#434)

1f389f8 docs: add astorije as a contributor for code, ideas (#433)

8162115 fix: add custom element support to `toBeDisabled` (#368)

3094eb1 docs: add cbroeren as a contributor for doc (#432)

43a420a docs: Fix wrong toHaveValue example (#431)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs
opened by dimkk 0
[Snyk] Security upgrade react-scripts from 4.0.3 to 5.0.0
This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

packages/examples/terrain-starter/frontend/package.json

packages/examples/terrain-starter/frontend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 713/1000
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.4 | Prototype Pollution
SNYK-JS-JSON5-3182856 | Yes | Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-scripts
The new version differs by 69 commits.

221e511 Publish

6a3315b Update CONTRIBUTING.md

5614c87 Add support for Tailwind (#11717)

657739f chore(test): make all tests install with `npm ci` (#11723)

20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)

69321b0 Remove cached lockfile (#11706)

3afbbc0 Update all dependencies (#11624)

f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)

e8319da [WIP] Fix integration test teardown / cleanup and missing yarn installation (#11686)

c7627ce Update webpack and dev server (#11646)

f85b064 The default port used by `serve` has changed (#11619)

544befe Update package.json (#11597)

9d0369b Fix ESLint Babel preset resolution (#11547)

d7b23c8 test(create-react-app): assert for exit code (#10973)

1465357 Prepare 5.0.0 alpha release

3880ba6 Remove dependency pinning (#11474)

8b9fbee Update CODEOWNERS

cacf590 Bump template dependency version (#11415)

5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (#11476)

50ea5ad allow CORS on webpack-dev-server (#11325)

63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (#11338)

960b21e Bump immer from 8.0.4 to 9.0.6 (#11364)

134cd3c Resolve dependency issues in v5 alpha (#11294)

b45ae3c Update CONTRIBUTING.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

?? Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
opened by dimkk 0
[Snyk] Security upgrade react-scripts from 4.0.3 to 5.0.0
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

packages/examples/terrain-starter/frontend/package.json

packages/examples/terrain-starter/frontend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3042992 | Yes | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-scripts
The new version differs by 69 commits.

221e511 Publish

6a3315b Update CONTRIBUTING.md

5614c87 Add support for Tailwind (#11717)

657739f chore(test): make all tests install with `npm ci` (#11723)

20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)

69321b0 Remove cached lockfile (#11706)

3afbbc0 Update all dependencies (#11624)

f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)

e8319da [WIP] Fix integration test teardown / cleanup and missing yarn installation (#11686)

c7627ce Update webpack and dev server (#11646)

f85b064 The default port used by `serve` has changed (#11619)

544befe Update package.json (#11597)

9d0369b Fix ESLint Babel preset resolution (#11547)

d7b23c8 test(create-react-app): assert for exit code (#10973)

1465357 Prepare 5.0.0 alpha release

3880ba6 Remove dependency pinning (#11474)

8b9fbee Update CODEOWNERS

cacf590 Bump template dependency version (#11415)

5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (#11476)

50ea5ad allow CORS on webpack-dev-server (#11325)

63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (#11338)

960b21e Bump immer from 8.0.4 to 9.0.6 (#11364)

134cd3c Resolve dependency issues in v5 alpha (#11294)

b45ae3c Update CONTRIBUTING.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
opened by snyk-bot 0
[Snyk] Fix for 1 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

apps/web/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3042992 | No | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @docusaurus/core
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/preset-classic
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/theme-live-codeblock
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
opened by dimkk 0
[Snyk] Security upgrade react-scripts from 4.0.3 to 5.0.0
This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

packages/examples/terrain-starter/frontend/package.json

packages/examples/terrain-starter/frontend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3105943 | Yes | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-scripts
The new version differs by 69 commits.

221e511 Publish

6a3315b Update CONTRIBUTING.md

5614c87 Add support for Tailwind (#11717)

657739f chore(test): make all tests install with `npm ci` (#11723)

20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)

69321b0 Remove cached lockfile (#11706)

3afbbc0 Update all dependencies (#11624)

f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)

e8319da [WIP] Fix integration test teardown / cleanup and missing yarn installation (#11686)

c7627ce Update webpack and dev server (#11646)

f85b064 The default port used by `serve` has changed (#11619)

544befe Update package.json (#11597)

9d0369b Fix ESLint Babel preset resolution (#11547)

d7b23c8 test(create-react-app): assert for exit code (#10973)

1465357 Prepare 5.0.0 alpha release

3880ba6 Remove dependency pinning (#11474)

8b9fbee Update CODEOWNERS

cacf590 Bump template dependency version (#11415)

5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (#11476)

50ea5ad allow CORS on webpack-dev-server (#11325)

63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (#11338)

960b21e Bump immer from 8.0.4 to 9.0.6 (#11364)

134cd3c Resolve dependency issues in v5 alpha (#11294)

b45ae3c Update CONTRIBUTING.md

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
opened by dimkk 0
[Snyk] Fix for 1 vulnerabilities
This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

apps/web/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 551/1000
Why? Recently disclosed, Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3105943 | No | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @docusaurus/core
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/preset-classic
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/theme-live-codeblock
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
opened by dimkk 0
[Snyk] Fix for 1 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

apps/web/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution
SNYK-JS-LOADERUTILS-3043105 | Yes | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @docusaurus/core
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/preset-classic
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: @docusaurus/theme-live-codeblock
The new version differs by 250 commits.

2a9e8f5 v2.0.0

2ef40c2 chore: Netlify branch deploys should only deploy default locale "en" (#7788)

d88f248 chore: add Netlify config for major version branch deploys (docusaurus-v2 branch) (#7787)

e4fc47b Merge branch 'main' into docusaurus-v2

7f40350 chore: fix codesandbox playgrounds, use Node.js 16 version (#7784)

1065e55 refactor(core): log Docusaurus & Node version before exiting (#7781)

965a01e chore: port-2.0.0-rc.1 (#7782)

e78a15e chore: ci tests should run on version branches "docusaurus-vX" (#7783)

c751bc6 chore: regen v2.0.0-rc.1 examples (#7780)

d255389 chore: prepare v2.0.0-rc.1 release (#7778)

443914a docs: add Bruce Wiki website to showcase (#7770)

f913af0 docs: release process, versioning, breaking changes, public API surface (#7706)

9788944 refactor(theme): fix duplicate page metadata usage (#7777)

c48f338 fix(core): swizzle --eject js should not copy theme .d.ts files (#7776)

c3d2e0d fix(sitemap): complete gracefully when all pages have noIndex meta (#7774)

665c311 chore: bump Infima to 0.2.0-alpha.42, fix a:hover link bug (#7771)

1899a2e docs: add EverShop website to showcase (#7765)

542228e fix(deploy): revert "feat(deploy): copy local git config to tmp repo (#7702)" (#7750)

a4b4a7f fix(migrate): import siteConfig with file extension (#7766)

337463a chore(theme-translations): complete ko translations (#7762)

9467da6 chore(deps): bump actions/setup-node from 3.3.0 to 3.4.0 (#7764)

cba8be0 fix(theme-classic): validate options properly (#7755)

636d470 refactor(core): use has instead of get to test for existence in ExecEnv (#7763)

f21dadf docs: add StackQL Provider Registry to showcase (#7760)

See the full diff

Package name: file-loader
The new version differs by 15 commits.

e44eb73 chore(release): 6.0.0

ad39022 chore(deps): update (#369)

e1fe27c docs: update README.md (#368)

c2aded7 chore(release): 5.1.0

cd8698b feat: support the `query` template for the `name` option (#366)

5703c58 chore(deps): update (#365)

521bff2 chore: remove duplicate prettier config file (#357)

5ffac2e refactor: added description on esModule (#358)

190829e docs: fix the description of the `esModule` option (#348)

f1b071c chore(release): 5.0.2

6431101 chore: add the `funding` field in `package.json` (#347)

90302cd chore(release): 5.0.1

31d6589 fix: name of `esModule` option in source code (#346)

2a18cba chore(release): 5.0.0

98a6c1d refactor: next (#345)

See the full diff

Package name: image-webpack-loader
The new version differs by 74 commits.

d9cca9b 7.0.0

7d91d45 lts not found?

8ea85e3 update changelog

044ccaf require node 10

8d386e2 Merge pull request #238 from tcoopman/dependabot/npm_and_yarn/imagemin-mozjpeg-9.0.0

d0f574c Bump imagemin-mozjpeg from 8.0.0 to 9.0.0

73e4acc Merge pull request #259 from tcoopman/dependabot/npm_and_yarn/imagemin-pngquant-9.0.1

42b776f Merge pull request #236 from tcoopman/dependabot/npm_and_yarn/imagemin-webp-6.0.0

63b3d18 Merge pull request #248 from tcoopman/dependabot/npm_and_yarn/webpack-4.44.1

953073e Bump imagemin-pngquant from 8.0.0 to 9.0.1

12a9da6 Bump webpack from 4.42.0 to 4.44.1

569b13c Bump imagemin-webp from 5.1.0 to 6.0.0

7fcf273 Merge pull request #258 from tcoopman/dependabot/npm_and_yarn/bl-1.2.3

2367e00 Merge pull request #255 from tcoopman/dependabot/npm_and_yarn/decompress-4.2.1

7714554 Merge pull request #253 from tcoopman/dependabot/npm_and_yarn/schema-utils-2.7.1

b601c5c Merge pull request #247 from tcoopman/dependabot/npm_and_yarn/elliptic-6.5.3

96197b4 Merge pull request #241 from tcoopman/dependabot/npm_and_yarn/webpack-cli-3.3.12

5cf2d90 [Security] Bump bl from 1.2.2 to 1.2.3

7e4116c Bump schema-utils from 2.6.5 to 2.7.1

605a580 Merge pull request #235 from tcoopman/dependabot/npm_and_yarn/imagemin-svgo-8.0.0

6fd3a22 [Security] Bump decompress from 4.2.0 to 4.2.1

c37a782 Merge pull request #234 from tcoopman/dependabot/npm_and_yarn/imagemin-optipng-8.0.0

830a392 Merge pull request #211 from tcoopman/dependabot/npm_and_yarn/imagemin-gifsicle-7.0.0

168a70c [Security] Bump elliptic from 6.5.2 to 6.5.3

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
opened by snyk-bot 0