[Snyk] Upgrade three from 0.85.2 to 0.130.1

[snyk-bot]

Snyk has created this PR to upgrade three from 0.85.2 to 0.130.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 67 versions ahead of your current version.
• The recommended version was released a month ago, on 2021-07-05.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-THREE-1064931	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: three

• 0.130.1 - 2021-07-05
• 0.130.0 - 2021-06-30
• 0.129.0 - 2021-05-27
• 0.128.0 - 2021-04-23
• 0.127.0 - 2021-03-31
• 0.126.1 - 2021-03-03
• 0.126.0 - 2021-02-24
• 0.125.2 - 2021-01-29
• 0.125.1 - 2021-01-27
• 0.125.0 - 2021-01-27
• 0.124.0 - 2020-12-24
• 0.123.0 - 2020-11-25
• 0.122.0 - 2020-10-28
• 0.121.1 - 2020-09-30
• 0.121.0 - 2020-09-30
• 0.120.1 - 2020-08-30
• 0.120.0 - 2020-08-26
• 0.119.1 - 2020-07-30
• 0.119.0 - 2020-07-29
• 0.118.3 - 2020-06-27
• 0.118.2 - 2020-06-27
• 0.118.1 - 2020-06-24
• 0.118.0 - 2020-06-24
• 0.117.1 - 2020-05-28
• 0.117.0 - 2020-05-27
• 0.116.1 - 2020-05-01
• 0.116.0 - 2020-04-30
• 0.115.0 - 2020-03-25
• 0.114.0 - 2020-02-29
• 0.113.2 - 2020-01-31
• 0.113.1 - 2020-01-30
• 0.113.0 - 2020-01-30
• 0.112.1 - 2019-12-27
• 0.112.0 - 2019-12-25
• 0.111.0 - 2019-11-27
• 0.110.0 - 2019-10-30
• 0.109.0 - 2019-09-30
• 0.108.0 - 2019-08-28
• 0.107.0 - 2019-07-31
• 0.106.2 - 2019-06-28
• 0.106.1 - 2019-06-27
• 0.106.0 - 2019-06-26
• 0.105.2 - 2019-06-03
• 0.105.1 - 2019-05-30
• 0.105.0 - 2019-05-30
• 0.104.0 - 2019-04-24
• 0.103.0 - 2019-03-27
• 0.102.1 - 2019-03-02
• 0.102.0 - 2019-02-28
• 0.101.1 - 2019-02-01
• 0.101.0 - 2019-02-01
• 0.100.0 - 2018-12-31
• 0.99.0 - 2018-12-01
• 0.98.0 - 2018-10-31
• 0.97.0 - 2018-09-26
• 0.96.0 - 2018-08-30
• 0.95.0 - 2018-07-31
• 0.94.0 - 2018-06-27
• 0.93.0 - 2018-05-30
• 0.92.0 - 2018-04-18
• 0.91.0 - 2018-03-14
• 0.90.0 - 2018-02-14
• 0.89.0 - 2017-12-18
• 0.88.0 - 2017-11-02
• 0.87.1 - 2017-08-18
• 0.87.0 - 2017-08-18
• 0.86.0 - 2017-06-21
• 0.85.2 - 2017-04-25

from three GitHub release notes

Commit messages

Package name: three

• d0340e3 r130 (bis)
• 83176d9 Revert "Update revision (#22087)" (#22090)
• cdd242f Update WebXR Layers example to compare quality. (#22083)
• 8837fac Update revision (#22087)
• f5bd0b7 Updated examples builds
• c736a74 Updated builds
• 53e9132 USDZExporter: Added map transparency support (#22086)
• 21e7244 DragControls: added onPointerDown parameters (#22084)
• 00c1976 Examples: Clean up.
• 3d0eac4 FBXLoader: Matrix4 code clean up.
• a40bb1a USDZExporter: Log a warning when matrixWorld has a negative scale.
• 688d1df Docs: Improved AnimationMixer page. (#22076)
• 9278548 WebGLTextures: Fix mips gen for 3D render targets. (#22072)
• 8fb030c Fix regression in WebXR (#22074)
• e8877df Revert "TransformControls: Clean up."
• e69f6f8 r130
• 184eda2 Examples: Clean up
• 766d59e Editor: Cache network responses in sw.js.
• 3dd46c0 Updated builds
• 36b85d6 Updated examples builds
• 581cc97 TransformControls: Clean up.
• 11b1bd2 Editor: Display BoundingBox values instead of BoundingSphere
• f936540 Account for changing morph target count (#20845)
• 0a3a0ed Fix WebGLMultisampleRenderTarget mipmap generation (#22064)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs