[Snyk] Upgrade snyk from 1.336.0 to 1.370.1

[snyk-bot]

Snyk has created this PR to upgrade snyk from 1.336.0 to 1.370.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 64 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2020-08-08.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Remote Memory Exposure SNYK-JS-BL-608877	456/1000 Why? Recently disclosed, CVSS 7.7	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: snyk

• 1.370.1 - 2020-08-08
  

  1.370.1 (2020-08-08)

  Bug Fixes

  • snyk auth command (26f96e7)
• 1.370.0 - 2020-08-07
  

  Deprecated - contained an issue with snyk auth command. Update to the latest one.

  1.370.0 (2020-08-07)

  Bug Fixes

  • --reachable on Windows (0d2d9e7)

  Features

  • improve error reporting for reachable vulnerabilities (31415a9)
• 1.369.3 - 2020-08-04
  

  1.369.3 (2020-08-04)

  Bug Fixes

  • propagate failed monitor scans all the way to the user (7ef59ed)
  • when using --all-projects for test & monitor generating dependencies was failing silently and only visible with -d.
    Propagate a smaller summary message to the user letting them know some scans failed.
• 1.369.2 - 2020-07-30
  

  1.369.2 (2020-07-30)

  Bug Fixes

  • command too long in reachable vulns flow (8ac28cd)
• 1.369.1 - 2020-07-29
  

  1.369.1 (2020-07-29)

  Bug Fixes

  • protect will not fail when there are not vulns to patch (7e31f59)
• 1.369.0 - 2020-07-28
  

  1.369.0 (2020-07-28)

  Features

  • windows binary is now using code signing (a745b64)
• 1.368.1 - 2020-07-28
  

  1.368.1 (2020-07-28)

  Bug Fixes

  • correct iac error import & add tests (efbcf84)
• 1.368.0 - 2020-07-28
  

  1.368.0 (2020-07-28)

  Features

  • Support using Docker JWT token for snyk test (28af1c7)
• 1.367.0 - 2020-07-27
  

  1.367.0 (2020-07-27)

  Bug Fixes

  • python autodetection in containerized env (57e860b)

  Features

  • support setup.py automatic detection on containerized cli (57c9b00)
  • support specifying Pipfile on containerized cli (382e758)
• 1.366.2 - 2020-07-24
  

  1.366.2 (2020-07-24)

  Bug Fixes

  • correctly count graph packages (e80c8a1)
• 1.366.1 - 2020-07-24
• 1.366.0 - 2020-07-23
• 1.365.0 - 2020-07-23
• 1.364.2 - 2020-07-22
• 1.364.1 - 2020-07-22
• 1.364.0 - 2020-07-21
• 1.363.0 - 2020-07-20
• 1.362.1 - 2020-07-16
• 1.362.0 - 2020-07-15
• 1.361.3 - 2020-07-09
• 1.361.2 - 2020-07-09
• 1.361.1 - 2020-07-09
• 1.361.0 - 2020-07-09
• 1.360.0 - 2020-07-03
• 1.359.1 - 2020-07-02
• 1.359.0 - 2020-07-01
• 1.358.0 - 2020-07-01
• 1.357.0 - 2020-07-01
• 1.356.0 - 2020-07-01
• 1.355.0 - 2020-06-30
• 1.354.0 - 2020-06-30
• 1.353.1 - 2020-06-30
• 1.353.0 - 2020-06-30
• 1.352.1 - 2020-06-29
• 1.352.0 - 2020-06-29
• 1.351.0 - 2020-06-29
• 1.350.1 - 2020-06-29
• 1.350.0 - 2020-06-29
• 1.349.0 - 2020-06-25
• 1.348.2 - 2020-06-24
• 1.348.1 - 2020-06-23
• 1.348.0 - 2020-06-23
• 1.347.1 - 2020-06-22
• 1.347.0 - 2020-06-22
• 1.346.0 - 2020-06-19
• 1.345.1 - 2020-06-18
• 1.345.0 - 2020-06-18
• 1.344.0 - 2020-06-18
• 1.343.0 - 2020-06-18
• 1.342.3 - 2020-06-18
• 1.342.2 - 2020-06-16
• 1.342.1 - 2020-06-16
• 1.342.0 - 2020-06-16
• 1.341.2 - 2020-06-16
• 1.341.1 - 2020-06-15
• 1.341.0 - 2020-06-15
• 1.340.0 - 2020-06-15
• 1.339.4 - 2020-06-15
• 1.339.3 - 2020-06-14
• 1.339.2 - 2020-06-12
• 1.339.1 - 2020-06-11
• 1.339.0 - 2020-06-10
• 1.338.0 - 2020-06-10
• 1.337.0 - 2020-06-09
• 1.336.0 - 2020-06-04

from snyk GitHub release notes

Commit messages

Package name: snyk

• 56eac4b Merge pull request #1315 from snyk/fix/snyk-auth-command
• 26f96e7 fix: snyk auth command
• c46a4c8 Merge pull request #1314 from snyk/chore/flow-373-rework-error-reporting
• 1e4bf1c Merge pull request #1304 from snyk/chore/source-analytics-tracking
• 0d2d9e7 fix: --reachable on Windows
• 4b09d79 chore: capture integration name
• 31415a9 feat: improve error reporting for reachable vulnerabilities
• f615636 Merge pull request #1308 from snyk/chore/update-gitignore-with-vscode-folder
• e02e527 chore:updated gitignore with vscode folder
• 5ad17d8 Merge pull request #1301 from snyk/fix/throw-erorr-if-all-tests-failed
• 59591bf Merge pull request #1294 from snyk/chore/update-run-test-exports
• 7ef59ed fix: propagate failed monitor scans all the way to the user
• f90157d Merge pull request #1302 from snyk/chore/ignore-node-diagnostic-report
• 2a204e2 chore: ignore node diagnostic report
• af94836 Merge pull request #1300 from snyk/chore/flaky-test
• 6d2d76a chore(test): disably flaky Windows tests
• 11155ec Merge pull request #1290 from snyk/chore/remove-irrelevant-comment
• 1f44fb9 Merge pull request #1299 from snyk/fix/reachable-classpath-file
• 8ac28cd fix: command too long in reachable vulns flow
• 3fc09e1 Merge pull request #1297 from snyk/fix/protect-shouldnt-fail-when-theres-nothing-to-do
• 8f13109 Merge pull request #1298 from snyk/chore/add-osslsigncode
• 19e7c79 Merge pull request #1292 from snyk/feat/refactor-project-type-validation
• 7e31f59 fix: protect will not fail when there are not vulns to patch
• 123a5fe chore: install osslsigncode in release step

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs