[Snyk] Upgrade @percy/agent from 0.1.4 to 0.28.7

[snyk-bot]

Snyk has created this PR to upgrade @percy/agent from 0.1.4 to 0.28.7.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 124 versions ahead of your current version.
• The recommended version was released a year ago, on 2022-01-10.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	375/1000 Why? CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-SETVALUE-450213	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	375/1000 Why? CVSS 7.5	Proof of Concept
	Use After Free SNYK-JS-PUPPETEER-174321	375/1000 Why? CVSS 7.5	Mature
	Prototype Pollution SNYK-JS-MIXINDEEP-450212	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	375/1000 Why? CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	375/1000 Why? CVSS 7.5	Proof of Concept
	Arbitrary Code Execution SNYK-JS-JSYAML-174129	375/1000 Why? CVSS 7.5	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	375/1000 Why? CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	375/1000 Why? CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	375/1000 Why? CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	375/1000 Why? CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-AJV-584908	375/1000 Why? CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	375/1000 Why? CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	375/1000 Why? CVSS 7.5	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JSYAML-173999	375/1000 Why? CVSS 7.5	No Known Exploit
	Man-in-the-Middle (MitM) SNYK-JS-HTTPSPROXYAGENT-469131	375/1000 Why? CVSS 7.5	Proof of Concept
	Denial of Service (DoS) SNYK-JS-AXIOS-174505	375/1000 Why? CVSS 7.5	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	375/1000 Why? CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	375/1000 Why? CVSS 7.5	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	375/1000 Why? CVSS 7.5	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JUSTEXTEND-72674	375/1000 Why? CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @percy/agent

• 0.28.7 - 2022-01-10
• 0.28.6 - 2021-01-05
  

  What changed?

  • fix: [Security] upgrade axios from 0.19.2 to 0.21.1 (#593)
• 0.28.5 - 2020-11-18
  

  What changed?

  • fix: Don't check if the service is running to stop Percy (#581)
• 0.28.4 - 2020-10-14
  

  What's changed

  • fix: toString PID number for writeFileSync for Node 14 (#573)
• 0.28.3 - 2020-10-07
  

  What's Changed

  • fix(📌): Unpin puppeteer (#572)
• 0.28.2 - 2020-09-09
  

  What Changed?

  29dad28 - fix(🐛): Handle page and snapshot errors (#562)

• 0.28.1 - 2020-08-28
  

  What changed?

  • 83185ec - fix: Remove loading attributes from cloned iframes (#555)
• 0.28.0 - 2020-08-03
  

  chore: update release process

• 0.27.2 - 2020-07-22
  

  0.27.2 (2020-07-22)

  Bug Fixes

  • 🐛: Skip all response caches when response caching is disabled (#537) (6ddb9a0)
• 0.27.1 - 2020-07-17
  

  0.27.1 (2020-07-17)

  Bug Fixes

  • Capture assets using the same hostname, regardless of port (#535) (d490fa9)
• 0.27.0 - 2020-07-10
  

  0.27.0 (2020-07-10)

  Features

  • Unhide start and stop commands (#534) (7914a74)
• 0.26.9 - 2020-06-02
• 0.26.8 - 2020-05-29
• 0.26.7 - 2020-05-21
• 0.26.6 - 2020-05-18
• 0.26.5 - 2020-05-18
• 0.26.4 - 2020-05-15
• 0.26.3 - 2020-05-14
• 0.26.2 - 2020-04-03
• 0.26.1 - 2020-04-01
• 0.26.0 - 2020-03-17
• 0.25.0 - 2020-03-13
• 0.24.3 - 2020-03-06
• 0.24.2 - 2020-03-05
• 0.24.1 - 2020-03-04
• 0.24.0 - 2020-03-02
• 0.23.0 - 2020-02-28
• 0.22.0 - 2020-02-21
• 0.21.0 - 2020-02-03
• 0.20.13 - 2020-01-31
• 0.20.12 - 2020-01-21
• 0.20.11 - 2020-01-16
• 0.20.10 - 2020-01-16
• 0.20.9 - 2020-01-15
• 0.20.8 - 2020-01-13
• 0.20.7 - 2020-01-13
• 0.20.6 - 2019-12-18
• 0.20.5 - 2019-12-11
• 0.20.4 - 2019-12-11
• 0.20.3 - 2019-12-09
• 0.20.2 - 2019-11-22
• 0.20.1 - 2019-11-15
• 0.20.0 - 2019-11-08
• 0.19.7 - 2019-11-05
• 0.19.6 - 2019-10-31
• 0.19.5 - 2019-10-30
• 0.19.4 - 2019-10-29
• 0.19.3 - 2019-10-28
• 0.19.2 - 2019-10-28
• 0.19.1 - 2019-10-09
• 0.19.0 - 2019-10-09
• 0.18.4 - 2019-10-07
• 0.18.3 - 2019-10-04
• 0.18.2 - 2019-10-03
• 0.18.1 - 2019-10-03
• 0.18.0 - 2019-10-03
• 0.17.1 - 2019-10-03
• 0.17.0 - 2019-10-01
• 0.16.2 - 2019-10-01
• 0.16.1 - 2019-09-25
• 0.16.0 - 2019-09-25
• 0.15.2 - 2019-09-24
• 0.15.1 - 2019-09-20
• 0.15.0 - 2019-09-19
• 0.14.1 - 2019-09-19
• 0.14.0 - 2019-09-18
• 0.13.0 - 2019-09-17
• 0.12.2 - 2019-09-12
• 0.12.1 - 2019-09-12
• 0.12.0 - 2019-09-12
• 0.11.0 - 2019-09-03
• 0.10.1 - 2019-08-22
• 0.10.0 - 2019-08-07
• 0.9.2 - 2019-08-06
• 0.9.0 - 2019-07-22
• 0.8.3 - 2019-07-03
• 0.8.2 - 2019-07-02
• 0.8.1 - 2019-07-02
• 0.8.0 - 2019-07-02
• 0.7.2 - 2019-06-14
• 0.7.1 - 2019-06-13
• 0.7.0 - 2019-06-06
• 0.6.0 - 2019-06-06
• 0.5.3 - 2019-06-06
• 0.5.2 - 2019-06-03
• 0.5.1 - 2019-05-31
• 0.5.0 - 2019-05-30
• 0.5.0-beta.1 - 2019-04-30
• 0.4.9 - 2019-05-21
• 0.4.8 - 2019-05-14
• 0.4.7 - 2019-05-14
• 0.4.6 - 2019-05-09
• 0.4.5 - 2019-05-08
• 0.4.4 - 2019-05-03
• 0.4.4-beta.1 - 2019-05-02
• 0.4.3 - 2019-05-02
• 0.4.2 - 2019-05-02
• 0.4.1 - 2019-04-30
• 0.4.0 - 2019-04-26
• 0.3.1 - 2019-04-18
• 0.3.0 - 2019-04-16
• 0.2.3 - 2019-04-15
• 0.2.2 - 2019-04-08
• 0.2.2-beta.4 - 2019-04-05
• 0.2.2-beta.3 - 2019-04-05
• 0.2.2-beta.2 - 2019-04-04
• 0.2.2-beta.1 - 2019-04-04
• 0.2.1 - 2019-04-03
• 0.2.1-beta.1 - 2019-04-04
• 0.2.0 - 2019-04-03
• 0.1.18 - 2019-04-02
• 0.1.17 - 2019-03-19
• 0.1.16 - 2019-02-21
• 0.1.15 - 2019-02-16
• 0.1.14 - 2019-02-07
• 0.1.13 - 2019-02-07
• 0.1.12 - 2019-02-06
• 0.1.11 - 2019-01-18
• 0.1.10 - 2019-01-18
• 0.1.9 - 2019-01-18
• 0.1.8 - 2019-01-17
• 0.1.7 - 2018-12-11
• 0.1.6 - 2018-12-11
• 0.1.5 - 2018-12-08
• 0.1.4 - 2018-11-28

from @percy/agent GitHub release notes

Commit messages

Package name: @percy/agent

• 3a8cc3a 🔖 v0.28.7
• a27b610 fix: Lock colors.js to prevent infinite loop (⬆️ Bump webpack from 5.76.3 to 5.84.1 percy/percy-cypress#646)
• 4889495 Add deprecated isssue template
• 14c93a8 build(deps): bump ssri from 6.0.1 to 6.0.2 (⬆️ Bump @cypress/code-coverage from 3.10.0 to 3.10.1 percy/percy-cypress#623)
• 4a17184 build(deps): bump hosted-git-info from 2.8.8 to 2.8.9 (⬆️ Bump cypress from 12.8.1 to 12.9.0 percy/percy-cypress#624)
• 1e905bb build(deps): bump underscore from 1.9.1 to 1.13.1 (⬆️ Bump tsd from 0.28.0 to 0.28.1 percy/percy-cypress#625)
• 0368029 build(deps): bump ini from 1.3.5 to 1.3.8 (Stale Test percy/percy-cypress#628)
• b7c8f8e build(deps-dev): bump testem from 3.2.0 to 3.4.2 (⬆️ Bump eslint-plugin-cypress from 2.12.1 to 2.13.2 percy/percy-cypress#622)
• 23e5f57 build(deps-dev): bump tslint from 6.1.0 to 6.1.3 (Fix find for linux percy/percy-cypress#619)
• 05b1032 build(deps): [security] bump y18n from 4.0.0 to 4.0.3 (⬆️👷 Bump actions/stale from 6 to 8 percy/percy-cypress#617)
• 1b7edf3 docs: Add notice about `@ percy/cli` to README
• 80a59f3 build(deps): [security] bump elliptic from 6.5.3 to 6.5.4 (⬆️ Bump @percy/cli from 1.16.0 to 1.20.3 percy/percy-cypress#607)
• 42af5f5 v0.28.6
• 39ffeb9 Update lockfile
• ae237ad fix: [Security] upgrade axios from 0.19.2 to 0.21.1
• d9dd683 build(deps-dev): bump @ babel/core from 7.10.4 to 7.12.9 (⬆️ Bump cypress from 10.11.0 to 12.1.0 percy/percy-cypress#583)
• cf6e4d7 build(deps): bump puppeteer from 5.3.1 to 5.5.0 (⬆️ Bump cypress from 10.11.0 to 12.3.0 percy/percy-cypress#588)
• e808b33 build(deps-dev): bump nock from 11.7.0 to 13.0.5 (⬆️ Bump json5 from 1.0.1 to 1.0.2 percy/percy-cypress#586)
• c3119e6 build(deps-dev): bump tslib from 2.0.0 to 2.0.3 (⬆️ Bump tsd from 0.24.1 to 0.25.0 percy/percy-cypress#582)
• 7d7a28b build(deps-dev): bump @ types/puppeteer from 3.0.1 to 5.4.0 (⬆️ Bump babel-loader from 9.0.0 to 9.1.2 percy/percy-cypress#587)
• 8d4240d build(deps-dev): bump npm-watch from 0.6.0 to 0.7.0 (⬆️ Bump cypress from 10.11.0 to 12.2.0 percy/percy-cypress#584)
• 5fb1286 build(deps-dev): bump ts-node from 8.5.4 to 9.0.0 (⬆️👷 Bump actions/stale from 6 to 7 percy/percy-cypress#585)
• 3a016ca v0.28.5
• 609ad5e fix: Don't check if the service is running to stop Percy (⬆️ Bump cypress from 10.11.0 to 12.0.2 percy/percy-cypress#581)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs