[Snyk] Upgrade @reactioncommerce/api-utils from 1.14.3 to 1.16.0

[snyk-bot]

Snyk has created this PR to upgrade @reactioncommerce/api-utils from 1.14.3 to 1.16.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released 7 months ago, on 2020-10-21.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090602	336/1000 Why? Recently disclosed, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090601	336/1000 Why? Recently disclosed, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090600	336/1000 Why? Recently disclosed, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-VALIDATOR-1090599	336/1000 Why? Recently disclosed, CVSS 5.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @reactioncommerce/api-utils

• 1.16.0 - 2020-10-21
  

  1.16.0 (2020-10-21)

  Features

  • Add RON currency (de281ce)
• 1.15.0 - 2020-10-20
  

  1.15.0 (2020-10-20)

  Features

  • Add Nepali Currency definition (27e45dd)
• 1.14.5 - 2020-07-01
  

  1.14.5 (2020-07-01)

  Bug Fixes

  • upgrade transliteration from 2.1.8 to 2.1.9 (3acbb20)
• 1.14.4 - 2020-06-30
  

  1.14.4 (2020-06-30)

  Bug Fixes

  • update pipelines to fix pagination (c8ed0af)
• 1.14.3 - 2020-06-22
  

  1.14.3 (2020-06-22)

  Bug Fixes

  • upgrade envalid from 6.0.1 to 6.0.2 (b859b6a)

from @reactioncommerce/api-utils GitHub release notes

Commit messages

Package name: @reactioncommerce/api-utils

• cdea087 Merge pull request #54 from CatalinBoiangiu/patch-1
• de281ce feat: Add RON currency
• 88f4639 Merge pull request #58 from dineshdb/patch-1
• 27e45dd feat: Add Nepali Currency definition
• 3747255 Merge pull request chore(deps): Bump moment from 2.26.0 to 2.29.4 #50 from reactioncommerce/dependabot/npm_and_yarn/lodash-4.17.19
• 7ca1142 chore(deps): Bump lodash from 4.17.15 to 4.17.19
• 3dc93ca Merge pull request #59 from reactioncommerce/dependabot/npm_and_yarn/npm-6.14.8
• c7344d1 chore(deps): Bump npm from 6.14.4 to 6.14.8
• f769070 Merge pull request #56 from reactioncommerce/dependabot/npm_and_yarn/node-fetch-2.6.1
• 330ab3f chore(deps): Bump node-fetch from 2.6.0 to 2.6.1
• 5b32c00 Merge pull request chore(deps): Bump trim-off-newlines from 1.0.1 to 1.0.3 #43 from reactioncommerce/snyk-upgrade-f08227d8f5e7f7f0c1283b087c6592cb
• 3acbb20 fix: upgrade transliteration from 2.1.8 to 2.1.9
• 5575bdd Merge pull request chore(deps-dev): Bump semantic-release from 17.2.3 to 19.0.3 #46 from reactioncommerce/fix-45-mikemurray-aggregate-offset-pagination
• 05626dc test: ensure skip comes before limit
• c8ed0af fix: update pipelines to fix pagination

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs