[Snyk] Upgrade jimp from 0.16.1 to 0.22.7

[snyk-bot]

Snyk has created this PR to upgrade jimp from 0.16.1 to 0.22.7.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 105 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2023-02-25.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	430/1000 Why? CVSS 8.6	No Known Exploit
	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	430/1000 Why? CVSS 8.6	No Known Exploit
	Information Exposure SNYK-JS-SIMPLEGET-2361683	430/1000 Why? CVSS 8.6	Proof of Concept
	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	430/1000 Why? CVSS 8.6	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	430/1000 Why? CVSS 8.6	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	430/1000 Why? CVSS 8.6	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JPEGJS-2859218	430/1000 Why? CVSS 8.6	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JPEGJS-2859218	430/1000 Why? CVSS 8.6	Proof of Concept
	Information Exposure SNYK-JS-NODEFETCH-2342118	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	430/1000 Why? CVSS 8.6	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JPEGJS-570039	430/1000 Why? CVSS 8.6	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-2429795	430/1000 Why? CVSS 8.6	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: jimp

• 0.22.7 - 2023-02-25
  

  🎉 This release contains work from a new contributor! 🎉

  Thank you, MD KHAIRUL ISLAM (@ black-turtle), for all your work!

  Release Notes

  use matrix rotate, if rotate angle is multiple of 90 degrees (#1209)

  Fixes a bug where rotating by 90 degrees introduced extra pixels

  ---

  🐛 Bug Fix

  • @ jimp/plugin-rotate
    • use matrix rotate, if rotate angle is multiple of 90 degrees #1209 (@ black-turtle)

  Authors: 1

  • MD KHAIRUL ISLAM (@ black-turtle)
• 0.22.6 - 2023-02-24
  

  🎉 This release contains work from a new contributor! 🎉

  Thank you, Daniell (@ daniellwdb), for all your work!

  🐛 Bug Fix

  • jimp, @ jimp/plugin-color
    • Export ColorActionName enum #1205 (@ daniellwdb)

  Authors: 1

  • Daniell (@ daniellwdb)
• 0.22.6--canary.1198.9324a88b87a1fc38b528af47ca707d97593dddaa.0 - 2023-02-22
• 0.22.5 - 2023-02-21
  

  🎉 This release contains work from new contributors! 🎉

  Thanks for all your work!

  ❤️ Charly Poirier (@ charlypoirier)

  ❤️ Ihor Bodnarchuk (@ ihorbond)

  🐛 Bug Fix

  • @ jimp/plugin-resize
    • Fix resizing issue with Jimp.AUTO #1202 (@ charlypoirier)

  📝 Documentation

  • Update README.md #1203 (@ ihorbond @ hipstersmoothie)

  Authors: 3

  • Andrew Lisowski (@ hipstersmoothie)
  • Charly Poirier (@ charlypoirier)
  • Ihor Bodnarchuk (@ ihorbond)
• 0.22.4 - 2023-02-07
  

  🚀 Enhancement

  • @ jimp/core, @ jimp/plugin-color
    • update tinycolor2 #1187 (@ hipstersmoothie)

  Authors: 1

  • Andrew Lisowski (@ hipstersmoothie)
• 0.22.4--canary.1187.30d10f964404705d383d7163b7d3f85baa2201b7.0 - 2023-02-07
• 0.22.3 - 2023-02-06
  

  🚀 Enhancement

  • jimp
    • Fix browser build #1184 (@ hipstersmoothie)

  Authors: 1

  • Andrew Lisowski (@ hipstersmoothie)
• 0.22.3--canary.1184.ff6583af74ba85d9555c36db2844886e269feb16.0 - 2023-02-06
• 0.22.2 - 2023-02-06
  

  🎉 This release contains work from new contributors! 🎉

  Thanks for all your work!

  ❤️ Ollie Chick (@ olliechick)

  ❤️ Andrey Kutejko (@ andy128k)

  🚀 Enhancement

  • @ jimp/core
    • Change type of mime from string to string|number to fix #990 #1182 (@ olliechick)

  📝 Documentation

  • Remove mentioning of favicons #1176 (@ andy128k)

  Authors: 2

  • Andrey Kutejko (@ andy128k)
  • Ollie Chick (@ olliechick)
• 0.22.1 - 2023-02-06
  

  🚀 Enhancement

  • @ jimp/core
    • upgrade mkdrip #1173 (@ hipstersmoothie)

  🏠 Internal

  • Windows scripts #1172 (@ hipstersmoothie)
  • @ jimp/core, @ jimp/custom, jimp, @ jimp/plugin-blit, @ jimp/plugin-blur, @ jimp/plugin-circle, @ jimp/plugin-color, @ jimp/plugin-contain, @ jimp/plugin-cover, @ jimp/plugin-crop, @ jimp/plugin-displace, @ jimp/plugin-dither, @ jimp/plugin-fisheye, @ jimp/plugin-flip, @ jimp/plugin-gaussian, @ jimp/plugin-invert, @ jimp/plugin-mask, @ jimp/plugin-normalize, @ jimp/plugin-print, @ jimp/plugin-resize, @ jimp/plugin-rotate, @ jimp/plugin-scale, @ jimp/plugin-shadow, @ jimp/plugin-threshold, @ jimp/plugins, @ jimp/test-utils, @ jimp/bmp, @ jimp/gif, @ jimp/jpeg, @ jimp/png, @ jimp/tiff, @ jimp/types, @ jimp/utils
    • rename master to main #1169 (@ hipstersmoothie)

  Authors: 1

  • Andrew Lisowski (@ hipstersmoothie)
• 0.22.1--canary.1173.30a931db5f6552c59e4c99f41fdb9e2b9ccf8291.0 - 2023-02-06
• 0.22.1--canary.1169.6db477d088d28aea43b31d9ca8b0eaf74dc511d1.0 - 2023-02-06
• 0.22.0 - 2023-02-06
  

  Release Notes

  Switch to fetch for url requests (#1165)

  The underlying library for fetching images has been changed.

  loadFromURL can take a set of options. When in the node environment all those options are passed to phin. Any options used to pass to phin that are not supported by the fetch API will stop working.

  ---

  💥 Breaking Change

  • @ jimp/core
    • Switch to fetch for url requests #1165 (@ danielholmes)

  🏠 Internal

  • @ jimp/core, @ jimp/custom, jimp, @ jimp/plugin-blit, @ jimp/plugin-circle, @ jimp/plugin-color, @ jimp/plugin-contain, @ jimp/plugin-cover, @ jimp/plugin-crop, @ jimp/plugin-fisheye, @ jimp/plugin-flip, @ jimp/plugin-mask, @ jimp/plugin-normalize, @ jimp/plugin-print, @ jimp/plugin-resize, @ jimp/plugin-rotate, @ jimp/plugin-shadow, @ jimp/plugin-threshold, @ jimp/test-utils, @ jimp/bmp, @ jimp/gif, @ jimp/jpeg, @ jimp/png, @ jimp/tiff
    • switch from should to expect #1163 (@ hipstersmoothie)
  • @ jimp/core, @ jimp/plugin-resize
    • delete CLI package #1162 (@ hipstersmoothie)
  • @ jimp/core, jimp, @ jimp/plugin-blit, @ jimp/plugin-circle, @ jimp/plugin-color, @ jimp/plugin-contain, @ jimp/plugin-cover, @ jimp/plugin-crop, @ jimp/plugin-fisheye, @ jimp/plugin-flip, @ jimp/plugin-mask, @ jimp/plugin-normalize, @ jimp/plugin-print, @ jimp/plugin-resize, @ jimp/plugin-rotate, @ jimp/plugin-shadow, @ jimp/plugin-threshold, @ jimp/test-utils, @ jimp/bmp, @ jimp/gif, @ jimp/jpeg, @ jimp/png, @ jimp/tiff
    • Change test matching strategy to include all test files #1161 (@ danielholmes)

  Authors: 2

  • Andrew Lisowski (@ hipstersmoothie)
  • Daniel Holmes (@ danielholmes)
• 0.21.4--canary.1163.d07ed6254d130e2995d24101e93427ec091016e6.0 - 2023-02-06
• 0.21.4--canary.1163.a26f5b300ee88c2fadb9909dd390cb4380b32a42.0 - 2023-02-06
• 0.21.4--canary.1163.7b9287fff1036ae67190d5ea3a8dec9926373a63.0 - 2023-02-06
• 0.21.4--canary.1163.6a6ae39e83bd731ccd25120a160a75b32273f9bd.0 - 2023-02-06
• 0.21.3 - 2023-02-05
  

  🎉 This release contains work from a new contributor! 🎉

  Thank you, Daniel Holmes (@ danielholmes), for all your work!

  🚀 Enhancement

  • run workflow for PRs #1156 (@ hipstersmoothie)

  🐛 Bug Fix

  • @ jimp/core, @ jimp/plugin-resize
    • Change some exports to move towards more ESM compatibility #1154 (@ danielholmes)

  🏠 Internal

  • Workflow fix #1159 (@ hipstersmoothie)

  Authors: 2

  • Andrew Lisowski (@ hipstersmoothie)
  • Daniel Holmes (@ danielholmes)
• 0.21.2 - 2023-02-05
  

  v0.21.2

• 0.21.2--canary.1156.ba9fec9d0c9109924b4a5acab31bcaef8159a610.0 - 2023-02-05
• 0.21.2--canary.1156.8b2cc45.0 - 2023-02-05
• 0.21.2--canary.1156.1f8a92bfc1cbc6b5f3ad2490d0ec86710c81f635.0 - 2023-02-05
• 0.21.1 - 2023-02-05
• 0.21.1--canary.1153.3cc6d7b.0 - 2023-02-05
• 0.21.0 - 2023-02-05
• 0.21.0--canary.1149.a81f653.0 - 2023-02-05
• 0.21.0--canary.1149.3239903.0 - 2023-02-05
• 0.20.2 - 2023-02-05
• 0.20.1 - 2023-02-05
• 0.20.0 - 2023-02-05
• 0.19.0 - 2023-02-05
• 0.18.0 - 2023-02-05
• 0.18.0--canary.1135.911ed04.0 - 2023-02-04
• 0.18.0--canary.1133.54bf269.0 - 2023-02-04
• 0.17.10 - 2023-02-04
• 0.17.9 - 2023-02-04
• 0.17.9--canary.fc042e5.0 - 2023-02-05
• 0.17.9--canary.1144.3455afd.0 - 2023-02-05
• 0.17.9--canary.1143.90575e6.0 - 2023-02-05
• 0.17.9--canary.1141.cd4d455.0 - 2023-02-05
• 0.17.9--canary.1140.e3ff49d.0 - 2023-02-04
• 0.17.9--canary.1140.831bc3c.0 - 2023-02-04
• 0.17.9--canary.1140.4042b43.0 - 2023-02-04
• 0.17.8 - 2023-02-04
• 0.17.8--canary.1137.476d7bd.0 - 2023-02-04
• 0.17.7 - 2023-02-04
• 0.17.6 - 2023-02-04
• 0.17.6--canary.cd893f3.0 - 2023-02-04
• 0.17.6--canary.1cb89cf.0 - 2023-02-04
• 0.17.6--canary.1137.5e459dc.0 - 2023-02-04
• 0.17.5 - 2023-02-04
• 0.17.4 - 2023-02-04
• 0.17.3 - 2023-02-04
• 0.17.3--canary.1136.7f5f5d8.0 - 2023-02-04
• 0.17.2 - 2023-02-04
• 0.17.1 - 2023-02-04
• 0.17.1--canary.e22c14a.0 - 2023-02-04
• 0.17.1--canary.1134.e007a48.0 - 2023-02-04
• 0.17.0 - 2023-02-04
• 0.17.0--canary.1131.af3cb94.0 - 2023-02-04
• 0.16.13 - 2023-02-04
• 0.16.12 - 2023-02-04
• 0.16.11 - 2023-02-04
• 0.16.10 - 2023-02-04
• 0.16.9 - 2023-02-04
• 0.16.8 - 2023-02-04
• 0.16.7 - 2023-02-04
• 0.16.6 - 2023-02-04
• 0.16.5 - 2023-02-04
• 0.16.4 - 2023-02-04
• 0.16.3 - 2023-02-04
• 0.16.3-canary.1125.1580.0 - 2023-02-03
• 0.16.3-canary.1113.1404.0 - 2022-12-10
• 0.16.3-canary.1109.1388.0 - 2022-11-21
• 0.16.3-canary.1108.1382.0 - 2022-11-16
• 0.16.3-canary.1100.1371.0 - 2022-10-09
• 0.16.3-canary.1085.1581.0 - 2023-02-03
• 0.16.3-canary.1082.1591.0 - 2023-02-03
• 0.16.3-canary.1045.1590.0 - 2023-02-03
• 0.16.3-canary.1040.1589.0 - 2023-02-03
• 0.16.3-canary.1014.1579.0 - 2023-02-03
• 0.16.3-canary.999.1588.0 - 2023-02-03
• 0.16.3-canary.993.1592.0 - 2023-02-03
• 0.16.2 - 2022-09-15
• 0.16.2-canary.1094.1345.0 - 2022-08-02
• 0.16.2-canary.1093.1332.0 - 2022-07-25
• 0.16.2-canary.1086.1311.0 - 2022-05-21
• 0.16.2-canary.1084.1305.0 - 2022-05-16
• 0.16.2-canary.1082.1294.0 - 2022-04-28
• 0.16.2-canary.1080.1288.0 - 2022-04-04
• 0.16.2-canary.1073.1276.0 - 2022-02-21
• 0.16.2-canary.1070.1265.0 - 2022-02-11
• 0.16.2-canary.1052.1235.0 - 2021-10-27
• 0.16.2-canary.1051.1228.0 - 2021-10-22
• 0.16.2-canary.1045.1221.0 - 2021-09-01
• 0.16.2-canary.1016.1185.0 - 2021-05-25
• 0.16.2-canary.1008.1164.0 - 2021-04-29
• 0.16.2-canary.984.1126.0 - 2021-01-25
• 0.16.2-canary.969.1115.0 - 2020-12-11
• 0.16.2-canary.964.1101.0 - 2020-11-24
• 0.16.2-canary.956.1095.0 - 2020-10-23
• 0.16.2-canary.947.1077.0 - 2020-10-03
• 0.16.2-canary.938.1059.0 - 2020-09-07
• 0.16.2-canary.934.1053.0 - 2020-08-28
• 0.16.2-canary.919.1052.0 - 2020-08-28
• 0.16.1 - 2020-08-28

from jimp GitHub release notes

Commit messages

Package name: jimp

• 965a14e "Bump version to: v0.22.7 [skip ci]"
• eb98ce1 Update contributors [skip ci]
• 07f4fd1 Update CHANGELOG.md [skip ci]
• 97c657e use matrix rotate, if rotate angle is multiple of 90 degrees (feat: Add cashcash app electron/apps#1209)
• 1ff8a39 "Bump version to: v0.22.6 [skip ci]"
• 2626b32 Update contributors [skip ci]
• 20c453b Update CHANGELOG.md [skip ci]
• 3236973 Export ColorActionName enum (feat: add RocketCleaner electron/apps#1205)
• 8360424 "Bump version to: v0.22.5 [skip ci]"
• 821ede1 Update contributors [skip ci]
• c38eea8 Update CHANGELOG.md [skip ci]
• a6c0882 Fix resizing issue with Jimp.AUTO (feat: Add PreMiD Application electron/apps#880) (add RocketCleaner electron/apps#1202)
• a626fb2 Update README.md (Add app electron/apps#1203)
• 81bddef "Bump version to: v0.22.4 [skip ci]"
• 398deef Update CHANGELOG.md [skip ci]
• 14e754f update tinycolor2 (add CyberX electron/apps#1187)
• cd8ef22 "Bump version to: v0.22.3 [skip ci]"
• 71d4a4d Update CHANGELOG.md [skip ci]
• 1a4f22e Fix browser build (*ignore* created a new repo electron/apps#1184)
• 4f906c0 "Bump version to: v0.22.2 [skip ci]"
• 5d8c317 Update contributors [skip ci]
• 9ade048 Update CHANGELOG.md [skip ci]
• fc9bebb Change type of mime from string to string|number to fix feat: Adding TriCo app electron/apps#990 (chore: Update Cloudtag icon and description electron/apps#1182)
• 21c3524 Remove mentioning of `favicons` (build: update sharp to get node 12 support electron/apps#1176)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs