[Snyk] Upgrade p-queue from 3.0.0 to 8.0.1

[baby636]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade p-queue from 3.0.0 to 8.0.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 29 versions ahead of your current version.

• The recommended version was released 5 months ago, on 2023-12-14.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-LODASH-608086	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-6139239	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Command Injection SNYK-JS-LODASHTEMPLATE-1088054	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Internal Property Tampering SNYK-JS-BSON-6056525	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Prototype Pollution SNYK-JS-AJV-584908	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Remote Memory Exposure SNYK-JS-BL-608877	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Internal Property Tampering SNYK-JS-BSON-561052	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-URLREGEX-569472	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Arbitrary Code Execution SNYK-JS-ESLINTUTILS-460220	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Information Exposure SNYK-JS-SIMPLEGET-2361683	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Denial of Service (DoS) SNYK-JS-MONGODB-473855	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Prototype Pollution SNYK-JS-INI-1048974	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Arbitrary Code Execution SNYK-JS-JSYAML-174129	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Command Injection SNYK-JS-LODASH-1040724	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-DOTPROP-543489	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Timing Attack SNYK-JS-ELLIPTIC-511941	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-YARGSPARSER-560381	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Uninitialized Memory Exposure npm:tunnel-agent:20170305	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JSYAML-173999	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:braces:20180219	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: p-queue

• 8.0.1 - 2023-12-14
  
  • Fix TypeScript types for when tsconfig exactOptionalPropertyTypes is enabled (#202) ec4e2a3

  v8.0.0...v8.0.1

• 8.0.0 - 2023-12-07
  

  Breaking

  • Require Node.js 18 68dfe95
  • Removed the AbortError export. It now throws the built-in DOMException when using the signal option. 68dfe95
  • TypeScript: Rename DefaultAddOptions type to QueueAddOptions

  v7.4.1...v8.0.0

• 7.4.1 - 2023-09-02
  
  • Fix problem with importing into TypeScript project 9f7ad20

  v7.4.0...v7.4.1

• 7.4.0 - 2023-08-30
  
  • Update dependencies f216e33

  v7.3.4...v7.4.0

• 7.3.4 - 2023-02-07
  
  • Fix typings 84b32d5

  v7.3.3...v7.3.4

• 7.3.3 - 2023-02-05
  
  • Fix publishing 08fff4a

  v7.3.2...v7.3.3

• 7.3.2 - 2023-02-05
  
  • Fix broken package 967e4bd

  v7.3.1...v7.3.2

• 7.3.1 - 2023-02-05
  
  • Fix .add() and .addAll() 8184655

  v7.3.0...v7.3.1

• 7.3.0 - 2022-07-29
  
  • Add empty event 5362aa7

  v7.2.0...v7.3.0

• 7.2.0 - 2022-02-01
  
  • Support AbortController (#161) 394153f

  v7.1.0...v7.2.0

• 7.1.0 - 2021-04-07
• 7.0.0 - 2021-03-31
• 6.6.2 - 2020-10-11
• 6.6.1 - 2020-08-16
• 6.6.0 - 2020-07-19
• 6.5.0 - 2020-07-01
• 6.4.0 - 2020-05-03
• 6.3.0 - 2020-02-17
• 6.2.1 - 2019-11-10
• 6.2.0 - 2019-10-12
• 6.1.1 - 2019-08-12
• 6.1.0 - 2019-07-11
• 6.0.2 - 2019-06-07
• 6.0.1 - 2019-06-05
• 6.0.0 - 2019-06-05
• 5.0.0 - 2019-04-06
• 4.0.0 - 2019-03-08
• 3.2.0 - 2019-03-02
• 3.1.0 - 2019-02-21
• 3.0.0 - 2018-08-29

from p-queue GitHub release notes

Commit messages

Package name: p-queue

• 47a4f19 8.0.1
• ec4e2a3 Fix TypeScript types for when tsconfig `exactOptionalPropertyTypes` is enabled (#202)
• e2f5790 Fix CI
• 825ba90 8.0.0
• 68dfe95 Require Node.js 18
• ce0c364 7.4.1
• 9f7ad20 Fix problem with importing into TypeScript project
• f877e20 Readme tweaks
• 4e4f8b3 7.4.0
• f216e33 Update dependencies
• c12ec2e 7.3.4
• 84b32d5 Fix typings
• 2c860a3 7.3.3
• 08fff4a Fix publishing
• 91c8770 7.3.2
• 967e4bd Ensure package is built when publishing
• a58c7dd 7.3.1
• b8166f1 Meta tweak
• 8184655 Fix `.add()` and `.addAll()`
• c905aaf 7.3.0
• 5362aa7 Add `empty` event
• 345e553 Document maintenance commitment for v6
• 28a20ab Readme note
• e997308 7.2.0

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.