⬆️ Updates remark-cli to v12 - autoclosed #649
Conversation
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
|
Hey! Changelogs info seems to be missing or might be in incorrect format. |
|
Pull request by bot. No need to analyze |
|
Thanks for opening an issue! Make sure you've followed CONTRIBUTING.md. |
Hello from PR HelperIs your PR ready for review and processing? Mark the PR ready by including If you still have work to do, even after marking this ready. Put the PR on hold by including |
|
Thanks for the PR! This section of the codebase is owner by https://github.com/AlexRogalskiy/ - if they write a comment saying "LGTM" then it will be merged. |
renovate
bot
force-pushed
the
renovate/major-remark-monorepo
branch
from
1f83333
to
f936786
Compare
renovate
bot
changed the title
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/major-remark-monorepo
branch
from
f936786
to
94af855
Compare
|
Updated dependencies detected. Learn more about Socket for GitHub ↗︎
|
|
🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎ To accept the risk, merge this PR and you will not be notified again.
Next stepsWhat is bin script shell injection?This package re-exports a well known shell command via an npm bin script. This is possibly a supply chain attack Packages should not export bin scripts which conflict with well known shell commands Take a deeper look at the dependencyTake a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev. Remove the packageIf you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency. Mark a package as acceptable riskTo ignore an alert, reply with a comment starting with
|
renovate
bot
changed the title
This PR contains the following updates:
^9.0.0->^12.0.0Release Notes
remarkjs/remark (remark-cli)
v12.0.0Compare Source
(see
15.0.0)v11.0.0Compare Source
(see
15.0.0)v10.0.1Compare Source
See
remark@14.0.2v10.0.0Compare Source
Changelog
1b89df5Updateremark-parse,remark-stringifyaab3c3eRework list fields3325c33Add support forlabelto associations31ef684Add support formetain codec77d24fUpdateunifiedSee also
remark-cli@6.0.0remark-parse@6.0.0remark-stringify@6.0.0Project
4f6b3d7Update logoe7f509fImprove npm search ranking of individual packages7d98e30Fixgit.iolinksce62e7aRefactor code-stylePlugins
4c0e28aAddremark-macroto list of pluginsa4caa67Addremark-git-contributorsto list of pluginsfe241aaAddremark-outer-tocto list of plugins4fa8b1dReplace deprecated plugin withremark-beheadin list of plugins52ffdffAddremark-redactto list of plugins02297a5Addremark-attrto list of pluginsConfiguration
📅 Schedule: Branch creation - "after 10pm every weekday,before 5am every weekday,every weekend" in timezone Europe/Moscow, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.