-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): [security] bump node-fetch from 2.6.0 to 2.6.1 #319
Open
dependabot-preview
wants to merge
1
commit into
master
Choose a base branch
from
dependabot/npm_and_yarn/node-fetch-2.6.1
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
chore(deps): [security] bump node-fetch from 2.6.0 to 2.6.1 #319
dependabot-preview
wants to merge
1
commit into
master
from
dependabot/npm_and_yarn/node-fetch-2.6.1
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependabot-preview
bot
added
dependencies
Pull requests that update a dependency file
security
Pull requests that address a security vulnerability
labels
Sep 11, 2020
Pull Request Test Coverage Report for Build 1979
💛 - Coveralls |
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
6 times, most recently
from
September 17, 2020 17:12
cebeb2a
to
44c6d69
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
3 times, most recently
from
September 22, 2020 17:01
f33a072
to
7cdf26e
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
2 times, most recently
from
September 25, 2020 18:49
2455024
to
6198915
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
4 times, most recently
from
October 13, 2020 17:01
736ea30
to
768a08d
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
4 times, most recently
from
October 22, 2020 06:16
71ec855
to
822d606
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
3 times, most recently
from
October 30, 2020 20:38
f58bb23
to
aa36da0
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
from
November 10, 2020 18:01
aa36da0
to
397b581
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
4 times, most recently
from
November 20, 2020 18:01
910f754
to
931c83f
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
4 times, most recently
from
November 26, 2020 18:01
356fab7
to
afbc0fb
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
4 times, most recently
from
December 3, 2020 18:07
91cffae
to
325fc49
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
7 times, most recently
from
December 14, 2020 18:01
67945f2
to
715ce44
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
from
December 16, 2020 18:01
715ce44
to
53263e6
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
3 times, most recently
from
December 31, 2020 18:01
dc11cb5
to
5d51ca8
Compare
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
2 times, most recently
from
January 5, 2021 18:01
3a54be0
to
e2c33c5
Compare
Bumps [node-fetch](https://github.com/bitinn/node-fetch) from 2.6.0 to 2.6.1. **This update includes a security fix.** - [Release notes](https://github.com/bitinn/node-fetch/releases) - [Changelog](https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md) - [Commits](node-fetch/node-fetch@v2.6.0...v2.6.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
dependabot-preview
bot
force-pushed
the
dependabot/npm_and_yarn/node-fetch-2.6.1
branch
from
January 7, 2021 18:01
e2c33c5
to
150bac3
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
security
Pull requests that address a security vulnerability
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps node-fetch from 2.6.0 to 2.6.1. This update includes a security fix.
Vulnerabilities fixed
Sourced from The GitHub Security Advisory Database.
Release notes
Sourced from node-fetch's releases.
Changelog
Sourced from node-fetch's changelog.
Commits
b5e2e41
update version number2358a6c
Honor thesize
option after following a redirect and revert data uri support8c197f8
docs: Fix typos and grammatical errors in README.md (#686)1e99050
fix: Change error message thrown with redirect mode set to error (#653)244e6f6
docs: Show backers in README6a5d192
fix: Properly parse meta tag when parameters are reversed (#682)47a24a0
chore: Add opencollective badge7b13662
chore: Add funding link5535c2e
fix: Check for global.fetch before binding it (#674)1d5778a
docs: Add Discord badgeMaintainer changes
This version was pushed to npm by akepinski, a new releaser for node-fetch since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot will not automatically merge this PR because it includes a security patch update to a production dependency.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot badge me
will comment on this PR with code to add a "Dependabot enabled" badge to your readmeAdditionally, you can set the following in the
.dependabot/config.yml
file in this repo: