Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dependency netmask to 2.0.1 [SECURITY] #555

Merged
merged 1 commit into from
Mar 31, 2021

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Mar 31, 2021

WhiteSource Renovate

This PR contains the following updates:

Package Change
netmask 1.0.6 -> 2.0.1

GitHub Vulnerability Alerts

CVE-2021-28918

netmask npm package is vulnerable to octal input data. This may lead to server-side request forgery, remote file inclusion, local file inclusion, and other vulnerabilities.

See the researcher report for an extensive write-up.


Renovate configuration

馃搮 Schedule: "" (UTC).

馃殾 Automerge: Enabled.

鈾伙笍 Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

馃敃 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by WhiteSource Renovate. View repository job log here.

@sonarcloud
Copy link

sonarcloud bot commented Mar 31, 2021

Kudos, SonarCloud Quality Gate passed!

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@renovate renovate bot merged commit 130defe into master Mar 31, 2021
@renovate renovate bot deleted the renovate/npm-netmask-vulnerability branch March 31, 2021 22:34
@coveralls
Copy link

Pull Request Test Coverage Report for Build 3878

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 90.306%

Totals Coverage Status
Change from base Build 3874: 0.0%
Covered Lines: 2254
Relevant Lines: 2456

馃挍 - Coveralls

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

2 participants