[Snyk] Upgrade markdownlint-cli from 0.23.1 to 0.27.1

[snyk-bot]

Snyk has created this PR to upgrade markdownlint-cli from 0.23.1 to 0.27.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 6 versions ahead of your current version.
• The recommended version was released 4 months ago, on 2021-03-02.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-608086	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-590103	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit
	Command Injection SNYK-JS-LODASH-1040724	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit
	Denial of Service SNYK-JS-NODEFETCH-674311	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-567746	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	446/1000 Why? Recently disclosed, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CSSWHAT-1298035	446/1000 Why? Recently disclosed, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: markdownlint-cli

• 0.27.1 - 2021-03-02
  
  • Fix bug introduced during commander upgrade that caused -c/--config not to be honored for non-JSON files
• 0.27.0 - 2021-03-02
  
  • Update markdownlint dependency to 0.23.1
    • Add comprehensive example .markdownlint.jsonc/.markdownlint.yaml files
    • Add fix information for MD004/ul-style
    • Improve MD018/MD019/MD020/MD021/MD037/MD041
    • Improve HTML comment handling
  • Add --dot option to include "dotfiles" by default
  • Update all dependencies via Dependabot
• 0.26.0 - 2020-12-16
  
  • Update markdownlint dependency to 0.22.0
    • Allow extends in config to reference installed packages by name
    • Add markdownlint-disable-next-line inline comment
    • Support JSON front matter
    • Improve MD009/MD026/MD028/MD043
    • Update dependencies (including markdown-it to v12).
  • Update all dependencies via Dependabot
• 0.25.0 - 2020-11-17
  
  • Update markdownlint dependency to 0.21.1
    • Improve MD011/MD031
  • Update all dependencies via Dependabot
• 0.24.0 - 2020-10-02
  
  • Update markdownlint dependency to 0.21.0
    • Improve MD042/MD044
• 0.23.2 - 2020-06-30
  
  • Update markdownlint dependency to 0.20.4
• 0.23.1 - 2020-05-17
  
  • Update markdownlint dependency to 0.20.3

from markdownlint-cli GitHub release notes

Commit messages

Package name: markdownlint-cli

• d6e4154 Bump version 0.27.1
• f2e4c4d Fix bug introduced during commander upgrade that caused -c/--config not to be honored for non-JSON files (fixes Update restart target to match OpenVPNv2.4 service pi-hole/docs#173).
• d0051f7 Bump version 0.27.0
• 0d80107 Add README links to complete JSON/YAML config files (fixes Docs refer to OpenVPN files which have moved in newer versions pi-hole/docs#158).
• 3d037c8 Address new linting issues.
• c350877 Set language_version to latest in .pre-commit-hooks.yaml to avoid using outdated/unsupported on-box Node versions (fixes Remove FamilyShield DNS pi-hole/docs#157).
• 6c69a19 Bump actions/setup-node from v2.1.4 to v2.1.5 (Add buster to supported releases pi-hole/docs#172)
• 26cb9a6 Bump xo from 0.38.1 to 0.38.2 (Update Nginx config with new method for FastCGI pi-hole/docs#170)
• 75b6075 Bump husky from 5.1.0 to 5.1.2 (Fix broken links pi-hole/docs#171)
• 37ac48e feat: add dot option to treat dots as normal characters (Bump pymdown-extensions from 6.0 to 6.1 pi-hole/docs#167)
• 780a947 Bump xo from 0.37.1 to 0.38.1 (Gravity 'Script Location' link broken pi-hole/docs#169)
• e6a7d36 Bump husky from 5.0.9 to 5.1.0 (Add ufw commands to the prerequesites page pi-hole/docs#168)
• f457fdd Update dependency: commander to 7.1.0.
• 49e00d9 Fix latent code analysis warnings.
• d330fa7 Update dependency: markdownlint to 0.23.1.
• 9b1e776 Bump husky from 4.3.8 to 5.0.9 (Fixed code highlighting on NGINX guide page pi-hole/docs#165)
• 1eb35d5 Bump markdownlint-rule-helpers from 0.13.0 to 0.14.0 (Bump mkdocs-material from 4.4.1 to 4.4.2 pi-hole/docs#164)
• 633dcb9 Bump husky from 4.3.7 to 4.3.8 (Add caveats and VPN warnings to unbound documentation. pi-hole/docs#161)
• f9ae83a Add example of use with pre-commit to README.md (fixes add docker run details pi-hole/docs#129).
• 8d8b6fe Add End of File Newline to program.output (Insert space to prevent inlining image. pi-hole/docs#155)
• 02384ea Bump husky from 4.3.6 to 4.3.7 (Bump pyyaml from 5.1.1 to 5.1.2 pi-hole/docs#156)
• 22e11d9 feat: Bump js-yaml to v4 (Add download location for CentOS/RHEL/Fedora pi-hole/docs#152)
• e70ea4b Bump xo from 0.36.1 to 0.37.1 (Gravity database documentation pi-hole/docs#150)
• 7db6181 Bump ava from 3.14.0 to 3.15.0 (update supported fedora versions pi-hole/docs#151)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs