Update module github.com/vektah/gqlparser/v2 to v2.5.14 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/vektah/gqlparser/v2	v2.5.10 -> v2.5.14

GitHub Vulnerability Alerts

CVE-2023-49559

An issue in vektah gqlparser open-source-library v.2.5.10 allows a remote attacker to cause a denial of service via a crafted script to the parserDirectives function.

---

Release Notes

vektah/gqlparser (github.com/vektah/gqlparser/v2)

v2.5.14

Compare Source

What's Changed

• Add ParseQueryWithLimit by @​StevenACoffman in https://github.com/vektah/gqlparser/pull/304

Full Changelog: vektah/gqlparser@v2.5.13...v2.5.14

v2.5.13

Compare Source

What's Changed

• Bump the actions-deps group in /validator/imported with 6 updates by @​dependabot in https://github.com/vektah/gqlparser/pull/298
• Bump prettier from 3.2.5 to 3.3.0 in /validator/imported in the actions-deps group by @​dependabot in https://github.com/vektah/gqlparser/pull/299
• Bump the actions-deps group in /validator/imported with 7 updates by @​dependabot in https://github.com/vektah/gqlparser/pull/301
• Bump braces from 3.0.2 to 3.0.3 in /validator/imported by @​dependabot in https://github.com/vektah/gqlparser/pull/302
• Token limit fix CVE-2023-49559 by @​uvzz in https://github.com/vektah/gqlparser/pull/291

New Contributors

• @​uvzz made their first contribution in https://github.com/vektah/gqlparser/pull/291

Full Changelog: vektah/gqlparser@v2.5.12...v2.5.13

v2.5.12

Compare Source

What's Changed

• Disallow empty parens (#​292). by @​yuchenshi in https://github.com/vektah/gqlparser/pull/293
• WithBuiltin FormatterOption added by @​atzedus in https://github.com/vektah/gqlparser/pull/294
• Redo github actions by @​StevenACoffman in https://github.com/vektah/gqlparser/pull/295
• Bump github.com/stretchr/testify from 1.4.0 to 1.9.0 in the actions-deps group by @​dependabot in https://github.com/vektah/gqlparser/pull/296
• Bump the actions-deps group in /validator/imported with 8 updates by @​dependabot in https://github.com/vektah/gqlparser/pull/297

New Contributors

• @​yuchenshi made their first contribution in https://github.com/vektah/gqlparser/pull/293

Full Changelog: vektah/gqlparser@v2.5.11...v2.5.12

v2.5.11

Compare Source

What's Changed

• Bump get-func-name from 2.0.0 to 2.0.2 in /validator/imported by @​dependabot in https://github.com/vektah/gqlparser/pull/284
• Bump @​babel/traverse from 7.22.6 to 7.23.2 in /validator/imported by @​dependabot in https://github.com/vektah/gqlparser/pull/285
• Fix description formatting (possible " character) by @​blmhemu in https://github.com/vektah/gqlparser/pull/289
• gqlerror: implement List.Unwrap by @​emersion in https://github.com/vektah/gqlparser/pull/290

New Contributors

• @​blmhemu made their first contribution in https://github.com/vektah/gqlparser/pull/289
• @​emersion made their first contribution in https://github.com/vektah/gqlparser/pull/290

Full Changelog: vektah/gqlparser@v2.5.10...v2.5.11

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 2 additional dependencies were updated

Details:

Package	Change
github.com/stretchr/testify	v1.8.4 -> v1.9.0
github.com/stretchr/objx	v0.5.0 -> v0.5.2

[github-actions]

GraphQL Schema Check

Compared 0 schema changes against null operations

✅ Found no changes

🔗 View full schema check details