Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency @angular/cli to v12 - autoclosed #214

Closed
wants to merge 1 commit into from
Closed

Update dependency @angular/cli to v12 - autoclosed #214

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link
Contributor

@mend-for-github-com mend-for-github-com bot commented Jan 18, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
@angular/cli devDependencies major ~1.7.3 -> ~12.0.0

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
Critical 9.8 CVE-2020-7774 #85

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
Critical 9.8 CVE-2018-3774 #4
Critical 9.8 CVE-2019-10746 #17
Critical 9.8 CVE-2019-10747 #16
Critical 9.8 CVE-2019-10747 #16
Critical 9.8 CVE-2019-15599 #7
Critical 9.8 CVE-2020-7774 #85
Critical 9.8 CVE-2021-23440 #171
Critical 9.8 CVE-2021-23440 #171
Critical 9.8 CVE-2021-23807 #11
Critical 9.8 CVE-2022-0691 #195
Critical 9.8 CVE-2022-0691 #195
Critical 9.8 CVE-2022-29078 #159
Critical 9.8 CVE-2022-37601 #179
Critical 9.8 CVE-2022-37601 #179
Critical 9.8 CVE-2023-26136 #208
Critical 9.8 CVE-2023-42282 #216
Critical 9.8 WS-2020-0344 #34
Critical 9.8 WS-2021-0153 #53
Critical 9.3 CVE-2022-1650 #164
Critical 9.1 CVE-2019-10744 #14
Critical 9.1 CVE-2019-10744 #14
Critical 9.1 CVE-2022-0686 #141
Critical 9.1 CVE-2022-0686 #141
High 8.8 CVE-2022-46175 #193
High 8.2 WS-2020-0345 #31
High 8.1 CVE-2018-11693 #27
High 8.1 CVE-2020-7660 #87
High 7.8 CVE-2021-43138 #155
High 7.5 CVE-2018-14732 #38
High 7.5 CVE-2019-20149 #8
High 7.5 CVE-2020-28469 #46
High 7.5 CVE-2020-7662 #95
High 7.5 CVE-2021-23343 #94
High 7.5 CVE-2021-23382 #35
High 7.5 CVE-2021-23424 #41
High 7.5 CVE-2021-27290 #15
High 7.5 CVE-2021-33623 #49
High 7.5 CVE-2021-3803 #60
High 7.5 CVE-2021-3807 #64
High 7.5 CVE-2022-21222 #176
High 7.5 CVE-2022-24771 #153
High 7.5 CVE-2022-24772 #152
High 7.5 CVE-2022-24999 #187
High 7.5 CVE-2022-24999 #187
High 7.5 CVE-2022-25758 #172
High 7.5 CVE-2022-25883 #207
High 7.5 CVE-2022-37603 #191
High 7.5 CVE-2022-38900 #188
High 7.5 WS-2020-0042 #78
High 7.5 WS-2020-0342 #33
High 7.4 CVE-2020-8203 #57
High 7.4 CVE-2024-29180 #222
High 7.4 WS-2018-0588 #99
High 7.4 WS-2018-0588 #99
High 7.3 CVE-2018-11499 #83
High 7.3 CVE-2020-7720 #121
High 7.3 WS-2019-0180 #66
High 7.2 CVE-2021-23337 #88

Release Notes

angular/angular-cli (@​angular/cli)

v12.0.0

Compare Source

v11.2.19

Compare Source

@​angular-devkit/architect-cli
Commit Type Description
75caa1143 fix update minimist to 1.2.6
@​angular-devkit/schematics-cli
Commit Type Description
80d479e9f fix update minimist to 1.2.6
@​angular-devkit/benchmark
Commit Type Description
f61cd1a79 fix update minimist to 1.2.6

Special Thanks

Alan Agius and Doug Parker

v11.2.18

Compare Source

@​angular-devkit/build-angular
Commit Type Description
534678450 fix updated webpack-dev-server to latest security patch

Special Thanks

Doug Parker and iRealNirmal

v11.2.17

Compare Source

@​angular/cli
Commit Type Description
1efff8f82 fix exclude deprecated packages with removal migration from update

Special Thanks

Alan Agius and Doug Parker

v11.2.16

Compare Source

@​angular/cli
Commit Type Description
f456b0962 fix error when updating Angular packages across multi-major migrations
886d2511e fix logic which determines which temp version of the CLI is to be download during ng update
776d1210a fix update ng update output for Angular packages

Special Thanks

Alan Agius and Doug Parker

v11.2.15

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.15)

Commit Description Notes
update `critters` to version `0.0.12` [Closes #​20794]

Special Thanks

Joey Perrott, Alan Agius

v11.2.14

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.14)

Commit Description Notes
update to postcss 8.2.15 [Closes #​20888]

Special Thanks

Alan Agius, Doug Parker, Charles Lyding

v11.2.13

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.13)

Commit Description Notes
update cssnano/postcss to fix optimization defects [Closes #​20673]
update dependency resolve-url-loader to v4 [Closes #​20733]

@​schematics/angular (11.2.13)

Commit Description Notes
pin `karma-jasmine-html-reporter` to patches in new projects [Closes #​20719]

Special Thanks

Alan Agius, Charles Lyding, Keen Yee Liau

v11.2.12

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.12)

Commit Description Notes
disable CSS declaration sorting optimizations [Closes #​20693]

Special Thanks

Keen Yee Liau, Alan Agius, Doug Parker

v11.2.11

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.11)

Commit Description Notes
output webpack-dev-server and webpack-dev-middleware errors
update CSSNano and PostCSS to fix serveral security issues [Closes #​20606]

@​schematics/angular (11.2.11)

Commit Description Notes
avoid unuse imports for canLoad guard generation

@​angular-devkit/schematics-cli (0.1102.11)

Commit Description Notes
accept windows like paths for schematics

Special Thanks

Joey Perrott, Charles Lyding, Alan Agius, Doug Parker, Billy Lando, mzocateli

v11.2.10

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.10)

Commit Description Notes
set Tailwind CSS mode when using Tailwind

@​ngtools/webpack (11.2.10)

Commit Description Notes
only check affected files for Angular semantic diagnostics

Special Thanks

Charles Lyding, Joey Perrott, Alan Agius, Keen Yee Liau

v11.2.9

Compare Source

No user-facing changes

v11.2.8

Compare Source

Commits

Special Thanks

Doug Parker, Renovate Bot, Alan Agius, Joey Perrott

v11.2.7

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.8)

Commit Description Notes
validate scripts and styles bundleName [Closes #​20360]

@​schematics/angular (11.2.8)

Commit Description Notes
correctly handle adding multi-line strings to `@NgModule` metadata
explicitly specify ServiceWorker registration strategy

Special Thanks

George Kalpakas, Joey Perrott, Charles Lyding, Alan Agius, Keen Yee Liau

v11.2.6

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.6)

Commit Description Notes
ensure output directory is present before writing stats JSON

@​ngtools/webpack (11.2.6)

Commit Description Notes
reduce resource processing during JIT initial lazy route analysis

@​schematics/angular (11.2.6)

Commit Description Notes
use title for svg on home page

Special Thanks

Alan Agius, Charles Lyding, Keen Yee Liau, Cédric Exbrayat

v11.2.5

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.5)

Commit Description Notes
support writing large Webpack stat outputs
don't load an input sourcemap from file when using Babel
display correct filename for bundles that are ES2016+
enforce Babel not to load sourcemaps from file
remove Webpack Stats.toJson usage in karma plugin
remove Webpack Stats.toJson usage in analytics plugin
skip FESM2015 from `async` transformation

@​angular/cli (11.2.5)

Commit Description Notes
remove `project` from required properties in ng-packagr schema

@​ngtools/webpack (11.2.5)

Commit Description Notes
remove saving Angular compiler in JIT watch mode
use precalculated dependencies in unused file check
avoid adding transitive dependencies to Webpack's dependency graph
avoid full compiler lazy route analysis on JIT rebuilds

@​schematics/angular (11.2.5)

Commit Description Notes
remove Native value from viewEncapsulation option
fix youtube icon margin

Special Thanks

Charles Lyding, Alan Agius, Doug Parker, Mouad Ennaciri, Omar Hasan

v11.2.4

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.4)

Commit Description Notes
only remove nomodule and defer attributes empty values [Closes #​20207]

@​angular/cli (11.2.4)

Commit Description Notes
add ng-packagr builder schema in IDE schema

Special Thanks

Alan Agius, Joey Perrott

v11.2.3

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.3)

Commit Description Notes
inline critical font-face rules when using crittical css inlining

@​schematics/angular (11.2.3)

Commit Description Notes
update ng new links

Special Thanks

Charles Lyding, Keen Yee Liau, Alan Agius, Joey Perrott, twerske

v11.2.2

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.2)

Commit Description Notes
only show index and service worker status once
disable declaration and declarationMap [Closes #​20103]
force less version 3.5 math behaviour [Closes #​20088]

@​angular/cli (11.2.2)

Commit Description Notes
remove npm 7 incompatibility notification

@​ngtools/webpack (11.2.2)

Commit Description Notes
normalize paths when pruning AOT rebuild requests

Special Thanks

Charles Lyding, Alan Agius, Doug Parker, Jefiozie

v11.2.1

Compare Source

@​angular-devkit/architect-cli
Commit Type Description
75caa1143 fix update minimist to 1.2.6
@​angular-devkit/schematics-cli
Commit Type Description
80d479e9f fix update minimist to 1.2.6
@​angular-devkit/benchmark
Commit Type Description
f61cd1a79 fix update minimist to 1.2.6

Special Thanks

Alan Agius and Doug Parker

v11.2.0

Compare Source

Commits

@​angular-devkit/build-angular (0.1102.0)

Commit Description Notes
detect and use tailwindcss in projects
support targeting ES2017 with Zone.js
support karma version 6.x
ensure i18n extraction sourcemaps are fully configured
the root Tailwind configuration file is always picked
fixed ignoring of karma plugins config [Closes #​19993]
increase resilience of babel cache identifier
update Angular peer dependencies to 11.2 prerelease
resolve less from build-angular package
add service-worker as optional peer dependency

@​angular-devkit/core (11.2.0)

Commit Description Notes
provide prompt validation errors to provider

@​angular/cli (11.2.0)

Commit Description Notes
provide additional status messaging for ng add [Closes #​17983]
update NPM 7 guidance
only show incompatible NPM error when NPM is used as package manager
temporarily limit npm to version 6
redirect Angular schematic dependency requests to known versions
avoid using number inquirer prompt in schematic prompts

@​ngtools/webpack (11.2.0)

Commit Description Notes
reduce overhead of Angular compiler rebuild requests
update Angular peer dependencies to 11.2 prerelease
don't use `skipTemplateCodegen` to determine if compilation is JIT mode [Closes #​19949]

@​schematics/angular (11.2.0)

Commit Description Notes
create new projects with karma 6.0

Special Thanks

Renovate Bot, Charles Lyding, Alan Agius, Doug Parker, Keen Yee Liau, Bruno Baia, Amadou Sall, S. Iftekhar Hossain

v11.1.4

Compare Source

Commits

@​angular/cli (11.1.4)

Commit Description Notes
only show incompatible NPM error when NPM is used as package manager

Special Thanks

Charles Lyding, Keen Yee Liau, Alan Agius

v11.1.3

Compare Source

Commits

@​angular-devkit/build-angular (0.1101.3)

Commit Description Notes
remove `0.0.0` version from supported Angular semver versions error message
update Angular peer dependencies to 11 stable
error with status code when response code is not 200
handle promise rejection in IndexHtmlWebpackPlugin [Closes #​19893]
add fallback for non defined stats options
fix budgets for any script with differential loading enabled [Closes #​19849]
allow emitting multiple files with the same filename [Closes #​12186]
styles that are not injected do count for initial bundle size [Closes #​1

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Jan 18, 2024
@mend-for-github-com mend-for-github-com bot changed the title Update dependency @angular/cli to v12 Update dependency @angular/cli to v12 - autoclosed Apr 14, 2024
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/angular-cli-12.x branch April 14, 2024 07:01
@mend-for-github-com mend-for-github-com bot changed the title Update dependency @angular/cli to v12 - autoclosed Update dependency @angular/cli to v12 Apr 19, 2024
@mend-for-github-com mend-for-github-com bot reopened this Apr 19, 2024
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/angular-cli-12.x branch April 19, 2024 14:30
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/angular-cli-12.x branch from f6285c7 to 5b88faf Compare April 19, 2024 14:31
@mend-for-github-com mend-for-github-com bot changed the title Update dependency @angular/cli to v12 Update dependency @angular/cli to v12 - autoclosed Sep 8, 2024
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/angular-cli-12.x branch September 8, 2024 15:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants