chore(deps): update dependency postcss to v8.2.13 [security] - autoclosed

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
postcss (source)	8.2.6 -> 8.2.13

GitHub Vulnerability Alerts

CVE-2021-23368

The npm package postcss from 7.0.0 and before versions 7.0.36 and 8.2.10 is vulnerable to Regular Expression Denial of Service (ReDoS) during source map parsing.

CVE-2021-23382

The package postcss versions before 7.0.36 or between 8.0.0 and 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused mainly by the sub-pattern /*\s* sourceMappingURL=(.*).

---

Release Notes

postcss/postcss

v8.2.13

Compare Source

• Fixed ReDoS vulnerabilities in source map parsing (by Yeting Li).

v8.2.12

Compare Source

• Fixed package.json exports.

v8.2.11

Compare Source

• Fixed DEP0148 warning in Node.js 16.
• Fixed docs (by @​semiromid).

v8.2.10

Compare Source

• Fixed ReDoS vulnerabilities in source map parsing.
• Fixed webpack 5 support (by Barak Igal).
• Fixed docs (by Roeland Moors).

v8.2.9

Compare Source

• Exported NodeErrorOptions type (by Rouven Weßling).

v8.2.8

Compare Source

• Fixed browser builds in webpack 4 (by Matt Jones).

v8.2.7

Compare Source

• Fixed browser builds in webpack 5 (by Matt Jones).

---

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled due to failing status checks.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.