Resolve critical security issues caused by out of date packages #1994

benjaminbi · 2023-07-14T06:38:11Z

Bumps xml2js to 0.5.0 and updates ancestor dependencies xml2js, @vscode/vsce and vscode-nls-dev. These dependencies need to be updated together.

Updates xml2js from 0.4.23 to 0.5.0

Updates @vscode/vsce from 2.16.0 to 2.19.0

Updates vscode-nls-dev from 4.0.0 to 4.0.4

updated-dependencies:

Signed-off-by: dependabot[bot] support@github.com
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [xml2js](https://github.com/Leonidas-from-XIV/node-xml2js) to 0.5.0 and updates ancestor dependencies [xml2js](https://github.com/Leonidas-from-XIV/node-xml2js), [@vscode/vsce](https://github.com/Microsoft/vsce) and [vscode-nls-dev](https://github.com/Microsoft/vscode-nls-dev). These dependencies need to be updated together. Updates `xml2js` from 0.4.23 to 0.5.0 - [Commits](https://github.com/Leonidas-from-XIV/node-xml2js/commits/0.5.0) Updates `@vscode/vsce` from 2.16.0 to 2.19.0 - [Release notes](https://github.com/Microsoft/vsce/releases) - [Commits](microsoft/vscode-vsce@v2.16.0...v2.19.0) Updates `vscode-nls-dev` from 4.0.0 to 4.0.4 - [Commits](https://github.com/Microsoft/vscode-nls-dev/commits) --- updated-dependencies: - dependency-name: xml2js dependency-type: indirect - dependency-name: "@vscode/vsce" dependency-type: direct:development - dependency-name: vscode-nls-dev dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

benjaminbi and others added 2 commits July 14, 2023 14:36

Merge branch 'master' into benjaminbi/issue1960

d85fdb7

benjaminbi self-assigned this Jul 17, 2023

benjaminbi marked this pull request as ready for review July 17, 2023 07:15

EzioLi01 approved these changes Jul 17, 2023

View reviewed changes

benjaminbi merged commit 6cd5c67 into master Jul 18, 2023
9 checks passed

benjaminbi deleted the benjaminbi/issue1960 branch July 18, 2023 10:23

benjaminbi restored the benjaminbi/issue1960 branch July 19, 2023 05:28

benjaminbi deleted the benjaminbi/issue1960 branch July 19, 2023 05:32

Provide feedback