Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency follow-redirects to 1.14.7 [SECURITY] #766

Merged
merged 1 commit into from
Jan 15, 2022
Merged

Update dependency follow-redirects to 1.14.7 [SECURITY] #766

merged 1 commit into from
Jan 15, 2022
+6 −6

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 13, 2022
edited
Loading

WhiteSource Renovate

This PR contains the following updates:

Package Change
follow-redirects 1.14.5 -> 1.14.7

GitHub Vulnerability Alerts

CVE-2022-0155

follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor

Configuration

📅 Schedule: "" in timezone Asia/Tokyo.

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by WhiteSource Renovate. View repository job log here.

@renovate renovate bot requested a review from tubone24 as a code owner January 13, 2022 22:40
@renovate renovate bot added the renovate label Jan 13, 2022
@github-actions
Copy link
Contributor

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

  • Unused dependencies

    • @popperjs/core
    • @sentry/react
    • babel-loader
    • babel-polyfill
    • classnames
    • flexboxgrid
    • gatsby-plugin-flexsearch
    • gatsby-plugin-lodash
    • gatsby-remark-embed-spotify
    • highlight.js
    • html-minifier
    • intersection-observer
    • md5
    • preact
    • preact-render-to-string
    • react-body-classname
    • react-dom
    • rimraf
    • sass
    • typescript
    • webpack

  • Unused devdependencies

    • @babel/core
    • babel-eslint
    • babel-plugin-transform-runtime
    • cross-env
    • css-loader
    • cypress
    • eslint
    • eslint-config-airbnb
    • eslint-import-resolver-webpack
    • eslint-plugin-import
    • eslint-plugin-jsx-a11y
    • eslint-plugin-react
    • gh-pages
    • husky
    • lint-staged
    • netlify-cli
    • netlify-lambda
    • prettier
    • sass-loader
    • start-server-and-test
    • stylelint
    • stylelint-config-recess-order
    • stylelint-config-recommended-scss
    • stylelint-config-standard
    • stylelint-scss

  • Missing

    • screen

      • /github/workspace/src/templates/blog-post.scss

    • i

      • /github/workspace/src/templates/blog-post.scss

    • colors

      • /github/workspace/src/styles/_hover.scss

    • @algolia/transporter

      • /github/workspace/src/components/SearchBox/index.tsx

    • @algolia/client-search

      • /github/workspace/src/components/SearchBox/index.tsx

    • %

      • /github/workspace/src/components/Navbar/NavItem/index.scss

    • fadeIn

      • /github/workspace/src/components/Layout/index.scss

    • qs

      • /github/workspace/scripts/benchmark.js

@github-actions
Copy link
Contributor

Deploy path: /home/runner/work/blog/blog/public
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...

Logs: https://app.netlify.com/sites/pensive-lamport-5822d2/deploys/61e0ab8cfc35a326e9ddc9ad
Website Draft URL: https://61e0ab8cfc35a326e9ddc9ad--pensive-lamport-5822d2.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

@renovate renovate bot force-pushed the renovate-npm-follow-redirects-vulnerability branch from ce7cfab to bbc35af Compare January 15, 2022 12:56
@github-actions
Copy link
Contributor

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

  • Unused dependencies

    • @popperjs/core
    • @sentry/react
    • babel-loader
    • babel-polyfill
    • classnames
    • flexboxgrid
    • gatsby-plugin-flexsearch
    • gatsby-plugin-lodash
    • gatsby-remark-embed-spotify
    • highlight.js
    • html-minifier
    • intersection-observer
    • md5
    • preact
    • preact-render-to-string
    • react-body-classname
    • react-dom
    • rimraf
    • sass
    • typescript
    • webpack

  • Unused devdependencies

    • @babel/core
    • babel-eslint
    • babel-plugin-transform-runtime
    • cross-env
    • css-loader
    • cypress
    • eslint
    • eslint-config-airbnb
    • eslint-import-resolver-webpack
    • eslint-plugin-import
    • eslint-plugin-jsx-a11y
    • eslint-plugin-react
    • gh-pages
    • husky
    • lint-staged
    • netlify-cli
    • netlify-lambda
    • prettier
    • sass-loader
    • start-server-and-test
    • stylelint
    • stylelint-config-recess-order
    • stylelint-config-recommended-scss
    • stylelint-config-standard
    • stylelint-scss

  • Missing

    • screen

      • /github/workspace/src/templates/blog-post.scss

    • i

      • /github/workspace/src/templates/blog-post.scss

    • colors

      • /github/workspace/src/styles/_hover.scss

    • @algolia/transporter

      • /github/workspace/src/components/SearchBox/index.tsx

    • @algolia/client-search

      • /github/workspace/src/components/SearchBox/index.tsx

    • %

      • /github/workspace/src/components/Navbar/NavItem/index.scss

    • fadeIn

      • /github/workspace/src/components/Layout/index.scss

    • qs

      • /github/workspace/scripts/benchmark.js

@github-actions
Copy link
Contributor

Deploy path: /home/runner/work/blog/blog/public
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...

Logs: https://app.netlify.com/sites/pensive-lamport-5822d2/deploys/61e2c5d48189e74f360cc690
Website Draft URL: https://61e2c5d48189e74f360cc690--pensive-lamport-5822d2.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

@renovate renovate bot force-pushed the renovate-npm-follow-redirects-vulnerability branch from bbc35af to c0da10a Compare January 15, 2022 14:19
@github-actions
Copy link
Contributor

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

  • Unused dependencies

    • @popperjs/core
    • @sentry/react
    • babel-loader
    • babel-polyfill
    • classnames
    • flexboxgrid
    • gatsby-plugin-flexsearch
    • gatsby-plugin-lodash
    • gatsby-remark-embed-spotify
    • highlight.js
    • html-minifier
    • intersection-observer
    • md5
    • preact
    • preact-render-to-string
    • react-body-classname
    • react-dom
    • rimraf
    • sass
    • typescript
    • webpack

  • Unused devdependencies

    • @babel/core
    • babel-eslint
    • babel-plugin-transform-runtime
    • cross-env
    • css-loader
    • cypress
    • eslint
    • eslint-config-airbnb
    • eslint-import-resolver-webpack
    • eslint-plugin-import
    • eslint-plugin-jsx-a11y
    • eslint-plugin-react
    • gh-pages
    • husky
    • lint-staged
    • netlify-cli
    • netlify-lambda
    • prettier
    • sass-loader
    • start-server-and-test
    • stylelint
    • stylelint-config-recess-order
    • stylelint-config-recommended-scss
    • stylelint-config-standard
    • stylelint-scss

  • Missing

    • screen

      • /github/workspace/src/templates/blog-post.scss

    • i

      • /github/workspace/src/templates/blog-post.scss

    • colors

      • /github/workspace/src/styles/_hover.scss

    • @algolia/transporter

      • /github/workspace/src/components/SearchBox/index.tsx

    • @algolia/client-search

      • /github/workspace/src/components/SearchBox/index.tsx

    • %

      • /github/workspace/src/components/Navbar/NavItem/index.scss

    • fadeIn

      • /github/workspace/src/components/Layout/index.scss

    • qs

      • /github/workspace/scripts/benchmark.js

@github-actions
Copy link
Contributor

Deploy path: /home/runner/work/blog/blog/public
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...

Logs: https://app.netlify.com/sites/pensive-lamport-5822d2/deploys/61e2d9086a840e456c7e77db
Website Draft URL: https://61e2d9086a840e456c7e77db--pensive-lamport-5822d2.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

@tubone24 tubone24 merged commit bcb8881 into master Jan 15, 2022
@tubone24 tubone24 deleted the renovate-npm-follow-redirects-vulnerability branch January 15, 2022 14:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tubone24 tubone24 tubone24 approved these changes

Assignees
No one assigned
Labels
renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tubone24 @renovate-bot