Skip to content

chore(deps): update dependency minimist to 1.2.6 [security]#766

Merged
zobo merged 1 commit intonextfrom
renovate/npm-minimist-vulnerability
Apr 10, 2022
Merged

chore(deps): update dependency minimist to 1.2.6 [security]#766
zobo merged 1 commit intonextfrom
renovate/npm-minimist-vulnerability

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Mar 23, 2022

WhiteSource Renovate

This PR contains the following updates:

Package Change
minimist 0.0.8 -> 1.2.6

GitHub Vulnerability Alerts

CVE-2021-44906

Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).

Configuration

📅 Schedule: "" in timezone Europe/Berlin.

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by WhiteSource Renovate. View repository job log here.

@codecov
Copy link
Copy Markdown

codecov Bot commented Mar 23, 2022
edited
Loading

Codecov Report

Merging #766 (2824a92) into next (84d7444) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             next     #766   +/-   ##
=======================================
  Coverage   70.84%   70.84%           
=======================================
  Files           9        9           
  Lines        1595     1595           
  Branches      304      304           
=======================================
  Hits         1130     1130           
  Misses        465      465

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 84d7444...2824a92. Read the comment docs.

@renovate renovate Bot changed the title chore(deps): update dependency minimist to 1.2.6 [security] chore(deps): update dependency minimist to 1.2.6 [security] - autoclosed Apr 4, 2022
@renovate renovate Bot closed this Apr 4, 2022
@renovate renovate Bot deleted the renovate/npm-minimist-vulnerability branch April 4, 2022 22:52
@renovate renovate Bot changed the title chore(deps): update dependency minimist to 1.2.6 [security] - autoclosed chore(deps): update dependency minimist to 1.2.6 [security] Apr 9, 2022
@renovate renovate Bot reopened this Apr 9, 2022
@renovate renovate Bot restored the renovate/npm-minimist-vulnerability branch April 9, 2022 06:32
@zobo zobo changed the base branch from main to next April 10, 2022 13:56
@zobo zobo merged commit 252c515 into next Apr 10, 2022
@zobo zobo deleted the renovate/npm-minimist-vulnerability branch April 10, 2022 13:56
zobo pushed a commit that referenced this pull request Apr 10, 2022
@renovate @renovate-bot @zobo
chore(deps): update dependency minimist to 1.2.6 [security] (#766)
a1cfba3 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
zobo pushed a commit that referenced this pull request Apr 11, 2022
@renovate @renovate-bot @zobo
chore(deps): update dependency minimist to 1.2.6 [security] (#766)
092fe71 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@zobo @renovate-bot