Update dependency semver to v4 [SECURITY]#11
Open
renovate[bot] wants to merge 1 commit intomasterfrom
Open
Conversation
aab8131 to
611b8fd
Compare
611b8fd to
f3445e8
Compare
f3445e8 to
7500c34
Compare
7500c34 to
896a6ac
Compare
896a6ac to
cea25ad
Compare
cea25ad to
b52410f
Compare
b52410f to
e91d224
Compare
4511133 to
6099c01
Compare
6099c01 to
7436c8b
Compare
7436c8b to
1af0226
Compare
6251bb1 to
89cfc92
Compare
89cfc92 to
fec0c9a
Compare
fec0c9a to
a1f1235
Compare
5f0501b to
e8cb531
Compare
e8cb531 to
e351227
Compare
e351227 to
a0ead79
Compare
a0ead79 to
a9051e7
Compare
a9051e7 to
481ff46
Compare
481ff46 to
98585f7
Compare
98585f7 to
a958112
Compare
a958112 to
eb53006
Compare
eb53006 to
bfe57bd
Compare
bfe57bd to
706c1df
Compare
706c1df to
0eb4fd1
Compare
0eb4fd1 to
442ed6c
Compare
442ed6c to
39806b5
Compare
39806b5 to
c948b79
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
~1.1.0→~4.3.2GitHub Vulnerability Alerts
CVE-2015-8855
Versions 4.3.1 and earlier of
semverare affected by a regular expression denial of service vulnerability when extremely long version strings are parsed.Recommendation
Update to version 4.3.2 or later
Release Notes
npm/node-semver (semver)
v4.3.2Compare Source
v4.3.1Compare Source
v4.3.0Compare Source
v4.2.2Compare Source
v4.2.1Compare Source
v4.2.0Compare Source
v4.1.1Compare Source
v4.1.0Compare Source
v4.0.3Compare Source
v4.0.2Compare Source
v4.0.0Compare Source
v3.0.1Compare Source
v3.0.0Compare Source
v2.3.2Compare Source
v2.3.1Compare Source
v2.3.0Compare Source
v2.2.1Compare Source
v2.2.0Compare Source
v2.1.0Compare Source
v2.0.11Compare Source
v2.0.10Compare Source
v2.0.9Compare Source
v2.0.8Compare Source
v2.0.7Compare Source
v2.0.6Compare Source
v2.0.5Compare Source
v2.0.4Compare Source
v2.0.3Compare Source
v2.0.2Compare Source
v2.0.1Compare Source
v1.1.4Compare Source
v1.1.3Compare Source
v1.1.2Compare Source
v1.1.1Compare Source
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.