search

2BAD / ryanair

Unofficial typescript client for the Ryanair API that allows you to easily retrieve information about airports, flights and prices.
MIT License
15 stars 3 forks source link

Update all non-major dependencies #14

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
@types/node (source) 20.2.5 -> 20.3.1 age adoption passing confidence devDependencies minor
eslint-plugin-jsdoc 46.2.6 -> 46.3.0 age adoption passing confidence devDependencies minor
node 20.1.0 -> 20.3.1 age adoption passing confidence volta minor

Release Notes

gajus/eslint-plugin-jsdoc (eslint-plugin-jsdoc) ### [`v46.3.0`](https://togithub.com/gajus/eslint-plugin-jsdoc/releases/tag/v46.3.0) [Compare Source](https://togithub.com/gajus/eslint-plugin-jsdoc/compare/v46.2.6...v46.3.0) ##### Bug Fixes - make name required on `[@template](https://togithub.com/template)` for non-JSDoc modes ([467441b](https://togithub.com/gajus/eslint-plugin-jsdoc/commit/467441b4d0593a8c43bd7527d528507cef057fa1)) ##### Features - **`match-description`:** ensure `[@desc](https://togithub.com/desc)` checked by default; check more desc-like tags by default; check non-empty tags; [#​233](https://togithub.com/gajus/eslint-plugin-jsdoc/issues/233) ([1b9d9e4](https://togithub.com/gajus/eslint-plugin-jsdoc/commit/1b9d9e4c85c30112813d4d6cfe8b4c9825956c22))
nodejs/node (node) ### [`v20.3.1`](https://togithub.com/nodejs/node/releases/tag/v20.3.1): 2023-06-20, Version 20.3.1 (Current), @​RafaelGSS [Compare Source](https://togithub.com/nodejs/node/compare/v20.1.0...v20.3.1) This is a security release. ##### Notable Changes The following CVEs are fixed in this release: - [CVE-2023-30581](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30581): `mainModule.__proto__` Bypass Experimental Policy Mechanism (High) - [CVE-2023-30584](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30584): Path Traversal Bypass in Experimental Permission Model (High) - [CVE-2023-30587](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30587): Bypass of Experimental Permission Model via Node.js Inspector (High) - [CVE-2023-30582](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30582): Inadequate Permission Model Allows Unauthorized File Watching (Medium) - [CVE-2023-30583](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30583): Bypass of Experimental Permission Model via fs.openAsBlob() (Medium) - [CVE-2023-30585](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30585): Privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process (Medium) - [CVE-2023-30586](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30586): Bypass of Experimental Permission Model via Arbitrary OpenSSL Engines (Medium) - [CVE-2023-30588](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30588): Process interuption due to invalid Public Key information in x509 certificates (Medium) - [CVE-2023-30589](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30589): HTTP Request Smuggling via Empty headers separated by CR (Medium) - [CVE-2023-30590](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30590): DiffieHellman does not generate keys after setting a private key (Medium) - OpenSSL Security Releases - [OpenSSL security advisory 28th March](https://www.openssl.org/news/secadv/20230328.txt). - [OpenSSL security advisory 20th April](https://www.openssl.org/news/secadv/20230420.txt). - [OpenSSL security advisory 30th May](https://www.openssl.org/news/secadv/20230530.txt) More detailed information on each of the vulnerabilities can be found in [June 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/june-2023-security-releases/) blog post. ##### Commits - \[[`dac08dafc9`](https://togithub.com/nodejs/node/commit/dac08dafc9)] - **crypto**: handle cert with invalid SPKI gracefully (Tobias Nießen) [nodejs-private/node-private#​393](https://togithub.com/nodejs-private/node-private/pull/393) - \[[`d274c3babc`](https://togithub.com/nodejs/node/commit/d274c3babc)] - **crypto,https,tls**: disable engines if perms enabled (Tobias Nießen) [nodejs-private/node-private#​409](https://togithub.com/nodejs-private/node-private/pull/409) - \[[`5621c1de38`](https://togithub.com/nodejs/node/commit/5621c1de38)] - **deps**: update archs files for openssl-3.0.9-quic1 (Node.js GitHub Bot) [#​48402](https://togithub.com/nodejs/node/pull/48402) - \[[`771caa9f1c`](https://togithub.com/nodejs/node/commit/771caa9f1c)] - **deps**: upgrade openssl sources to quictls/openssl-3.0.9-quic1 (Node.js GitHub Bot) [#​48402](https://togithub.com/nodejs/node/pull/48402) - \[[`0459bf9c99`](https://togithub.com/nodejs/node/commit/0459bf9c99)] - **doc,test**: clarify behavior of DH generateKeys (Tobias Nießen) [nodejs-private/node-private#​426](https://togithub.com/nodejs-private/node-private/pull/426) - \[[`27e20501aa`](https://togithub.com/nodejs/node/commit/27e20501aa)] - **http**: disable request smuggling via empty headers (Paolo Insogna) [nodejs-private/node-private#​427](https://togithub.com/nodejs-private/node-private/pull/427) - \[[`9c17e335f1`](https://togithub.com/nodejs/node/commit/9c17e335f1)] - **msi**: do not create AppData\Roaming\npm (Tobias Nießen) [nodejs-private/node-private#​408](https://togithub.com/nodejs-private/node-private/pull/408) - \[[`b51124c637`](https://togithub.com/nodejs/node/commit/b51124c637)] - **permission**: handle fs path traversal (RafaelGSS) [nodejs-private/node-private#​403](https://togithub.com/nodejs-private/node-private/pull/403) - \[[`ebc5927adc`](https://togithub.com/nodejs/node/commit/ebc5927adc)] - **permission**: handle fs.openAsBlob (RafaelGSS) [nodejs-private/node-private#​405](https://togithub.com/nodejs-private/node-private/pull/405) - \[[`c39a43bff5`](https://togithub.com/nodejs/node/commit/c39a43bff5)] - **permission**: handle fs.watchFile (RafaelGSS) [nodejs-private/node-private#​404](https://togithub.com/nodejs-private/node-private/pull/404) - \[[`d0a8264ec9`](https://togithub.com/nodejs/node/commit/d0a8264ec9)] - **policy**: handle mainModule.\__proto\_\_ bypass (RafaelGSS) [nodejs-private/node-private#​416](https://togithub.com/nodejs-private/node-private/pull/416) - \[[`3df13d5a79`](https://togithub.com/nodejs/node/commit/3df13d5a79)] - **src,permission**: restrict inspector when pm enabled (RafaelGSS) [nodejs-private/node-private#​410](https://togithub.com/nodejs-private/node-private/pull/410)

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

This PR has been generated by Mend Renovate. View repository job log here.

codecov[bot] commented 1 year ago

Codecov Report

Merging #14 (a39b4df) into master (70de485) will not change coverage. The diff coverage is n/a.

@@            Coverage Diff            @@
##            master       #14   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           19        19           
  Lines          565       565           
  Branches        28        28           
=========================================
  Hits           565       565
Flag Coverage Δ
integration 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.