Open renovate[bot] opened 2 months ago
This PR contains the following updates:
9.1.1
10.1.1
The package ng-packagr before 10.1.1 are vulnerable to Command Injection via the styleIncludePaths option.
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Never, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.
This PR contains the following updates:
9.1.1
->10.1.1
GitHub Vulnerability Alerts
CVE-2020-7735
The package ng-packagr before 10.1.1 are vulnerable to Command Injection via the styleIncludePaths option.
Release Notes
ng-packagr/ng-packagr (ng-packagr)
### [`v10.1.1`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.1.0...v10.1.1) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.1.0...v10.1.1) ### [`v10.1.0`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.4...v10.1.0) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.4...v10.1.0) ### [`v10.0.4`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.3...v10.0.4) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.3...v10.0.4) ### [`v10.0.3`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.2...v10.0.3) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.2...v10.0.3) ### [`v10.0.2`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.1...v10.0.2) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.1...v10.0.2) ### [`v10.0.1`](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.0...v10.0.1) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v10.0.0...v10.0.1) ### [`v10.0.0`](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.5...v10.0.0) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.5...v10.0.0) ### [`v9.1.5`](https://togithub.com/ng-packagr/ng-packagr/releases/tag/v9.1.5) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.4...v9.1.5) ##### Bug Fixes - remove tslib from peerDependencies when adding it to dependencies ([593f861](https://togithub.com/ng-packagr/ng-packagr/commit/593f861)) ### [`v9.1.4`](https://togithub.com/ng-packagr/ng-packagr/releases/tag/v9.1.4) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.3...v9.1.4) ##### Bug Fixes - auto add tslib as direct dependency ([298fbc4](https://togithub.com/ng-packagr/ng-packagr/commit/298fbc4)) ##### [9.1.3](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.2...v9.1.3) (2020-05-06) ### [`v9.1.3`](https://togithub.com/ng-packagr/ng-packagr/releases/tag/v9.1.3) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.2...v9.1.3) ##### Bug Fixes - update browserslist and autoprefixer ([8293497](https://togithub.com/ng-packagr/ng-packagr/commit/8293497)), closes [#1611](https://togithub.com/ng-packagr/ng-packagr/issues/1611) - update rollup-plugin-sourcemaps to version ^0.6.0 ([f8c3459](https://togithub.com/ng-packagr/ng-packagr/commit/f8c3459)) ### [`v9.1.2`](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.1...v9.1.2) [Compare Source](https://togithub.com/ng-packagr/ng-packagr/compare/v9.1.1...v9.1.2)Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Never, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.