github-actions[bot]
commented
3 years ago This PR will trigger no release when merged.
Closed renovate[bot] closed 3 years ago
github-actions[bot]
commented
3 years ago This PR will trigger no release when merged.
codecov[bot]
commented
3 years ago Merging #82 (000f0ac) into master (e1f0bc5) will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## master #82 +/- ##
=========================================
Coverage 100.00% 100.00%
=========================================
Files 4 4
Lines 68 68
=========================================
Hits 68 68 Continue to review full report at Codecov.
Legend - Click here to learn more
Δ = absolute <relative> (impact),ø = not affected,? = missing dataPowered by Codecov. Last update e1f0bc5...000f0ac. Read the comment docs.
This PR contains the following updates:
17.2.2->17.2.3GitHub Vulnerability Alerts
CVE-2020-26226
Impact
Secrets that would normally be masked by
semantic-releasecan be accidentally disclosed if they contain characters that become encoded when included in a URL.Patches
Fixed in v17.2.3
Workarounds
Secrets that do not contain characters that become encoded when included in a URL are already masked properly.
Release Notes
semantic-release/semantic-release
### [`v17.2.3`](https://togithub.com/semantic-release/semantic-release/releases/v17.2.3) [Compare Source](https://togithub.com/semantic-release/semantic-release/compare/v17.2.2...v17.2.3) ##### Bug Fixes - mask secrets when characters get uri encoded ([ca90b34](https://togithub.com/semantic-release/semantic-release/commit/ca90b34c4a9333438cc4d69faeb43362bb991e5a))Renovate configuration
:date: Schedule: "" in timezone Europe/Zurich.
:vertical_traffic_light: Automerge: Enabled.
:recycle: Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
:no_bell: Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by WhiteSource Renovate. View repository job log here.