Bumps the npm_and_yarn group with 4 updates in the / directory: braces, ejs, micromatch and vite.
Bumps the npm_and_yarn group with 2 updates in the /demo directory: micromatch and vite.
Bumps the npm_and_yarn group with 5 updates in the /docs directory:
Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We consider the issues low-priority, so even if you see automated scanners saying otherwise, don't be scared.
Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We consider the issues low-priority, so even if you see automated scanners saying otherwise, don't be scared.
Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We consider the issues low-priority, so even if you see automated scanners saying otherwise, don't be scared.
Bumps the npm_and_yarn group with 4 updates in the / directory: braces, ejs, micromatch and vite. Bumps the npm_and_yarn group with 2 updates in the /demo directory: micromatch and vite. Bumps the npm_and_yarn group with 5 updates in the /docs directory:
3.0.2
3.0.3
4.0.5
4.0.8
5.0.10
5.4.6
1.6.2
1.7.7
8.15.1
8.18.0
Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
ejs
from 3.1.9 to 3.1.10Release notes
Sourced from ejs's releases.
Commits
d3f807d
Version 3.1.109ee26dd
Mocha TDDe469741
Basic pollution protection715e950
Merge pull request #756 from Jeffrey-mu/maincabe314
Include advanced usage examples29b076c
Added header11503c7
Merge branch 'main' of github.com:mde/ejs into main7690404
Added security banner to READMEf47d7ae
Update SECURITY.md828cea1
Update SECURITY.mdUpdates
micromatch
from 4.0.5 to 4.0.8Release notes
Sourced from micromatch's releases.
Changelog
Sourced from micromatch's changelog.
Commits
8bd704e
4.0.8a0e6841
run verb to generate README documentation4ec2884
Merge branch 'v4' into hauserkristof-feature/v4.0.803aa805
Merge pull request #266 from hauserkristof/feature/v4.0.8814f5f7
lint67fcce6
fix: CHANGELOG about braces & CVE-2024-4068, v4.0.5113f2e3
fix: CVE numbers in CHANGELOGd9dbd9a
feat: updated CHANGELOG2ab1315
fix: use actions/setup-node@v41406ea3
feat: rework test to work on macos with node 10,12 and 14Updates
vite
from 5.1.3 to 5.4.6Release notes
Sourced from vite's releases.
Changelog
Sourced from vite's changelog.
... (truncated)
Commits
f969176
release: v5.4.6179b177
fix: avoid DOM Clobbering gadget ingetRelativeUrlFromDocument
(#18115)6820bb3
fix: fs raw query (#18112)37881e7
release: v5.4.5faa2405
fix(preload): backport #18098, throw error preloading module as well (#18099)54c55db
release: v5.4.474a79c5
fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorr...d90ba40
fix: backport #18063, allow scanning exports fromscript module
in svelte (...8760293
fix(preload): backport #18046, allow ignoring dep errors (#18076)ccbfc1a
release: v5.4.3Updates
micromatch
from 4.0.5 to 4.0.8Release notes
Sourced from micromatch's releases.
Changelog
Sourced from micromatch's changelog.
Commits
8bd704e
4.0.8a0e6841
run verb to generate README documentation4ec2884
Merge branch 'v4' into hauserkristof-feature/v4.0.803aa805
Merge pull request #266 from hauserkristof/feature/v4.0.8814f5f7
lint67fcce6
fix: CHANGELOG about braces & CVE-2024-4068, v4.0.5113f2e3
fix: CVE numbers in CHANGELOGd9dbd9a
feat: updated CHANGELOG2ab1315
fix: use actions/setup-node@v41406ea3
feat: rework test to work on macos with node 10,12 and 14Updates
vite
from 5.0.13 to 5.4.6Release notes
Sourced from vite's releases.
Changelog
Sourced from vite's changelog.
... (truncated)
Commits
f969176
release: v5.4.6179b177
fix: avoid DOM Clobbering gadget ingetRelativeUrlFromDocument
(#18115)6820bb3
fix: fs raw query (#18112)37881e7
release: v5.4.5faa2405
fix(preload): backport #18098, throw error preloading module as well (#18099)54c55db
release: v5.4.474a79c5
fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorr...d90ba40
fix: backport #18063, allow scanning exports fromscript module
in svelte (...8760293
fix(preload): backport #18046, allow ignoring dep errors (#18076)ccbfc1a
release: v5.4.3Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
micromatch
from 4.0.5 to 4.0.8Release notes
Sourced from micromatch's releases.
Changelog
Sourced from micromatch's changelog.
Commits
8bd704e
4.0.8a0e6841
run verb to generate README documentation4ec2884
Merge branch 'v4' into hauserkristof-feature/v4.0.803aa805
Merge pull request #266 from hauserkristof/feature/v4.0.8814f5f7
lint67fcce6
fix: CHANGELOG about braces & CVE-2024-4068, v4.0.5113f2e3
fix: CVE numbers in CHANGELOGd9dbd9a
feat: updated CHANGELOG2ab1315
fix: use actions/setup-node@v41406ea3
feat: rework test to work on macos with node 10,12 and 14Updates
vite
from 5.0.10 to 5.4.6Release notes
Sourced from vite's releases.
Changelog
Sourced from vite's changelog.
... (truncated)
Commits
f969176
release: v5.4.6179b177
fix: avoid DOM Clobbering gadget ingetRelativeUrlFromDocument
(#18115)6820bb3
fix: fs raw query (#18112)37881e7
release: v5.4.5faa2405
fix(preload): backport #18098, throw error preloading module as well (#18099)54c55db
release: v5.4.474a79c5
fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorr...d90ba40
fix: backport #18063, allow scanning exports fromscript module
in svelte (...8760293
fix(preload): backport #18046, allow ignoring dep errors (#18076)ccbfc1a
release: v5.4.3Updates
axios
from 1.6.2 to 1.7.7Release notes
Sourced from axios's releases.
... (truncated)
Changelog
Sourced from axios's changelog.