Closed fasttime closed 8 months ago
This PR removes the dependency shelljs and replaces its usages with native Node.js API calls. It also adds unit tests to ensure that the behavior of writeChangelog() hasn't changed.
writeChangelog()
ShellJS in versions prior to 0.8.5 has a high rated vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2022-0144.
This PR removes the dependency shelljs and replaces its usages with native Node.js API calls. It also adds unit tests to ensure that the behavior of
writeChangelog()hasn't changed.ShellJS in versions prior to 0.8.5 has a high rated vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2022-0144.