search

hackariens / vuejs

Templates pour la crΓ©ation d'un nouveau projet vuejs
0 stars 0 forks source link

chore(deps): update dependency ansi-regex to 5.0.1 [security] - autoclosed #91

Closed renovate[bot] closed 2 years ago

renovate[bot] commented 2 years ago

WhiteSource Renovate

This PR contains the following updates:

Package Change
ansi-regex 3.0.0 -> 5.0.1
ansi-regex 4.1.0 -> 5.0.1

GitHub Vulnerability Alerts

CVE-2021-3807

ansi-regex is vulnerable to Inefficient Regular Expression Complexity

Configuration

πŸ“… Schedule: "" (UTC).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

β™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about these updates again.

This PR has been generated by WhiteSource Renovate. View repository job log here.

guardrails[bot] commented 2 years ago

:warning: We detected 13 security issues in this pull request:

Vulnerable Libraries (13)
Severity | Details ----- | -------- High | [glob-parent@5.1.1](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L3474) (t) - **no patch available** High | [hosted-git-info@2.8.8](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L8906) (t) - **no patch available** Medium | [boxen@1.3.0](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json) (t) upgrade to: *>3.2.0* High | [koromerzhin-dependencies@1.3.0](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package.json) (t) upgrade to: *>=1.0.1* Medium | [lock-verify@2.2.1](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json) (t) upgrade to: *>1.1.0 || >=2.2.0* High | [minimist@1.2.5](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L9643) (t) upgrade to: *>1.2.5* Medium | [path-parse@1.0.6](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L10036) (t) upgrade to: *>=1.0.7* Medium | [@vue/cli-service@5.0.1](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package.json#L17) upgrade to: *>=4.5.17* Medium | [browserslist@4.16.3](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L6710) (t) upgrade to: *>4.16.4* High | [dns-packet@1.3.1](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L7839) (t) upgrade to: *>=1.3.2* High | [follow-redirects@1.13.3](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L8739) (t) upgrade to: *>1.14.7* High | [glob-parent@5.1.1](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L8840) (t) upgrade to: *>=5.1.2* High | [lodash@4.17.20](https://github.com/koromerzhin/template-vuejs/blob/84b715eab43ef263253f070dadd31bcbd127a3c7/apps/package-lock.json#L9440) (t) upgrade to: *>=4.17.21* More info on how to fix Vulnerable Libraries in [General](https://docs.guardrails.io/docs/en/vulnerabilities/general/using_vulnerable_libraries.html?utm_source=ghpr) and [JavaScript](https://docs.guardrails.io/docs/en/vulnerabilities/javascript/using_vulnerable_libraries.html?utm_source=ghpr).

πŸ‘‰ Go to the dashboard for detailed results.

πŸ“₯ Happy? Share your feedback with us.