Update dependency url-parse to v1.5.2 [SECURITY] - autoclosed

[renovate[bot]]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
url-parse	1.4.7 -> 1.5.2

GitHub Vulnerability Alerts

CVE-2021-27515

url-parse before 1.5.0 mishandles certain uses of backslash such as http:\/ and interprets the URI as a relative path.

CVE-2021-3664

Overview

Affected versions of npm url-parse are vulnerable to URL Redirection to Untrusted Site.

Impact

Depending on library usage and attacker intent, impacts may include allow/block list bypasses, SSRF attacks, open redirects, or other undesired behavior.

---

Release Notes

unshiftio/url-parse

### [`v1.5.2`](https://togithub.com/unshiftio/url-parse/compare/1.5.1...1.5.2) [Compare Source](https://togithub.com/unshiftio/url-parse/compare/1.5.1...1.5.2) ### [`v1.5.1`](https://togithub.com/unshiftio/url-parse/compare/1.5.0...1.5.1) [Compare Source](https://togithub.com/unshiftio/url-parse/compare/1.5.0...1.5.1) ### [`v1.5.0`](https://togithub.com/unshiftio/url-parse/compare/1.4.7...1.5.0) [Compare Source](https://togithub.com/unshiftio/url-parse/compare/1.4.7...1.5.0)

---

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.