Closed depfu[bot] closed 2 months ago
Sorry, but the merge failed with:
At least 1 approving review is required by reviewers with write access. You're not authorized to push to this branch. Visit https://docs.github.com/repositories/configuring-branches-and-merges-in-your-repository/managing-protected-branches/about-protected
🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!
Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.
What changed?
↗️ nokogiri (indirect, 1.16.4 → 1.16.5) · Repo · Changelog
Security Advisories 🚨
🚨 Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
Release Notes
1.16.5
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by 4 commits:
version bump to v1.16.5
dep: update vendored libxml2 to v2.12.7 (#3191)
ci: add arm64-darwin coverage using macos-14
dep: update libxml2 to v2.12.7
Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with
@depfu rebase
.All Depfu comment commands