chore(deps): update dependency ua-parser-js to 0.7.24 [security] - autoclosed

[renovate[bot]]

This PR contains the following updates:

Package	Change
ua-parser-js	0.7.21 -> 0.7.24

GitHub Vulnerability Alerts

CVE-2021-27292

ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing it for an extended period of time.

CVE-2020-7793

The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).

CVE-2020-7733

The package ua-parser-js before 0.7.22 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex for Redmi Phones and Mi Pad Tablets UA.

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate[bot]]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

installing v2 tool node v18.12.1
linking tool node v18.12.1
node: v18.12.1 /usr/local/bin/node
npm: 8.19.2  /usr/local/bin/npm
Installed v2 /usr/local/buildpack/tools/v2/node.sh in 7 seconds
skip cleanup, not a docker build: 027a58a0a4b4
installing v2 tool pnpm v7.10.0

added 1 package in 2s
linking tool pnpm v7.10.0
7.10.0
Installed v2 /usr/local/buildpack/tools/v2/pnpm.sh in 4 seconds
skip cleanup, not a docker build: 027a58a0a4b4
Scope: all 6 workspace projects

   ╭──────────────────────────────────────────────────────────────────╮
   │                                                                  │
   │                Update available! 7.10.0 → 7.17.0.                │
   │   Changelog: https://github.com/pnpm/pnpm/releases/tag/v7.17.0   │
   │                Run "pnpm add -g pnpm" to update.                 │
   │                                                                  │
   │      Follow @pnpmjs for updates: https://twitter.com/pnpmjs      │
   │                                                                  │
   ╰──────────────────────────────────────────────────────────────────╯

Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 12, reused 0, downloaded 3, added 0
packages/epubjs                          |  WARN  deprecated @types/localforage@0.0.34
Progress: resolved 18, reused 0, downloaded 13, added 0
Progress: resolved 25, reused 0, downloaded 20, added 0
Progress: resolved 31, reused 0, downloaded 27, added 0
Progress: resolved 39, reused 0, downloaded 34, added 0
Progress: resolved 44, reused 0, downloaded 40, added 0
Progress: resolved 48, reused 0, downloaded 42, added 0
Progress: resolved 54, reused 0, downloaded 47, added 0
Progress: resolved 60, reused 0, downloaded 50, added 0
Progress: resolved 63, reused 0, downloaded 54, added 0
Progress: resolved 65, reused 0, downloaded 56, added 0
Progress: resolved 71, reused 0, downloaded 62, added 0
packages/epubjs                          |  WARN  deprecated core-js@3.21.1
Progress: resolved 80, reused 0, downloaded 74, added 0
Progress: resolved 89, reused 0, downloaded 83, added 0
Progress: resolved 94, reused 0, downloaded 90, added 0
Progress: resolved 100, reused 0, downloaded 95, added 0
Progress: resolved 100, reused 0, downloaded 96, added 0
Progress: resolved 104, reused 0, downloaded 98, added 0
Progress: resolved 105, reused 0, downloaded 104, added 0
Progress: resolved 108, reused 0, downloaded 106, added 0
Progress: resolved 110, reused 0, downloaded 108, added 0
Progress: resolved 110, reused 0, downloaded 110, added 0
Progress: resolved 111, reused 0, downloaded 110, added 0
Progress: resolved 111, reused 0, downloaded 111, added 0
Progress: resolved 112, reused 0, downloaded 111, added 0
Progress: resolved 112, reused 0, downloaded 112, added 0
Progress: resolved 113, reused 0, downloaded 112, added 0
Progress: resolved 114, reused 0, downloaded 113, added 0
Progress: resolved 154, reused 0, downloaded 126, added 0
Progress: resolved 208, reused 0, downloaded 178, added 0
Progress: resolved 238, reused 0, downloaded 215, added 0
Progress: resolved 261, reused 0, downloaded 241, added 0
Progress: resolved 288, reused 0, downloaded 269, added 0
packages/epubjs                          |  WARN  deprecated phantomjs-prebuilt@2.1.16
packages/epubjs                          |  WARN  deprecated debug@3.2.6
Progress: resolved 310, reused 0, downloaded 288, added 0
Progress: resolved 325, reused 0, downloaded 298, added 0
Progress: resolved 348, reused 0, downloaded 323, added 0
Progress: resolved 381, reused 0, downloaded 357, added 0
packages/epubjs                          |  WARN  deprecated chokidar@2.1.8
Progress: resolved 407, reused 0, downloaded 385, added 0
apps/reader                              |  WARN  deprecated crypto@1.0.1
Progress: resolved 419, reused 0, downloaded 399, added 0
Progress: resolved 429, reused 0, downloaded 410, added 0
Progress: resolved 436, reused 0, downloaded 414, added 0
Progress: resolved 445, reused 0, downloaded 425, added 0
Progress: resolved 452, reused 0, downloaded 428, added 0
Progress: resolved 461, reused 0, downloaded 439, added 0
Progress: resolved 475, reused 0, downloaded 456, added 0
Progress: resolved 494, reused 0, downloaded 473, added 0
Progress: resolved 517, reused 0, downloaded 499, added 0
Progress: resolved 532, reused 0, downloaded 512, added 0
Progress: resolved 544, reused 0, downloaded 525, added 0
Progress: resolved 563, reused 0, downloaded 544, added 0
packages/epubjs                          |  WARN  deprecated request@2.88.2
Progress: resolved 589, reused 0, downloaded 573, added 0
Progress: resolved 610, reused 0, downloaded 598, added 0
Progress: resolved 638, reused 0, downloaded 623, added 0
Progress: resolved 660, reused 0, downloaded 645, added 0
Progress: resolved 676, reused 0, downloaded 663, added 0
Progress: resolved 697, reused 0, downloaded 679, added 0
Progress: resolved 711, reused 0, downloaded 684, added 0
Progress: resolved 727, reused 0, downloaded 689, added 0
Progress: resolved 753, reused 0, downloaded 696, added 0
Progress: resolved 784, reused 0, downloaded 719, added 0
Progress: resolved 813, reused 0, downloaded 740, added 0
Progress: resolved 834, reused 0, downloaded 765, added 0
Progress: resolved 857, reused 0, downloaded 786, added 0
Progress: resolved 898, reused 0, downloaded 829, added 0
Progress: resolved 927, reused 0, downloaded 857, added 0
Progress: resolved 959, reused 0, downloaded 892, added 0
Progress: resolved 988, reused 0, downloaded 931, added 0
Progress: resolved 1025, reused 0, downloaded 967, added 0
Progress: resolved 1062, reused 0, downloaded 1000, added 0
Progress: resolved 1100, reused 0, downloaded 1037, added 0
Progress: resolved 1122, reused 0, downloaded 1054, added 0
packages/epubjs                          |  WARN  deprecated uuid@3.4.0
Progress: resolved 1141, reused 0, downloaded 1084, added 0
packages/epubjs                          |  WARN  deprecated querystring@0.2.0
Progress: resolved 1181, reused 0, downloaded 1125, added 0
Progress: resolved 1209, reused 0, downloaded 1154, added 0
Progress: resolved 1234, reused 0, downloaded 1177, added 0
Progress: resolved 1264, reused 0, downloaded 1209, added 0
packages/epubjs                          |  WARN  deprecated fsevents@2.1.3
packages/epubjs                          |  WARN  deprecated fsevents@1.2.13
Progress: resolved 1306, reused 0, downloaded 1239, added 0
Progress: resolved 1333, reused 0, downloaded 1267, added 0
Progress: resolved 1343, reused 0, downloaded 1286, added 0
Progress: resolved 1353, reused 0, downloaded 1294, added 0
Progress: resolved 1375, reused 0, downloaded 1313, added 0
.                                        |  WARN  deprecated smartwrap@1.2.5
Progress: resolved 1407, reused 0, downloaded 1347, added 0
Progress: resolved 1435, reused 0, downloaded 1371, added 0
packages/epubjs                          |  WARN  deprecated har-validator@5.1.5
Progress: resolved 1461, reused 0, downloaded 1403, added 0
Progress: resolved 1474, reused 0, downloaded 1414, added 0
Progress: resolved 1502, reused 0, downloaded 1442, added 0
Progress: resolved 1536, reused 0, downloaded 1479, added 0
Progress: resolved 1567, reused 0, downloaded 1509, added 0
Progress: resolved 1586, reused 0, downloaded 1526, added 0
Progress: resolved 1607, reused 0, downloaded 1551, added 0
packages/epubjs                          |  WARN  deprecated source-map-resolve@0.5.3
Progress: resolved 1639, reused 0, downloaded 1582, added 0
packages/epubjs                          |  WARN  deprecated source-map-url@0.4.1
packages/epubjs                          |  WARN  deprecated resolve-url@0.2.1
packages/epubjs                          |  WARN  deprecated urix@0.1.0
Progress: resolved 1673, reused 0, downloaded 1611, added 0
Progress: resolved 1715, reused 0, downloaded 1655, added 0
Progress: resolved 1745, reused 0, downloaded 1686, added 0
Progress: resolved 1769, reused 0, downloaded 1712, added 0
Progress: resolved 1797, reused 0, downloaded 1747, added 0
Progress: resolved 1818, reused 0, downloaded 1765, added 0
Progress: resolved 1844, reused 0, downloaded 1792, added 0
Progress: resolved 1860, reused 0, downloaded 1808, added 0
Progress: resolved 1889, reused 0, downloaded 1840, added 0
Progress: resolved 1905, reused 0, downloaded 1862, added 0
Progress: resolved 1906, reused 0, downloaded 1865, added 0
Progress: resolved 1911, reused 0, downloaded 1869, added 0
Progress: resolved 1911, reused 0, downloaded 1871, added 0
Progress: resolved 1911, reused 0, downloaded 1872, added 0
Progress: resolved 1911, reused 0, downloaded 1874, added 0
Progress: resolved 1911, reused 0, downloaded 1874, added 0, done
 ERR_PNPM_PEER_DEP_ISSUES  Unmet peer dependencies

.
├─┬ @typescript-eslint/eslint-plugin 5.19.0
│ └── ✕ missing peer @typescript-eslint/parser@^5.0.0
├─┬ eslint-config-next 12.1.5
│ └── ✕ missing peer next@>=10.2.0
└─┬ rollup-plugin-typescript2 0.31.2
  └─┬ @yarn-tool/resolve-package 1.0.46
    └─┬ upath2 3.1.12
      └── ✕ missing peer @types/node@"*"
Peer dependencies that should be installed:
  @types/node@"*"
  @typescript-eslint/parser@^5.0.0
  next@>=10.2.0

apps/reader
├─┬ next-pwa 5.6.0
│ ├─┬ babel-loader 8.2.5
│ │ ├── ✕ missing peer @babel/core@^7.0.0
│ │ └── ✕ missing peer webpack@>=2
│ ├─┬ clean-webpack-plugin 4.0.0
│ │ └── ✕ missing peer webpack@">=4.0.0 <6.0.0"
│ ├─┬ terser-webpack-plugin 5.3.6
│ │ └── ✕ missing peer webpack@^5.1.0
│ └─┬ workbox-webpack-plugin 6.5.4
│   └── ✕ missing peer webpack@"^4.4.0 || ^5.9.0"
├─┬ next 12.1.5
│ └─┬ styled-jsx 5.0.1
│   └── ✕ missing peer @babel/core@"*"
├─┬ @sentry/nextjs 7.12.1
│ ├── ✕ missing peer webpack@">= 4.0.0"
│ └─┬ jscodeshift 0.13.1
│   └── ✕ missing peer @babel/preset-env@^7.1.6
└─┬ dropbox 10.32.0
  └── ✕ missing peer @types/node-fetch@^2.5.7
Peer dependencies that should be installed:
  @babel/core@">=7.0.0 <8.0.0"
  @babel/preset-env@^7.1.6
  @types/node-fetch@^2.5.7
  webpack@">=5.9.0 <6.0.0"

apps/website
├─┬ @mdx-js/loader 2.1.1
│ └── ✕ missing peer webpack@>=4
├─┬ babel-loader 8.2.5
│ ├── ✕ missing peer webpack@>=2
│ └── ✕ missing peer @babel/core@^7.0.0
└─┬ next 12.1.5
  └─┬ styled-jsx 5.0.1
    └── ✕ missing peer @babel/core@"*"
Peer dependencies that should be installed:
  @babel/core@">=7.0.0 <8.0.0"
  webpack@>=4.0.0

hint: If you want peer dependencies to be automatically installed, add "auto-install-peers=true" to an .npmrc file at the root of your project.
hint: If you don't want pnpm to fail on peer dependency issues, add "strict-peer-dependencies=false" to an .npmrc file at the root of your project.

[vercel[bot]]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated
flow-reader	❌ Failed (Inspect)		Nov 24, 2022 at 8:43AM (UTC)
flow-website	❌ Failed (Inspect)		Nov 24, 2022 at 8:43AM (UTC)