search

ricokahler / flair

a lean, component-centric style system for React components
MIT License
19 stars 0 forks source link

Update dependency devcert to 1.2.1 [SECURITY] - autoclosed #145

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 3 years ago

Mend Renovate

This PR contains the following updates:

Package Change
devcert 1.1.1 -> 1.2.1

GitHub Vulnerability Alerts

CVE-2022-1929

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the devcert npm package, when an attacker is able to supply arbitrary input to the certificateFor method

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

đŸšĻ Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™ģ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 3 years ago

Size Change: 0 B

Total Size: 19 kB

ℹī¸ View Unchanged | Filename | Size | Change | | :--- | :---: | :---: | | `dist/babel-plugin-plugin/index.js` | 1.44 kB | 0 B | | `dist/collect/index.js` | 4.6 kB | 0 B | | `dist/common/index.esm.js` | 617 B | 0 B | | `dist/common/index.js` | 743 B | 0 B | | `dist/core/index.esm.js` | 697 B | 0 B | | `dist/core/index.js` | 1.09 kB | 0 B | | `dist/flair/index.esm.js` | 93 B | 0 B | | `dist/flair/index.js` | 370 B | 0 B | | `dist/loader/index.js` | 280 B | 0 B | | `dist/ssr/index.esm.js` | 1.23 kB | 0 B | | `dist/ssr/index.js` | 2.91 kB | 0 B | | `dist/standalone/index.esm.js` | 1.62 kB | 0 B | | `dist/standalone/index.js` | 3.29 kB | 0 B |

compressed-size-action