search

snyk / sweater-comb

API linting rules
Other
22 stars 8 forks source link

[Snyk] Upgrade yaml from 2.4.2 to 2.4.5 #629

Closed igor-enso closed 3 months ago

igor-enso commented 3 months ago

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade yaml from 2.4.2 to 2.4.5.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **3 versions** ahead of your current version. - The recommended version was released on **a month ago**.
Release notes
Package name: yaml
  • 2.4.5 - 2024-06-08
    • Improve tab handling (#553, yaml-test-suite tests DK95 & Y79Y)
  • 2.4.4 - 2024-06-08

    With special thanks to @ RedCMD for finding and reporting all of the following:

    • Allow comment after top-level block scalar with explicit indent indicator (#547)
    • Allow tab as indent for line comments before nodes (#548)
    • Do not allow tab before block collection (#549)
    • In flow collections, allow []{} immediately after : with plain key (#550)
    • Require indentation for ? explicit-key contents (#551)
    • Require indentation from block scalar header & flow collections in mapping values (#553)
      </li>
  <li>
    <b>2.4.3</b> - <a href="https://github.com/eemeli/yaml/releases/tag/v2.4.3">2024-06-02</a></br><ul>
  • Improve error when parsing a non-string value (#459)
  • Do not parse -.NaN or +.nan as NaN (#546)
  • Support # within %TAG prefixes with trailing #comments
  • Check for non-node complex keys when stringifying with simpleKeys (#541)

  • 2.4.2 - 2024-04-28
    • Restrict YAML 1.1 boolean strings to their explicit capitalization (#530)
    • Add sponsorship by Scipress (#536)
    • </ul>
from <a href="https://github.com/eemeli/yaml/releases">yaml GitHub release notes</a>

    [!IMPORTANT]

    • Check the changes in this PR to ensure they won't cause issues with your project.
    • This PR was automatically created by Snyk using the credentials of a real user.

    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

    For more information:

    snyksec commented 3 months ago

    :tada: This PR is included in version 2.9.2 :tada:

    The release is available on:

    Your semantic-release bot :package::rocket: