Closed renovate[bot] closed 3 years ago
This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.
🔍 Inspect: https://vercel.com/zthxxx/react-dev-inspector/8SwxeLM6faKsXWBDcSzVRDFGbbGD
✅ Preview: https://react-dev-insp-git-renovate-npm-hosted-git-info-vulnerab-1eacec.vercel.app
This PR contains the following updates:
2.8.8
->2.8.9
3.0.7
->3.0.8
GitHub Vulnerability Alerts
CVE-2021-23362
The npm package
hosted-git-info
before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexityConfiguration
📅 Schedule: "" in timezone Asia/Shanghai.
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻️ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by WhiteSource Renovate. View repository job log here.