[Snyk] Upgrade markdownlint-cli from 0.39.0 to 0.40.0

[f3rno64]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade markdownlint-cli from 0.39.0 to 0.40.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released 23 days ago, on 2024-04-30.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	554/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 7.5	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	554/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: markdownlint-cli

• 0.40.0 - 2024-04-30
  
  • Update markdownlint dependency to 0.34.0
    • Use micromark in MD027/MD028/MD036/MD040/MD041/MD046/MD048
    • Improve MD013/MD034/MD049/MD050/MD051
  • Add support for TOML configuration files via --config
  • Add --configPointer argument for nested configuration
  • Update --ignore for directories to ignore all files within
  • Update all dependencies via Dependabot
• 0.39.0 - 2024-01-28
  
  • Update markdownlint dependency to 0.33.0
    • Add MD055/table-pipe-style, MD056/table-column-count
    • Improve MD005/MD007/MD024/MD026/MD038
    • Incorporate micromark-extension-directive
    • Improve JSON schema, document validation
  • Handle trailing commas in JSONC configuration
  • Update all dependencies via Dependabot

from markdownlint-cli GitHub release notes

Commit messages

Package name: markdownlint-cli

• 88f5e62 Bump version 0.40.0
• 3acb04e Add --configPointer argument to allow embedding the configuration object in files like package.json and pyproject.toml (fixes #113, fixes #458).
• 899e6a8 All option-arguments are required and should be documented with "<>" instead of "[]".
• 399e295 Bump glob from 10.3.10 to 10.3.12
• 233e22f Bump minimatch from 9.0.3 to 9.0.4
• aa03231 Bump markdownlint from 0.33.0 to 0.34.0
• b22900b Bump xo from 0.57.0 to 0.58.0
• eaae920 Bump ava from 6.1.1 to 6.1.2
• 2fe16f4 The glob package is case-insensitive on Windows and macOS (!!), so update tests to exclude newly-added UPPER.MD file and behave like before the previous commit.
• c7638a4 Update --ignore for directories so it ignores all files within rather than just those with .md or .markdown (case-sensitive) extensions (fixes #459).
• ca05bed Add support for TOML configuration files via --config (refs #113, refs #458).
• 5fa53b1 Update code for issues newly reported by xo.
• d5dffba Bump xo from 0.56.0 to 0.57.0
• 5831009 Update require for breaking change in commander@12.0.0.
• 2ad55e6 Bump commander from 11.1.0 to 12.0.0
• ff74e41 Bump ava from 6.1.0 to 6.1.1
• 1f789d1 Bump ignore from 5.3.0 to 5.3.1

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.