Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps) Updated packages for security vulnerabilities #387

Open
wants to merge 17 commits into
base: develop
Choose a base branch
from
+27 −24
Open

chore(deps) Updated packages for security vulnerabilities #387

Changes from 1 commit
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
80ece5c
build(deps): bump yaml from 2.2.1 to 2.2.2 in /server/node-service
dependabot[bot] May 19, 2023
badc16c
Create renovate.json
sarvex May 19, 2023
b5388fd
build(deps): bump http-cache-semantics in /server/node-service
dependabot[bot] May 19, 2023
6ee3425
build(deps): bump vm2 from 3.9.14 to 3.9.19 in /server/node-service
dependabot[bot] May 19, 2023
aa56cdc
Merge pull request #4 from sarvex/dependabot/npm_and_yarn/server/node…
sarvex May 19, 2023
44d85cb
build(deps): bump json from 20200518 to 20230227 in /server/api-service
dependabot[bot] May 19, 2023
d798918
Merge pull request #7 from sarvex/dependabot/maven/server/api-service…
sarvex May 19, 2023
606be06
Merge pull request #6 from sarvex/dependabot/npm_and_yarn/server/node…
sarvex May 19, 2023
0b38824
Merge pull request #5 from sarvex/dependabot/npm_and_yarn/server/node…
sarvex May 19, 2023
e5d1334
build(deps): bump snowflake-jdbc
dependabot[bot] May 19, 2023
4d70946
build(deps-dev): bump spring-boot-starter-webflux
dependabot[bot] May 19, 2023
62f6803
Merge pull request #9 from sarvex/dependabot/maven/server/api-service…
sarvex May 19, 2023
9584eea
chore(deps): bump vm2 from 3.9.11 to 3.9.19 in /client
dependabot[bot] May 19, 2023
7575f53
Merge pull request #8 from sarvex/dependabot/maven/server/api-service…
sarvex May 19, 2023
81363dc
Merge pull request #3 from sarvex/dependabot/npm_and_yarn/client/vm2-…
sarvex May 19, 2023
696d4de
chore(deps): bump ua-parser-js from 1.0.2 to 1.0.33 in /client
dependabot[bot] May 19, 2023
dae0938
Merge pull request #10 from sarvex/dependabot/npm_and_yarn/client/ua-…
sarvex May 19, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
chore(deps): bump vm2 from 3.9.11 to 3.9.19 in /client 
Bumps [vm2](https://github.com/patriksimek/vm2) from 3.9.11 to 3.9.19.
- [Release notes](https://github.com/patriksimek/vm2/releases)
- [Changelog](https://github.com/patriksimek/vm2/blob/master/CHANGELOG.md)
- [Commits](patriksimek/vm2@3.9.11...3.9.19)

---
updated-dependencies:
- dependency-name: vm2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot[bot] authored May 19, 2023

Verified

This commit was signed with the committer’s verified signature.
classicrocker883 Andrew
GPG key ID: 11D10A09D3B1FFC2
Verified
Learn about vigilant mode
commit 9584eeade233795e41e522e0da29fdadb8a4edee
6 changes: 3 additions & 3 deletions client/yarn.lock
View file
Original file line number Diff line number Diff line change
@@ -19535,14 +19535,14 @@ __metadata:
linkType: hard

"vm2@npm:^3.9.8":
version: 3.9.11
resolution: "vm2@npm:3.9.11"
version: 3.9.19
resolution: "vm2@npm:3.9.19"
dependencies:
acorn: ^8.7.0
acorn-walk: ^8.2.0
bin:
vm2: bin/vm2
checksum: aab39e6e4b59146d24abacd79f490e854a6e058a8b23d93d2be5aca7720778e2605d2cc028ccc4a5f50d3d91b0c38be9a6247a80d2da1a6de09425cc437770b4
checksum: fc6cf553134145cd7bb5246985bf242b056e3fb5ea71e2eef6710b2a5d6c6119cc6bc960435ff62480ee82efb43369be8f4db07b6690916ae7d3b2e714f395d8
languageName: node
linkType: hard