From 24231fece2c138b007fc9dab0edd9a133849d450 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 10 Jul 2024 00:59:22 +0000 Subject: [PATCH] chore(deps): update node.js to v20.15.1 (#28) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | OpenSSF | |---|---|---|---|---| | [node](https://togithub.com/nodejs/node) | stage | patch | `20.15.0-bookworm` -> `20.15.1-bookworm` | [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/nodejs/node/badge)](https://securityscorecards.dev/viewer/?uri=github.com/nodejs/node) | --- ### Release Notes
nodejs/node (node) ### [`v20.15.1`](https://togithub.com/nodejs/node/releases/tag/v20.15.1): 2024-07-08, Version 20.15.1 'Iron' (LTS), @​RafaelGSS [Compare Source](https://togithub.com/nodejs/node/compare/v20.15.0...v20.15.1) This is a security release. ##### Notable Changes - CVE-2024-36138 - Bypass incomplete fix of CVE-2024-27980 (High) - CVE-2024-22020 - Bypass network import restriction via data URL (Medium) - CVE-2024-22018 - fs.lstat bypasses permission model (Low) - CVE-2024-36137 - fs.fchown/fchmod bypasses permission model (Low) - CVE-2024-37372 - Permission model improperly processes UNC paths (Low) ##### Commits - \[[`60e184a6e4`](https://togithub.com/nodejs/node/commit/60e184a6e4)] - **lib,esm**: handle bypass network-import via data: (RafaelGSS) [nodejs-private/node-private#522](https://togithub.com/nodejs-private/node-private/pull/522) - \[[`025cbd6936`](https://togithub.com/nodejs/node/commit/025cbd6936)] - **lib,permission**: support fs.lstat (RafaelGSS) [nodejs-private/node-private#486](https://togithub.com/nodejs-private/node-private/pull/486) - \[[`d38ea17341`](https://togithub.com/nodejs/node/commit/d38ea17341)] - **lib,permission**: disable fchmod/fchown when pm enabled (RafaelGSS) [nodejs-private/node-private#584](https://togithub.com/nodejs-private/node-private/pull/584) - \[[`1ba624cd3b`](https://togithub.com/nodejs/node/commit/1ba624cd3b)] - **src**: handle permissive extension on cmd check (RafaelGSS) [nodejs-private/node-private#596](https://togithub.com/nodejs-private/node-private/pull/596) - \[[`2524d00c3d`](https://togithub.com/nodejs/node/commit/2524d00c3d)] - **src,permission**: fix UNC path resolution (RafaelGSS) [nodejs-private/node-private#581](https://togithub.com/nodejs-private/node-private/pull/581) - \[[`484cb0f13c`](https://togithub.com/nodejs/node/commit/484cb0f13c)] - **src,permission**: resolve path on fs_permission (Rafael Gonzaga) [#​52761](https://togithub.com/nodejs/node/pull/52761)
--- ### Configuration 📅 **Schedule**: Branch creation - "after 10pm every weekday,before 5am every weekday,every weekend" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/settlemint/btp-smartcontractsets). Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 814245f..d56e394 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM node:20.15.0-bookworm AS build +FROM node:20.15.1-bookworm AS build RUN --mount=type=cache,sharing=locked,target=/var/cache/apt \ export DEBIAN_FRONTEND=noninteractive && \