Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency chromedriver to v119 [security] #1921

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency chromedriver to v119 [security] #1921

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 6, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
chromedriver ^87.0.0 -> ^119.0.0 age adoption passing confidence

Review

  • Updates have been tested and work
  • If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

GitHub Vulnerability Alerts

CVE-2023-26156

Versions of the package chromedriver before 119.0.1 are vulnerable to Command Injection when setting the chromedriver.path to an arbitrary system binary. This could lead to unauthorized access and potentially malicious actions on the host system.

Note:

An attacker must have access to the system running the vulnerable chromedriver library to exploit it. The success of exploitation also depends on the permissions and privileges of the process running chromedriver.

Release Notes

giggio/node-chromedriver (chromedriver)

v119.0.1

Compare Source

v119.0.0

Compare Source

v118.0.1

Compare Source

v118.0.0

Compare Source

v117.0.3

Compare Source

v117.0.2

Compare Source

v117.0.1

Compare Source

v117.0.0

Compare Source

v116.0.0

Compare Source

v115.0.1

Compare Source

v115.0.0

Compare Source

v114.0.3

Compare Source

v114.0.2

Compare Source

v114.0.1

Compare Source

v114.0.0

Compare Source

v113.0.0

Compare Source

v112.0.1

Compare Source

v112.0.0

Compare Source

v111.0.0

Compare Source

v110.0.0

Compare Source

v109.0.0

Compare Source

v108.0.0

Compare Source

v107.0.3

Compare Source

v107.0.2

Compare Source

v107.0.1

Compare Source

v107.0.0

Compare Source

v106.0.1

Compare Source

v106.0.0

Compare Source

v105.0.1

Compare Source

v105.0.0

Compare Source

v104.0.0

Compare Source

v103.0.0

Compare Source

v102.0.0

Compare Source

v101.0.0

Compare Source

v100.0.0

Compare Source

v99.0.0

Compare Source

v98.0.1

Compare Source

v98.0.0

Compare Source

v97.0.4

Compare Source

v97.0.3

Compare Source

v97.0.2

Compare Source

v97.0.1

Compare Source

v97.0.0

Compare Source

v96.0.0

Compare Source

v95.0.0

Compare Source

v94.0.0

Compare Source

v93.0.1

Compare Source

v93.0.0

Compare Source

v92.0.2

Compare Source

v92.0.1

Compare Source

v92.0.0

Compare Source

v91.0.1

Compare Source

v91.0.0

Compare Source

v90.0.1

Compare Source

v90.0.0

Compare Source

v89.0.0

Compare Source

v88.0.0

Compare Source

Configuration

📅 Schedule: Branch creation - "" in timezone America/Montreal, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from 3d7a4ff to 5a1e598 Compare August 12, 2024 19:03
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from 16b2bd2 to a691ea9 Compare August 22, 2024 20:06
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 7 times, most recently from b781dad to f9268cf Compare September 3, 2024 15:26
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from 6b6c93a to be82fc8 Compare September 10, 2024 18:32
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 8 times, most recently from 1400826 to cfc8982 Compare September 19, 2024 13:55
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from fa3b63b to 04e2262 Compare September 23, 2024 11:43
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from ee1e2fe to 83bda8b Compare October 10, 2024 15:12
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from bba0392 to 854453b Compare October 22, 2024 15:39
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 5 times, most recently from ccacb05 to 511186c Compare October 30, 2024 13:55
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 5 times, most recently from 3e2131d to 3075b60 Compare November 5, 2024 19:37
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 5 times, most recently from 87f7f88 to c903fca Compare November 14, 2024 16:25
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 5 times, most recently from dd7b05e to 6d148e2 Compare November 20, 2024 19:54
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 6d148e2 to 4835554 Compare November 21, 2024 19:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Dependencies Renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants