Skip to content
This repository has been archived by the owner on Jul 20, 2022. It is now read-only.

Update dependency glob-parent to 5.1.2 [SECURITY] #99

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jun 10, 2021

Mend Renovate

This PR contains the following updates:

Package Change
glob-parent 3.1.0 -> 5.1.2

GitHub Vulnerability Alerts

CVE-2020-28469

This affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator.


Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from e643dd8 to a0356d8 Compare March 7, 2022 10:32
@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from a0356d8 to 9ff5219 Compare March 26, 2022 14:30
@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from 9ff5219 to 765dc26 Compare April 24, 2022 18:41
@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from 765dc26 to 3dcb512 Compare May 15, 2022 22:38
@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from 3dcb512 to 3592e3d Compare June 18, 2022 15:28
@renovate renovate bot force-pushed the renovate/npm-glob-parent-vulnerability branch from 3592e3d to 9ec60e4 Compare June 23, 2022 23:52
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants