chore(deps): update dependency node-sass to v7 [security] by renovate[bot] · Pull Request #593 · coljs/medellinjs

renovate · 2022-06-18T16:39:23Z

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
node-sass	`6.0.0` -> `7.0.0`

GitHub Vulnerability Alerts

CVE-2020-24025

Certificate validation in node-sass 2.0.0 to 6.0.1 is disabled when requesting binaries even if the user is not specifying an alternative download path.

Release Notes

sass/node-sass

`v7.0.0`

Compare Source

Breaking changes

Drop support for Node 15 (@nschonni)
Set rejectUnauthorized to true by default (@scott-ut, #3149)

Features

Add support for Node 17 (@nschonni)

Dependencies

Bump eslint from 7.32.0 to 8.0.0 (@nschonni, #3191)
Bump fs-extra from 0.30.0 to 10.0.0 (@nschonni, #3102)
Bump npmlog from 4.1.2 to 5.0.0 (@nschonni, #3156)
Bump chalk from 1.1.3 to 4.1.2 (@nschonni, #3161)

Community

Remove double word "support" from documentation (@pzrq, #3159)

Misc

Bump various GitHub Actions dependencies (@nschonni)

Supported Environments

OS	Architecture	Node
Windows	x86 & x64	12, 14, 16, 17
OSX	x64	12, 14, 16, 17
Linux*	x64	12, 14, 16, 17
Alpine Linux	x64	12, 14, 16, 17
FreeBSD	i386 amd64	12, 14

*Linux support refers to major distributions like Ubuntu, and Debian

`v6.0.1`

Compare Source

Dependencies

Remove mkdirp (@jimmywarting, #3108)
Bump meow to 9.0.0 (@ykolbin, #3125)
Bump mocha to 9.0.1 (@xzyfer, #3134)

Misc

Use default Apline version from docker-node (@nschonni, #3121)

Supported Environments

OS	Architecture	Node
Windows	x86 & x64	12, 14, 15, 16
OSX	x64	12, 14, 15, 16
Linux*	x64	12, 14, 15, 16
Alpine Linux	x64	12, 14, 15, 16
FreeBSD	i386 amd64	12, 14, 15

*Linux support refers to major distributions like Ubuntu, and Debian

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

chore(deps): update dependency node-sass to 7.0.0 [security]

a3c0a7b

renovate bot changed the title ~~Update dependency node-sass to 7.0.0 [SECURITY]~~ chore(deps): update dependency node-sass to 7.0.0 [security] Mar 17, 2023

renovate bot force-pushed the renovate/npm-node-sass-vulnerability branch from 1386533 to a3c0a7b Compare March 17, 2023 04:21

renovate bot changed the title ~~chore(deps): update dependency node-sass to 7.0.0 [security]~~ chore(deps): update dependency node-sass to v7 [security] Mar 24, 2023

khriztianmoreno closed this Mar 30, 2023

khriztianmoreno deleted the renovate/npm-node-sass-vulnerability branch January 29, 2024 13:28

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update dependency node-sass to v7 [security]#593

chore(deps): update dependency node-sass to v7 [security]#593
renovate[bot] wants to merge 1 commit intodevelopfrom
renovate/npm-node-sass-vulnerability

renovate bot commented Jun 18, 2022 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate bot commented Jun 18, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

CVE-2020-24025

Release Notes

v7.0.0

Breaking changes

Features

Dependencies

Community

Misc

Supported Environments

v6.0.1

Dependencies

Misc

Supported Environments

Configuration

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate bot commented Jun 18, 2022 •

edited

Loading

`v7.0.0`

`v6.0.1`