Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency codemirror to 5.58.2 [security] #489

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): update dependency codemirror to 5.58.2 [security] #489

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented May 10, 2021
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Change
codemirror 5.49.2 -> 5.58.2

GitHub Vulnerability Alerts

CVE-2020-7760

This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2.
The vulnerable regular expression is located in https://github.com/codemirror/CodeMirror/blob/cdb228ac736369c685865b122b736cd0d397836c/mode/javascript/javascript.jsL129. The ReDOS vulnerability of the regex is mainly due to the sub-pattern (s|/.?/)

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@TDSBot
Copy link

TDSBot commented May 10, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot changed the title chore(deps): update dependency codemirror to 5.58.2 [security] chore(deps): update dependency codemirror to 5.58.2 [security] - autoclosed May 26, 2021
@renovate renovate bot closed this May 26, 2021
@renovate renovate bot deleted the renovate/npm-codemirror-vulnerability branch May 26, 2021 20:15
@renovate renovate bot changed the title chore(deps): update dependency codemirror to 5.58.2 [security] - autoclosed chore(deps): update dependency codemirror to 5.58.2 [security] May 26, 2021
@renovate renovate bot reopened this May 26, 2021
@renovate renovate bot restored the renovate/npm-codemirror-vulnerability branch May 26, 2021 22:30
@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 38bacd5 to 907ff1c Compare May 26, 2021 22:34
@TDSBot
Copy link

TDSBot commented May 26, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 907ff1c to 3f3563c Compare June 4, 2021 19:33
@TDSBot
Copy link

TDSBot commented Jun 4, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 3f3563c to 6861e57 Compare June 4, 2021 21:22
@TDSBot
Copy link

TDSBot commented Jun 4, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 6861e57 to 4ace668 Compare June 8, 2021 23:20
@TDSBot
Copy link

TDSBot commented Jun 8, 2021 

Packages pending updates:

- @tds/community-optimize-image: 1.0.1 => 1.1.0

If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 4ace668 to d964a77 Compare June 10, 2021 17:02
@TDSBot
Copy link

TDSBot commented Jun 10, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from d964a77 to 3aaa274 Compare June 22, 2021 15:23
@TDSBot
Copy link

TDSBot commented Jun 22, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 3aaa274 to d074f90 Compare June 22, 2021 16:22
@TDSBot
Copy link

TDSBot commented Jun 22, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from d074f90 to f191c63 Compare June 28, 2021 16:44
@TDSBot
Copy link

TDSBot commented Jun 28, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from f191c63 to e8a4dfb Compare June 29, 2021 15:09
@TDSBot
Copy link

TDSBot commented Jun 29, 2021 

Packages pending updates:

- @tds/community-story-card: 1.0.1 => 1.0.2

If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from e8a4dfb to 2838b5f Compare June 29, 2021 16:09
@TDSBot
Copy link

TDSBot commented Jun 29, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 3c34cae to 396f846 Compare July 21, 2021 16:18
@TDSBot
Copy link

TDSBot commented Jul 21, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 396f846 to 05f475c Compare September 9, 2021 19:24
@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 05f475c to b0e700d Compare September 21, 2021 18:40
@TDSBot
Copy link

TDSBot commented Sep 21, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from b0e700d to 715517c Compare September 21, 2021 19:40
@TDSBot
Copy link

TDSBot commented Sep 21, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 715517c to 00f3829 Compare October 13, 2021 20:35
@TDSBot
Copy link

TDSBot commented Oct 13, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 00f3829 to 0638a26 Compare October 19, 2021 00:28
@TDSBot
Copy link

TDSBot commented Oct 19, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 0638a26 to 1893b3b Compare October 21, 2021 20:25
@TDSBot
Copy link

TDSBot commented Oct 21, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 1893b3b to 4096758 Compare October 21, 2021 21:25
@TDSBot
Copy link

TDSBot commented Oct 21, 2021 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 4096758 to ff6c65a Compare March 7, 2022 08:07
@TDSBot
Copy link

TDSBot commented Mar 7, 2022 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot changed the title chore(deps): update dependency codemirror to 5.58.2 [security] chore(deps): update dependency codemirror to 5.58.2 [security] - autoclosed Mar 12, 2022
@renovate renovate bot closed this Mar 12, 2022
@renovate renovate bot deleted the renovate/npm-codemirror-vulnerability branch March 12, 2022 00:42
@renovate renovate bot changed the title chore(deps): update dependency codemirror to 5.58.2 [security] - autoclosed chore(deps): update dependency codemirror to 5.58.2 [security] Mar 15, 2022
@renovate renovate bot reopened this Mar 15, 2022
@renovate renovate bot restored the renovate/npm-codemirror-vulnerability branch March 15, 2022 18:30
@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from ff6c65a to 36628bc Compare April 11, 2022 17:13
@github-actions
Copy link 

Packages pending updates:


If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from 36628bc to e4d6401 Compare September 25, 2022 22:18
@github-actions
Copy link 

Packages pending updates:

- @tds/community-date-picker: 1.1.0 => 1.1.1

If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

@renovate renovate bot force-pushed the renovate/npm-codemirror-vulnerability branch from e4d6401 to 7e5c256 Compare November 22, 2022 18:20
@github-actions
Copy link 

Packages pending updates:

- @tds/community-date-picker: 1.1.0 => 1.1.1
- @tds/community-mini-expand-collapse: 0.3.0 => 0.3.1
- @tds/community-skeleton-provider: 2.3.2 => 2.3.3

If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@TDSBot