docs.hackerone.com
docs.hackerone.com copied to clipboard
Hacker0x01
HackerOne Platform Documentation
Bumps [eslint](https://github.com/eslint/eslint) from 7.32.0 to 8.21.0. Release notes Sourced from eslint's releases. v8.21.0 Features 7b43ea1 feat: Implement FlatESLint (#16149) (Nicholas C. Zakas) 92bf49a feat: improve the key width calculation in...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Upgrade ansi-regex to version 5.0.1 or later. For example: ``` ansi-regex@^5.0.1: version "5.0.1" ``` ansi-regex is vulnerable to Inefficient Regular Expression Complexity
The latest possible version that can be installed is ``1.7.2`` because of the following conflicting dependencies: ``` @fec/[email protected] requires [email protected] via a transitive dependency on [email protected] [email protected] requires [email protected] via...
The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions. upgrade terser to version...
Bumps [terser](https://github.com/terser/terser) from 5.7.1 to 5.14.2. Changelog Sourced from terser's changelog. v5.14.2 Security fix for RegExps that should not be evaluated (regexp DDOS) Source maps improvements (#1211) Performance improvements in...
Bumps [parse-url](https://github.com/IonicaBizau/parse-url) from 6.0.0 to 6.0.2. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [@fec/gatsby-plugin-advanced-feed](https://github.com/florianeckerstorfer/gatsby-plugin-advanced-feed) from 2.0.0 to 3.0.0. Release notes Sourced from @fec/gatsby-plugin-advanced-feed's releases. Version 3.0.0 (1 November 2021) Update to Gatsby v4 Bump minimum version of Node to >=14 Changelog Sourced...
Bumps [node-sass](https://github.com/sass/node-sass) from 6.0.1 to 7.0.1. Release notes Sourced from node-sass's releases. v7.0.1 Dependencies Bump node-gyp from 7.1.2 to 8.4.1 Bump sass-graph from 2.2.5 to 4.0.0 Supported Environments OS Architecture...
Bumps [devcert](https://github.com/davewasmer/devcert) from 1.2.0 to 1.2.1. Commits 1ed164f 1.2.1 b076321 switch from vulnerable VALID_DOMAIN regex to is-valid-domain lib (#79) See full diff in compare view Maintainer changes This version was...