blog
blog copied to clipboard
Timer
Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1. Changelog Sourced from terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) Commits See full diff in compare...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
Bumps [nanoid](https://github.com/ai/nanoid) from 3.1.16 to 3.2.0. Changelog Sourced from nanoid's changelog. Change Log This project adheres to Semantic Versioning. 3.2 Added --size and --alphabet arguments to binary (by Vitaly Baev)....
Bumps [marked](https://github.com/markedjs/marked) from 1.1.0 to 4.0.10. Release notes Sourced from marked's releases. v4.0.10 4.0.10 (2022-01-13) Bug Fixes security: fix redos vulnerabilities (8f80657) v4.0.9 4.0.9 (2022-01-06) Bug Fixes retain line breaks...
Bumps [next](https://github.com/vercel/next.js) from 9.5.6-canary.15 to 11.1.3. Release notes Sourced from next's releases. v11.1.3 See https://github.com/vercel/next.js/releases/v12.0.5 for details about this patch. v11.1.3-canary.105 Core Changes Update swc-minify-enabled link: #30290 Fix middleware header...
Bumps [tar](https://github.com/npm/node-tar) from 6.0.5 to 6.1.11. Commits e573aee 6.1.11 edb8e9a fix: perf regression on hot string munging path a9d9b05 chore(test): Avoid spurious failures packing node_modules/.cache 24b8bda fix(test): use posix path...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2. Changelog Sourced from ssri's changelog. 6.0.2 (2021-04-07) Bug Fixes backport regex change from 8.0.1 (b30dfdb), closes #19 Commits b7c8c7c chore(release): 6.0.2 b30dfdb fix: backport...
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.1. Changelog Sourced from y18n's changelog. Change Log All notable changes to this project will be documented in this file. See standard-version for commit guidelines....