wt-js-sdk icon indicating copy to clipboard operation
wt-js-sdk copied to clipboard
verified publisher icon WeTransfer

chore(deps): update dependency marked to v0.7.0 [security]

Open renovate[bot] opened this issue 5 years ago • 0 comments

This PR contains the following updates:

Package Type Update Change
marked (source) resolutions minor 0.6.1 -> 0.7.0

GitHub Vulnerability Alerts

GHSA-ch52-vgq2-943f

Affected versions of marked are vulnerable to Regular Expression Denial of Service (ReDoS). The _label subrule may significantly degrade parsing performance of malformed input.

Recommendation

Upgrade to version 0.7.0 or later.

Release Notes

markedjs/marked

v0.7.0

Compare Source

Security
Breaking Changes
  • Deprecate sanitize and sanitizer options #​1504
  • Move fences to CommonMark #​1511
  • Move tables to GFM #​1511
  • Remove tables option #​1511
  • Single backtick in link text needs to be escaped #​1515
Fixes
Tests
  • Run tests with correct options #​1511

v0.6.3

Compare Source

Fixes
Docs
DevOps
  • Use latest commit for demo master #​1457
  • Update tests to commonmark 0.29 #​1465
  • Update tests to GFM 0.29 #​1470
  • Fix commonmark spec 57 and 40 (headings) #​1475

v0.6.2

Compare Source

Security
Fixes
Enhancements
  • Pass token boolean to the listitem function #​1440
  • Allow html without \n after #​1438
CLI
  • Update man page to include --test and fix argv parameters #​1442
  • Add a --version flag to print marked version #​1448
Testing

Renovate configuration

:date: Schedule: "" (UTC).

:vertical_traffic_light: Automerge: Disabled by config. Please merge this manually once you are satisfied.

:recycle: Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

:no_bell: Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR has been generated by WhiteSource Renovate. View repository job log here.

renovate[bot] avatar Oct 28 '20 05:10 renovate[bot]