v3-utility-library

v3-utility-library copied to clipboard

Bumps [ws](https://github.com/websockets/ws) from 7.2.3 to 7.4.6. Release notes Sourced from ws's releases. 7.4.6 Bug fixes Fixed a ReDoS vulnerability (00c425ec). A specially crafted value of the Sec-Websocket-Protocol header could be...

dependabot[bot]

Bumps [ws](https://github.com/websockets/ws) from 7.2.3 to 7.5.0. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. ReDoS in Sec-Websocket-Protocol header Impact A specially crafted value of...

dependabot-preview[bot]

Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.8.2 to 4.16.6. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in browserslist The package...

dependabot-preview[bot]

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.5 to 2.8.9. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in hosted-git-info The npm...

dependabot-preview[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Command Injection in lodash lodash versions prior to 4.17.21...

dependabot-preview[bot]

Bumps [underscore](https://github.com/jashkenas/underscore) from 1.9.1 to 1.13.1. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary Code Execution in underscore The package underscore from...

dependabot-preview[bot]

Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.7.6 to 4.7.7. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Remote code execution in handlebars when compiling templates The...

dependabot-preview[bot]

Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDoS) npm ssri 5.2.2-6.0.1...

dependabot-preview[bot]

Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution Overview The npm package y18n before versions...

dependabot-preview[bot]

build(deps): bump ini from 1.3.5 to 1.3.8

1

Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. Commits a2c5da8 1.3.8 af5c6bb Do not use Object.create(null) 8b648a1 don't test where our devdeps don't even work c74c8af 1.3.7 024b8b5 update deps, add linting...

dependabot[bot]