render-vendor

render-vendor copied to clipboard

Bumps [qs](https://github.com/ljharb/qs) from 6.3.2 to 6.3.3. Changelog Sourced from qs's changelog. 6.3.3 [Fix] parse: ignore __proto__ keys (#428) [Fix] fix for an impossible situation: when the formatter is called with...

dependabot[bot]

Bumps [pathval](https://github.com/chaijs/pathval) from 1.1.0 to 1.1.1. Release notes Sourced from pathval's releases. v1.1.1 Fixes a security issue around prototype pollution. Commits db6c3e3 chore: v1.1.1 7859e0e Merge pull request #60 from...

dependabot[bot]

Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [tar](https://github.com/npm/node-tar) from 2.2.1 to 2.2.2. Commits 523c5c7 2.2.2 7ecef07 Bump fstream to fix hardlink overwriting vulnerability 9fc84b9 Use {} for hardlink tracking instead of [] 15e59f1 Only track previously...

dependabot[bot]

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.5.0 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 2.8.8 (2020-02-29) Bug Fixes #61 & #65...

dependabot[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.4 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]

Bumps [ini](https://github.com/isaacs/ini) from 1.3.4 to 1.3.7. Commits c74c8af 1.3.7 024b8b5 update deps, add linting 032fbaf Use Object.create(null) to avoid default object property hazards 2da9039 1.3.6 cfea636 better git push script,...

dependabot[bot]

Bumps [puppeteer](https://github.com/puppeteer/puppeteer) from 0.12.0 to 1.13.0. Release notes Sourced from puppeteer's releases. v1.13.0 Big Changes Chromium 74.0.3723.0 (r637110) API Changes No API changes. Bug Fixes #3762 - uploadFile in puppeteer-firefox...

dependabot[bot]

Bumps [https-proxy-agent](https://github.com/TooTallNate/node-https-proxy-agent) from 2.1.0 to 2.2.4. Release notes Sourced from https-proxy-agent's releases. 2.2.4 Patches Add .editorconfig file: a0d4a20458498fc31e5721471bd2b655e992d44b Add .eslintrc.js file: eecea74a1db1c943eaa4f667a561fd47c33da897 Use a net.Socket instead of a plain EventEmitter...

dependabot[bot]

Bumps [ws](https://github.com/websockets/ws) from 3.2.0 to 3.3.3. Release notes *Sourced from [ws's releases](https://github.com/websockets/ws/releases).* > ## 3.3.3 > # Bug fixes > > - `net.Socket` errors are no longer swallowed (beff620). >...

dependabot[bot]