proton
proton copied to clipboard
steventhanna
A stand-alone application to quickly preview and edit Markdown files using Electron.
Bumps [electron](https://github.com/electron/electron) from 11.2.1 to 15.5.5. Release notes Sourced from electron's releases. electron v15.5.5 Release Notes for v15.5.5 Other Changes Backported fix for CVE-2022-1482. #34040 Backported fix for CVE-2022-1483. #34009...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Our security team found a security issue inside Proton v0.2.0. We have reserved the CVE-2022-25224 to refer to this issue. Attached below is the link to our responsible disclosure policy....
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
Bumps [plist](https://github.com/TooTallNate/node-plist) from 3.0.1 to 3.0.4. Changelog Sourced from plist's changelog. 3.0.4 / 2021-08-27 inline [email protected] to eliminate security warning false positive (Mike Reinstein) 3.0.3 / 2021-08-04 update xmldom to...
Bumps [marked](https://github.com/markedjs/marked) from 1.2.8 to 4.0.10. Release notes Sourced from marked's releases. v4.0.10 4.0.10 (2022-01-13) Bug Fixes security: fix redos vulnerabilities (8f80657) v4.0.9 4.0.9 (2022-01-06) Bug Fixes retain line breaks...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [normalize-url](https://github.com/sindresorhus/normalize-url) from 4.5.0 to 4.5.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.20 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 Commits 8d4b369 chore(release): 2.8.9 29adfe5 fix: backport...
Seems to be a node modules issue... Will have to look into this. Currently this is broken on all platforms, but built locally works fine.
Metadata
Owner
Metadata
A stand-alone application to quickly preview and edit Markdown files using Electron.