gitbackup

gitbackup copied to clipboard

Bump execa from 4.0.0 to 5.1.1

1

Bumps [execa](https://github.com/sindresorhus/execa) from 4.0.0 to 5.1.1. Release notes Sourced from execa's releases. v5.1.1 Fix error message when user passes a single array argument (#468) 2b9c0e1 https://github.com/sindresorhus/execa/compare/v5.1.0...v5.1.1 v5.1.0 Add .escapedCommand property...

dependabot-preview[bot]

[Security] Bump hosted-git-info from 2.8.4 to 2.8.9

1

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.4 to 2.8.9. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in hosted-git-info The npm...

dependabot-preview[bot]

[Security] Bump y18n from 4.0.0 to 4.0.3

2

Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution Overview The npm package y18n before versions...

dependabot-preview[bot]

[Security] Bump lodash from 4.17.15 to 4.17.21

1

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution in lodash Versions of lodash prior to 4.17.19...

dependabot-preview[bot]

[Security] Bump handlebars from 4.5.3 to 4.7.7

1

Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.5.3 to 4.7.7. **This update includes a security fix.** Vulnerabilities fixed Sourced from The Node Security Working Group. Denial of Service Crash Node.js process from handlebars using...

dependabot-preview[bot]

[Security] Bump elliptic from 6.5.2 to 6.5.4

1

Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.4. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Signature Malleabillity in elliptic The Elliptic package before version...

dependabot-preview[bot]

[Security] Bump axios from 0.19.0 to 0.21.1

2

Bumps [axios](https://github.com/axios/axios) from 0.19.0 to 0.21.1. Release notes Sourced from axios's releases. v0.21.0 0.21.0 (October 23, 2020) Fixes and Functionality: Fixing requestHeaders.Authorization (#3287) Fixing node types (#3237) Fixing axios.delete ignores...

dependabot-preview[bot]

[Security] Bump ini from 1.3.5 to 1.3.8

1

Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution Overview The ini npm package before version...

dependabot-preview[bot]

Bumps [browserify](https://github.com/browserify/browserify) from 16.5.0 to 17.0.0. Release notes Sourced from browserify's releases. v17.0.0 Upgrade events to v3.x. EventEmitter instances now have an off() method. require('events').once can be used to react...

dependabot-preview[bot]

[Security] Bump dot-prop from 4.2.0 to 4.2.1

1

Bumps [dot-prop](https://github.com/sindresorhus/dot-prop) from 4.2.0 to 4.2.1. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution in dot-prop Prototype pollution vulnerability in dot-prop...

dependabot-preview[bot]