bitters issues

[Security] Bump tar from 4.4.13 to 4.4.15

Bumps [tar](https://github.com/npm/node-tar) from 4.4.13 to 4.4.15. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization Impact...

dependabot-preview[bot]

dependencies

security

[Security] Bump color-string from 1.5.3 to 1.6.0

Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDOS) A Regular Expression...

dependabot-preview[bot]

dependencies

security

[Security] Bump browserslist from 4.6.2 to 4.16.6

Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.6.2 to 4.16.6. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in browserslist The package...

dependabot-preview[bot]

dependencies

security

[Security] Bump dot-prop from 4.2.0 to 4.2.1

Bumps [dot-prop](https://github.com/sindresorhus/dot-prop) from 4.2.0 to 4.2.1. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution in dot-prop Prototype pollution vulnerability in dot-prop...

dependabot-preview[bot]

dependencies

security

Bump sass from 1.26.5 to 1.36.0

Bumps [sass](https://github.com/sass/dart-sass) from 1.26.5 to 1.36.0. Release notes Sourced from sass's releases. Dart Sass 1.36.0 To install Sass 1.36.0, download one of the packages below and add it to your...

dependabot-preview[bot]

dependencies

[Security] Bump ws from 5.2.2 to 5.2.3

Bumps [ws](https://github.com/websockets/ws) from 5.2.2 to 5.2.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. ReDoS in Sec-Websocket-Protocol header Impact A specially crafted value...

dependabot-preview[bot]

dependencies

security

[Security] Bump hosted-git-info from 2.4.2 to 2.8.9

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.4.2 to 2.8.9. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in hosted-git-info The npm...

dependabot-preview[bot]

dependencies

security

[Security] Bump y18n from 4.0.0 to 4.0.3

Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution Overview The npm package y18n before versions...

dependabot-preview[bot]

dependencies

security

Bump parcel-bundler from 1.12.4 to 1.12.5

Bumps [parcel-bundler](https://github.com/parcel-bundler/parcel) from 1.12.4 to 1.12.5. Commits e11f085 Publish 3ea0373 Pass babel core version to preset-env da642ab Update babel 4543d19 Node forge update (#5521) 939ce41 Fix #3619 by scripting the...

dependabot-preview[bot]

dependencies

[Security] Bump lodash from 4.17.14 to 4.17.21

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.14 to 4.17.21. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution in lodash Versions of lodash prior to 4.17.19...

dependabot-preview[bot]

dependencies

security

bitters
bitters copied to clipboard

Metadata

[Security] Bump tar from 4.4.13 to 4.4.15

[Security] Bump color-string from 1.5.3 to 1.6.0

[Security] Bump browserslist from 4.6.2 to 4.16.6

[Security] Bump dot-prop from 4.2.0 to 4.2.1

Bump sass from 1.26.5 to 1.36.0

[Security] Bump ws from 5.2.2 to 5.2.3

[Security] Bump hosted-git-info from 2.4.2 to 2.8.9

[Security] Bump y18n from 4.0.0 to 4.0.3

Bump parcel-bundler from 1.12.4 to 1.12.5

[Security] Bump lodash from 4.17.14 to 4.17.21

← Metadata

Owner

Metadata

bitters bitters copied to clipboard

Metadata

← Metadata

Owner

Metadata

bitters
bitters copied to clipboard