Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency node-fetch to 2.6.7 [security] #69

Merged
merged 2 commits into from
Feb 12, 2022
Merged

chore(deps): update dependency node-fetch to 2.6.7 [security] #69

merged 2 commits into from
Feb 12, 2022

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Feb 9, 2022
edited
Loading

WhiteSource Renovate

This PR contains the following updates:

Package Change
node-fetch 2.6.6 -> 2.6.7

GitHub Vulnerability Alerts

CVE-2022-0235

node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by WhiteSource Renovate. View repository job log here.

@renovate renovate bot requested a review from roikoren755 as a code owner February 9, 2022 09:16
@changeset-bot
Copy link

changeset-bot bot commented Feb 9, 2022
edited
Loading

🦋 Changeset detected

Latest commit: fb79522

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package
Name Type
eslint-plugin-es-roikoren Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@codecov
Copy link

codecov bot commented Feb 9, 2022
edited
Loading

Codecov Report

Merging #69 (fb79522) into main (1b019d5) will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##             main      #69   +/-   ##
=======================================
  Coverage   95.42%   95.42%           
=======================================
  Files         162      162           
  Lines        1290     1290           
  Branches      140      140           
=======================================
  Hits         1231     1231           
  Misses         14       14           
  Partials       45       45

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 1b019d5...fb79522. Read the comment docs.

@renovate renovate bot force-pushed the renovate/npm-node-fetch-vulnerability branch 4 times, most recently from d646c39 to c07fc3c Compare February 12, 2022 19:51
@renovate renovate bot force-pushed the renovate/npm-node-fetch-vulnerability branch from c07fc3c to a50669c Compare February 12, 2022 20:02
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@roikoren755 roikoren755 merged commit fa23abf into main Feb 12, 2022
@roikoren755 roikoren755 deleted the renovate/npm-node-fetch-vulnerability branch February 12, 2022 20:07
@roikoren755 roikoren755 mentioned this pull request Feb 12, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@roikoren755 roikoren755 roikoren755 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@roikoren755 @renovate-bot