desktop-wallet
desktop-wallet copied to clipboard
chore(deps): bump vm2 from 3.9.2 to 3.9.11
Bumps vm2 from 3.9.2 to 3.9.11.
Release notes
Sourced from vm2's releases.
3.9.11
New Features
https://github.com/patriksimek/vm2/commit/58478a58c6f4af3c54faf4117ed5ab72d2cc8cd5: Add option
require.strict
to allow to load required modules in non strict mode.Fixes
https://github.com/patriksimek/vm2/commit/d9a7f3cc995d3d861e1380eafb886cb3c5e2b873: Security fix.
3.9.10
New Features
61d240f69cc02974be27c7582fee2defd0e6c7a8: Add
uptime
toprocess
.Fixes
e3e573fdc99a98a9c7db026e4c40474eb78cab4a: Security fix. 245da82dcdfa67031e065fd7c7a7348b5e21f2b8: Fix inspect
showProxy
.3.9.9
Fixes
5c2e13bbf0c0518e1958a4307982a999aa181049: Bump ECMA version to 2022.
3.9.8
Fixes
777ffb0e021ef89444f215a69365a689d7051896: Fix access to some restricted function properties on non functions and fix
findBestExtensionHandler
not finding the best handler. 925e3e665acfa37dd3db0ea8e7f02b57277677e8: Try to return nicer parser errors.3.9.7
Fixes
b7f794dfb3034d2173b9da957f48425adc4081c3: Custom Resolver is allowed to return undefined 568934f58cf72339a3dd2a2c578cc28550c19d27: Fixed some bugs introduced in v3.9.6 b6581b4a9cf9a4706b2967fceb5930a3de4d2ac7: Fixed root path checking
3.9.6
Fixes
532120d5cdec7da8225fc6242e154ebabc63fe4d: Internal restructuring and security improvements
3.9.5
New Features
d9af94ca3a701b9ba6283264fafeef4827786702: Added editor config
Fixes
4f0db94bfa250089d903083fcd6c6cf6cd11b8a9: Fix Promise.then not working
... (truncated)
Changelog
Sourced from vm2's changelog.
v3.9.11 (2022-08-28)
[new] Add option
require.strict
to allow to load required modules in non strict mode.
[fix] Security fix.v3.9.10 (2022-07-05)
[new] Add uptime to process.
[fix] Security fix.
[fix] Fix inspection with showProxy.v3.9.9 (2022-02-24)
[fix] Bump parser ECMA version to 2022.
v3.9.8 (2022-02-16)
[fix] Add function type check for arguments, caller, and callee property check (GeoffRen)
[fix] Fix find best extension handlerv3.9.7 (2022-02-10)
[fix] Allow relative require from base script
[fix] Fix issue with modules with exports clause in package JSON
[fix] Added missing whitelist check before custom require
[fix] Revert plain object toString behavior
[fix] Root path check improvedv3.9.6 (2022-02-08)
[fix] Security fixes (XmiliaH)
v3.9.5 (2021-10-17)
[new] Editor config (aubelsb2)
[fix] Fix for Promise.then breaking
[fix] Fix for missing properties on CallSitev3.9.4 (2021-10-12)
[new] Added strict option
[fix] Security fixes (XmiliaH)
[fix] Fixed bound function causes TypeError (XmiliaH)
[fix] Allow extending of frozen objectsv3.9.3 (2020-04-07)
[fix] Security fixes
[fix] Fixed problems when Promise object is deleted (XmiliaH)
[fix] Fixed oversight that write ability can change on non configurable properties (XmiliaH)
... (truncated)
Commits
392f126
Merge pull request #469 from XmiliaH/release-3.9.11d6379e1
Merge pull request #468 from XmiliaH/fix-46758478a5
Merge pull request #448 from XmiliaH/fix-4426b0b71a
Merge pull request #457 from XmiliaH/fix-45606f8ef0
Finish release 3.9.11d9a7f3c
Fix 467b8314b0
Allow false for require optioncb647c0
Clear up wordinga34b167
Add documentation67c3fd4
Allow to override strict mode setting for modules- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.