urlite

urlite copied to clipboard

Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2. Release notes Sourced from json5's releases. v1.0.2 Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a...

dependabot[bot]

Bumps [json5](https://github.com/json5/json5) to 2.2.3 and updates ancestor dependencies [json5](https://github.com/json5/json5), [karma-webpack](https://github.com/webpack-contrib/karma-webpack) and [webpack](https://github.com/webpack/webpack). These dependencies need to be updated together. Updates `json5` from 2.2.0 to 2.2.3 Release notes Sourced from json5's...

dependabot[bot]

Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases. v0.2.2 Prevent overwriting previously decoded tokens 980e0bf https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2 v0.2.1 Switch to GitHub workflows 76abc93 Fix issue where decode...

dependabot[bot]

Bumps [engine.io](https://github.com/socketio/engine.io) from 6.2.0 to 6.2.1. Release notes Sourced from engine.io's releases. 6.2.1 :warning: This release contains an important security fix :warning: A malicious client could send a specially crafted...

dependabot[bot]

Bumps [loader-utils](https://github.com/webpack/loader-utils) from 1.4.0 to 1.4.2. Release notes Sourced from loader-utils's releases. v1.4.2 1.4.2 (2022-11-11) Bug Fixes ReDoS problem (#226) (17cbf8f) v1.4.1 1.4.1 (2022-11-07) Bug Fixes security problem (#220) (4504e34)...

dependabot[bot]

Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 4.0.4 to 4.0.5. Release notes Sourced from socket.io-parser's releases. 4.0.5 Bug Fixes check the format of the index of each attachment (b559f05) Links Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5 Changelog Sourced...

dependabot[bot]

Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1. Changelog Sourced from terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) Commits See full diff in compare...

dependabot[bot]

Hello 👋 I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@kevin-mizu) has found a potential issue, which I would be eager to share with...

JamieSlome

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 Commits 8d4b369 chore(release): 2.8.9 29adfe5 fix: backport...

dependabot[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.20 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]