briangonzalez.org

briangonzalez.org copied to clipboard

Bumps [moment](https://github.com/moment/moment) from 2.17.1 to 2.29.2. Changelog Sourced from moment's changelog. 2.29.2 See full changelog Release Apr 3 2022 Address https://github.com/advisories/GHSA-8hfj-j24r-96c4 2.29.1 See full changelog Release Oct 6, 2020 Updated...

dependabot[bot]

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.1.5 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 2.8.8 (2020-02-29) Bug Fixes #61 & #65...

dependabot[bot]

Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.6 to 4.7.7. Changelog Sourced from handlebars's changelog. v4.7.7 - February 15th, 2021 fix weird error in integration tests - eb860c0 fix: check prototype property access in...

dependabot[bot]

Bumps [y18n](https://github.com/yargs/y18n) from 3.2.1 to 3.2.2. Commits See full diff in compare view Maintainer changes This version was pushed to npm by oss-bot, a new releaser for y18n since your...

dependabot[bot]

Bumps [ini](https://github.com/isaacs/ini) from 1.3.4 to 1.3.7. Commits c74c8af 1.3.7 024b8b5 update deps, add linting 032fbaf Use Object.create(null) to avoid default object property hazards 2da9039 1.3.6 cfea636 better git push script,...

dependabot[bot]

Bumps [highlight.js](https://github.com/highlightjs/highlight.js) from 9.9.0 to 9.18.5. Release notes Sourced from highlight.js's releases. 10.3.2 - Oops, "Javascript". Tiny tiny release, just to fix the website incorrectly not listing Javascript in the...

dependabot[bot]

Bumps [morgan](https://github.com/expressjs/morgan) from 1.7.0 to 1.9.1. Release notes *Sourced from [morgan's releases](https://github.com/expressjs/morgan/releases).* > ## 1.9.1 > * Fix using special characters in format > * deps: depd@~1.1.2 > - perf:...

dependabot[bot]

Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.0 to 1.2.1. Commits - [`b31e67f`](https://github.com/yeikos/js.merge/commit/b31e67fe6592390c967c991aa604c06ed2ae8c4f) link broken - [`6ad6035`](https://github.com/yeikos/js.merge/commit/6ad6035b901b3d680beac82de39ca83a93885246) Fix prototype pollution - See full diff in [compare view](https://github.com/yeikos/js.merge/compare/v1.2.0...v1.2.1) [](https://help.github.com/articles/configuring-automated-security-fixes) Dependabot will resolve any...

dependabot[bot]

Bumps [tar](https://github.com/npm/node-tar) from 2.2.1 to 2.2.2. Commits - [`523c5c7`](https://github.com/npm/node-tar/commit/523c5c7fef48b10811fccd12b42803c61b6aead8) 2.2.2 - [`7ecef07`](https://github.com/npm/node-tar/commit/7ecef07da6a9e72cc0c4d0c9c6a8e85b6b52395d) Bump fstream to fix hardlink overwriting vulnerability - [`9fc84b9`](https://github.com/npm/node-tar/commit/9fc84b9c596c3589d4c1ab050843de0eafb002e8) Use {} for hardlink tracking instead of [] -...

dependabot[bot]

Bumps [stringstream](https://github.com/mhart/StringStream) from 0.0.5 to 0.0.6. Commits - [`fee31c5`](https://github.com/mhart/StringStream/commit/fee31c5c4a5efc7c7cc2fde4aee633dedefd6d67) 0.0.6 - [`2f4a9d4`](https://github.com/mhart/StringStream/commit/2f4a9d496f94b0880e01a26857aa266a5a3ef274) Merge pull request [#9](https://github-redirect.dependabot.com/mhart/StringStream/issues/9) from mhart/fix-buffer-constructor-vuln - [`afbc744`](https://github.com/mhart/StringStream/commit/afbc7442220358419e330618e47f3a65fc265b1b) Ensure data is not a number in Buffer constructor -...

dependabot[bot]