notification-admin icon indicating copy to clipboard operation
notification-admin copied to clipboard

Published 20 hours ago verified publisher icon cds-snc

chore(deps): update dependency chromedriver to v119 [security]

Open renovate[bot] opened this issue 6 months ago • 0 comments

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
chromedriver ^87.0.0 -> ^119.0.0 age adoption passing confidence

Review

  • [ ] Updates have been tested and work
  • [ ] If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

GitHub Vulnerability Alerts

CVE-2023-26156

Versions of the package chromedriver before 119.0.1 are vulnerable to Command Injection when setting the chromedriver.path to an arbitrary system binary. This could lead to unauthorized access and potentially malicious actions on the host system.

Note:

An attacker must have access to the system running the vulnerable chromedriver library to exploit it. The success of exploitation also depends on the permissions and privileges of the process running chromedriver.

Release Notes

giggio/node-chromedriver (chromedriver)

v119.0.1

Compare Source

v119.0.0

Compare Source

v118.0.1

Compare Source

v118.0.0

Compare Source

v117.0.3

Compare Source

v117.0.2

Compare Source

v117.0.1

Compare Source

v117.0.0

Compare Source

v116.0.0

Compare Source

v115.0.1

Compare Source

v115.0.0

Compare Source

v114.0.3

Compare Source

v114.0.2

Compare Source

v114.0.1

Compare Source

v114.0.0

Compare Source

v113.0.0

Compare Source

v112.0.1

Compare Source

v112.0.0

Compare Source

v111.0.0

Compare Source

v110.0.0

Compare Source

v109.0.0

Compare Source

v108.0.0

Compare Source

v107.0.3

Compare Source

v107.0.2

Compare Source

v107.0.1

Compare Source

v107.0.0

Compare Source

v106.0.1

Compare Source

v106.0.0

Compare Source

v105.0.1

Compare Source

v105.0.0

Compare Source

v104.0.0

Compare Source

v103.0.0

Compare Source

v102.0.0

Compare Source

v101.0.0

Compare Source

v100.0.0

Compare Source

v99.0.0

Compare Source

v98.0.1

Compare Source

v98.0.0

Compare Source

v97.0.4

Compare Source

v97.0.3

Compare Source

v97.0.2

Compare Source

v97.0.1

Compare Source

v97.0.0

Compare Source

v96.0.0

Compare Source

v95.0.0

Compare Source

v94.0.0

Compare Source

v93.0.1

Compare Source

v93.0.0

Compare Source

v92.0.2

Compare Source

v92.0.1

Compare Source

v92.0.0

Compare Source

v91.0.1

Compare Source

v91.0.0

Compare Source

v90.0.1

Compare Source

v90.0.0

Compare Source

v89.0.0

Compare Source

v88.0.0

Compare Source

Configuration

📅 Schedule: Branch creation - "" in timezone America/Montreal, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Aug 06 '24 08:08 renovate[bot]