cla-bot
cla-bot copied to clipboard
finos
cla-bot is a GitHub bot for automation of Contributor Licence Agreements (CLAs).
Hi @ColinEberhardt - since the codebase is currently not maintained, I wonder if we want to archive this project, at least until someone - whose intention is to use cla-bot...
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [handlebars](http://www.handlebarsjs.com/) ([source](https://togithub.com/wycats/handlebars.js)) | dependencies | minor | [`4.4.2` -> `4.7.4`](https://renovatebot.com/diffs/npm/handlebars/4.4.2/4.7.4) | By merging...
![mend-for-github-com[bot] avatar](https://avatars.githubusercontent.com/in/30796?v=4 "mend-for-github-com[bot] avatar"){kind=avatar}
It looks like if you have the 1. merge queue feature enabled for your repo 2. cla-bot configured 3. add the `verification/cla-signed` action as required Then once a PR is...
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [aws-sdk](https://togithub.com/aws/aws-sdk-js) | dependencies | minor | [`2.280.1` -> `2.814.0`](https://renovatebot.com/diffs/npm/aws-sdk/2.280.1/2.814.0) | By merging this...
It appears using an emoji like 🖋️ causes the cla-bot to instead use the default
It's common for most every PR in a repo to be cla signed, with only the occasional 3rd party contribution not being signed. In these cases it'd be ideal if...
## CVE-2020-28472 - High Severity Vulnerability Vulnerable Library - aws-sdk-2.280.1.tgz AWS SDK for JavaScript Library home page: https://registry.npmjs.org/aws-sdk/-/aws-sdk-2.280.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/aws-sdk/package.json Dependency Hierarchy:...
## CVE-2021-23383 - High Severity Vulnerability Vulnerable Library - handlebars-4.4.2.tgz Handlebars provides the power necessary to let you build semantic templates effectively with no frustration Library home page: https://registry.npmjs.org/handlebars/-/handlebars-4.4.2.tgz Path...
## CVE-2020-15366 - Medium Severity Vulnerability Vulnerable Library - ajv-5.5.2.tgz Another JSON Schema Validator Library home page: https://registry.npmjs.org/ajv/-/ajv-5.5.2.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/har-validator/node_modules/ajv/package.json Dependency Hierarchy:...
## CVE-2019-20920 - High Severity Vulnerability Vulnerable Library - handlebars-4.4.2.tgz Handlebars provides the power necessary to let you build semantic templates effectively with no frustration Library home page: https://registry.npmjs.org/handlebars/-/handlebars-4.4.2.tgz Path...