blog
blog copied to clipboard
andrewbranch
Hi Andrew this is the only way i could think to reach out to you. Is this really your upwork account? https://www.upwork.com/ab/profiles/search/details/~010d84f2e3e0f18e8d/profile/?q=andrew%20Branch%20&user_pref=2&pageTitle=Profile&_navType=slider&_modalInfo=%5B%7B%22navType%22%3A%22slider%22,%22title%22%3A%22Profile%22,%22modalId%22%3A%221646070686209%22%7D%5D Think someone might be impersonating you. lmk
Bumps [tar](https://github.com/npm/node-tar) from 4.4.10 to 4.4.15. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization Impact...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [unist-util-visit](https://github.com/syntax-tree/unist-util-visit) from 1.4.1 to 4.0.0. Release notes Sourced from unist-util-visit's releases. 4.0.0 050fdc3 Change types to base what visitor gets on tree (breaking if you use TypeScript, read commit...
Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 1.3.1 to 1.3.4. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Potential memory exposure in dns-packet This affects the package...
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.7 to 1.5.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Path reaversal in url-parse url-parse before 1.5.0 mishandles certain...
Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 3.3.0 to 3.3.2. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Resource exhaustion in socket.io-parser The socket.io-parser npm package before...
Bumps [prismjs](https://github.com/PrismJS/prism) from 1.16.0 to 1.24.0. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDoS) in Prism Some languages...
Now that Dependabot is built in to GitHub and generally available, we're encouraging everyone to migrate to get the best possible Dependabot experience. This pull request migrates your configuration from...
Bumps [slate](https://github.com/ianstormtaylor/slate) from 0.44.13 to 0.63.0. Release notes Sourced from slate's releases. [email protected] Minor Changes #4230 796389c7 Thanks @TheSpyder! - Applying invalid insert_node operations will now throw an exception for...
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.7.1 to 2.8.9. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in hosted-git-info The npm...