file-selector
file-selector copied to clipboard
react-dropzone
feat(deps): bump shell-quote from 1.6.1 to 1.7.3
Bumps shell-quote from 1.6.1 to 1.7.3.
Release notes
Sourced from shell-quote's releases.
v1.7.2
- Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)
v1.7.1
v1.7.0
- Add support for parsing
>>and>&redirection operators. (@forivallin #16)- Add support for parsing
<(process substitution operator. (@cuonglmin #15)v1.6.3
v1.6.2
Changelog
Sourced from shell-quote's changelog.
1.7.3
- Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (CVE-2021-42740)
1.7.2
- Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)
1.7.1
1.7.0
- Add support for parsing
>>and>&redirection operators. (@forivallin #16)- Add support for parsing
<(process substitution operator. (@cuonglmin #15)1.6.3
1.6.2
Commits
6a8a8991.7.35799416fix for security issue with windows drive letter regexc7de931Add security.md414853fUpdate readme.markdown (#43)0fc4a97use Github Actions (#42)89a19931.7.2df7e4c7add test for #37144e1c2revert windows path unescaping, fixes #37c24f3aaci: nvs does not have iojsc2950fb1.7.1- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
Pull Request Test Coverage Report for Build 0c55b921ec333d5d043863b4484361899603d735-PR-57
- 0 of 0 changed or added relevant lines in 0 files are covered.
- No unchanged relevant lines lost coverage.
- Overall coverage remained the same at 100.0%
| Totals | |
|---|---|
| Change from base Build 76a4033d344d1383aeb5ff628b1749ed6334d5f5: | 0.0% |
| Covered Lines: | 80 |
| Relevant Lines: | 80 |
💛 - Coveralls
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.
If you change your mind, just re-open this PR and I'll resolve any conflicts on it.