js-rules-engine
js-rules-engine copied to clipboard
justinlettau
chore(deps): update dependency minimatch to 3.0.5 [security]
This PR contains the following updates:
| Package | Change |
|---|---|
| minimatch | 3.0.4 -> 3.0.5 |
GitHub Vulnerability Alerts
CVE-2022-3517
A vulnerability was found in the minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service.
Configuration
π Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "Published by a pub.dev verified publisher"){kind=small}
Codecov Report
Merging #45 (a4c8a79) into main (ab13ce2) will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## main #45 +/- ##
=======================================
Coverage 99.28% 99.28%
=======================================
Files 7 7
Lines 139 139
Branches 18 18
=======================================
Hits 138 138
Misses 1 1
:mega: Weβre building smart automated test selection to slash your CI/CD build times. Learn more
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}