hexo-generator-seo-friendly-sitemap
hexo-generator-seo-friendly-sitemap copied to clipboard
ludoviclefevre
Bumps [moment](https://github.com/moment/moment) from 2.24.0 to 2.29.4. Changelog Sourced from moment's changelog. 2.29.4 Release Jul 6, 2022 #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex 2.29.3 Full changelog Release Apr 17, 2022...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [ws](https://github.com/websockets/ws) from 5.2.2 to 5.2.3. Release notes Sourced from ws's releases. 5.2.3 Bug fixes Backported 00c425ec to the 5.x release line (76d47c14). Commits 6dd88e7 [dist] 5.2.3 76d47c1 [security] Fix...
Bumps [ejs](https://github.com/mde/ejs) from 2.6.1 to 3.1.7. Release notes Sourced from ejs's releases. v3.1.7 Version 3.1.7 v3.1.6 Version 3.1.6 v3.1.5 Version 3.1.5 v3.0.2 No release notes provided. v2.7.4 Bug fixes Fixed...
Need to update `lodash` (https://github.com/lodash/lodash) dependency due to critical vulnerabilities. https://github.com/ludoviclefevre/hexo-generator-seo-friendly-sitemap/blob/106d086918bab8a441f493f6b9e24092f5fc0862/package.json#L16-L23 ## Reference - [Regular Expression Denial of Service (ReDoS) in lodash](https://github.com/advisories/GHSA-29mw-wpgm-hmr9) - [Command Injection in lodash](https://github.com/advisories/GHSA-35jh-r3h4-6jhm) - [Regular Expression...
Need to update `ejs` (https://github.com/mde/ejs) dependency due to critical vulnerabilities. https://github.com/ludoviclefevre/hexo-generator-seo-friendly-sitemap/blob/106d086918bab8a441f493f6b9e24092f5fc0862/package.json#L16-L23 ## Reference - [High severity vulnerability that affects ejs](https://github.com/advisories/GHSA-3w5v-p54c-f74x) - [High severity vulnerability that affects ejs](https://github.com/advisories/GHSA-6x77-rpqf-j6mw) - [Moderate severity...
Google Search Console is reporting a URL on my site as indexed, not submitted in sitemap. The URL is in the sitemap but in title case, which I'm guessing Google...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.12 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [xmldom](https://github.com/xmldom/xmldom) from 0.1.27 to 0.6.0. Release notes Sourced from xmldom's releases. 0.6.0 0.6.0 Fixes Stop serializing empty namespace values like xmlns:ds="" [#168](https://github.com/xmldom/xmldom/issues/168) BREAKING CHANGE: If your code expected empty...