wjplayer

wjplayer copied to clipboard

chore(deps): update dependency hosted-git-info to 2.8.9 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | hosted-git-info | [`2.8.8` -> `2.8.9`](https://renovatebot.com/diffs/npm/hosted-git-info/2.8.8/2.8.9) | ### GitHub Vulnerability Alerts #### [CVE-2021-23362](https://nvd.nist.gov/vuln/detail/CVE-2021-23362) The npm package...

renovate[bot]

chore(deps): update dependency follow-redirects to 1.14.8 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | follow-redirects | [`1.5.10` -> `1.14.8`](https://renovatebot.com/diffs/npm/follow-redirects/1.5.10/1.14.8) | ### GitHub Vulnerability Alerts #### [CVE-2022-0155](https://nvd.nist.gov/vuln/detail/CVE-2022-0155) follow-redirects is vulnerable...

renovate[bot]

chore(deps): update dependency engine.io to 3.6.1 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | engine.io | [`3.2.1` -> `3.6.1`](https://renovatebot.com/diffs/npm/engine.io/3.2.1/3.6.1) | ### GitHub Vulnerability Alerts #### [CVE-2020-36048](https://nvd.nist.gov/vuln/detail/CVE-2020-36048) Engine.IO before 4.0.0...

renovate[bot]

chore(deps): update dependency elliptic to 6.5.4 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | elliptic | [`6.5.2` -> `6.5.4`](https://renovatebot.com/diffs/npm/elliptic/6.5.2/6.5.4) | ### GitHub Vulnerability Alerts #### [CVE-2020-13822](https://nvd.nist.gov/vuln/detail/CVE-2020-13822) The Elliptic package...

renovate[bot]

chore(deps): update dependency browserslist to 4.16.5 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | browserslist | [`4.9.1` -> `4.16.5`](https://renovatebot.com/diffs/npm/browserslist/4.9.1/4.16.5) | ### GitHub Vulnerability Alerts #### [CVE-2021-23364](https://nvd.nist.gov/vuln/detail/CVE-2021-23364) The package browserslist...

renovate[bot]

chore(deps): update dependency axios to 0.21.1 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | axios | [`0.19.0` -> `0.21.1`](https://renovatebot.com/diffs/npm/axios/0.19.0/0.21.1) | ### GitHub Vulnerability Alerts #### [CVE-2020-28168](https://nvd.nist.gov/vuln/detail/CVE-2020-28168) Axios NPM package...

renovate[bot]

chore(deps): update dependency ajv to 6.12.3 [security] - abandoned

1

[](https://renovatebot.com) This PR contains the following updates: | Package | Change | |---|---| | ajv | [`6.12.2` -> `6.12.3`](https://renovatebot.com/diffs/npm/ajv/6.12.2/6.12.3) | ### GitHub Vulnerability Alerts #### [CVE-2020-15366](https://nvd.nist.gov/vuln/detail/CVE-2020-15366) An issue was...

renovate[bot]

Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.12.2 to 6.12.6. Release notes Sourced from ajv's releases. v6.12.6 Fix performance issue of "url" format. v6.12.5 Fix uri scheme validation (@​ChALkeR). Fix boolean schemas with strictKeywords...

dependabot[bot]

Bumps [three](https://github.com/mrdoob/three.js) from 0.89.0 to 0.137.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.27 to 7.0.36. Release notes Sourced from postcss's releases. 7.0.36 Backport ReDoS vulnerabilities from PostCSS 8. 7.0.35 Add migration guide link to PostCSS 8 error text. 7.0.34...

dependabot[bot]