leafplayer

leafplayer copied to clipboard

Bumps [terser](https://github.com/terser/terser) from 5.11.0 to 5.14.2. Changelog Sourced from terser's changelog. v5.14.2 Security fix for RegExps that should not be evaluated (regexp DDOS) Source maps improvements (#1211) Performance improvements in...

dependabot[bot]

Bumps [sharp](https://github.com/lovell/sharp) from 0.30.2 to 0.30.5. Changelog Sourced from sharp's changelog. v0.30.5 - 23rd May 2022 Install: pass PKG_CONFIG_PATH via env rather than substitution. @​dwisiswant0 Add support for --libc flag...

dependabot[bot]

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...

dependabot[bot]

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...

dependabot[bot]

Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.2.1 to 1.3.0. Changelog Sourced from node-forge's changelog. 1.3.0 - 2022-03-17 Security Three RSA PKCS#1 v1.5 signature verification issues were reported by Moosa Yahyazadeh ([email protected]). HIGH: Leniency...

dependabot[bot]

Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.9 to 1.15.4. Commits 6585820 Release version 1.15.4 of the npm package. 7a6567e Disallow bracketed hostnames. 05629af Prefer native URL instead of deprecated url.parse. 1cba8e8 Prefer native...

dependabot[bot]

Bumps [async](https://github.com/caolan/async) from 2.6.3 to 2.6.4. Changelog Sourced from async's changelog. v2.6.4 Fix potential prototype pollution exploit (#1828) Commits c6bdaca Version 2.6.4 8870da9 Update built files 4df6754 update changelog 8f7f903...

dependabot[bot]