docs
docs copied to clipboard
prisma
chore(deps): update dependency yargs-parser to 13.1.2 [security]
This PR contains the following updates:
| Package | Change |
|---|---|
| yargs-parser | 9.0.2 -> 13.1.2 |
GitHub Vulnerability Alerts
CVE-2020-7608
Affected versions of yargs-parser are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of Object, causing the addition or modification of an existing property that will exist on all objects.
Parsing the argument --foo.__proto__.bar baz' adds a bar property with value baz to all objects. This is only exploitable if attackers have control over the arguments being passed to yargs-parser.
Recommendation
Upgrade to versions 13.1.2, 15.0.1, 18.1.1 or later.
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, click this checkbox.
This PR has been generated by Mend Renovate. View repository job log here.
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "Published by a pub.dev verified publisher"){kind=small}
The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated |
|---|---|---|---|---|
| docs | ✅ Ready (Inspect) | Visit Preview | 💬 Add your feedback | Feb 4, 2023 at 3:29PM (UTC) |
![vercel[bot] avatar](https://avatars.githubusercontent.com/in/8329?v=4 "Published by a pub.dev verified publisher"){kind=small}
This PR changes the following pages (Vercel Preview Deploy links):
Changed Vercel links
- This PR does not change any pages the GH Actions workflow could detect.
(Note that links will only be valid after Vercel preview deploy succeeded)
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Deploy Preview for prisma2-docs ready!
| Name | Link |
|---|---|
| Latest commit | 9f55ea214019df8e35625a66e6b0a3b5de61897f |
| Latest deploy log | https://app.netlify.com/sites/prisma2-docs/deploys/62fbb2951e20830009467d0e |
| Deploy Preview | https://deploy-preview-3434--prisma2-docs.netlify.app |
| Preview on mobile | Toggle QR Code...Use your smartphone camera to open QR code link. |
To edit notification comments on pull requests, go to your Netlify site settings.
![netlify[bot] avatar](https://avatars.githubusercontent.com/in/13473?v=4 "Published by a pub.dev verified publisher"){kind=small}