saber-theme-minima

saber-theme-minima copied to clipboard

chore(deps): [security] bump tar from 4.4.8 to 4.4.15

1

Bumps [tar](https://github.com/npm/node-tar) from 4.4.8 to 4.4.15. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization Impact...

dependabot-preview[bot]

chore(deps-dev): bump sass from 1.22.12 to 1.37.2

1

Bumps [sass](https://github.com/sass/dart-sass) from 1.22.12 to 1.37.2. Release notes Sourced from sass's releases. Dart Sass 1.37.2 To install Sass 1.37.2, download one of the packages below and add it to your...

dependabot-preview[bot]

chore(deps): [security] bump color-string from 1.5.3 to 1.6.0

1

Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDOS) A Regular Expression...

dependabot-preview[bot]

Upgrade to GitHub-native Dependabot

2

_Dependabot Preview will be shut down on August 3rd, 2021. In order to keep getting Dependabot updates, please merge this PR and migrate to GitHub-native Dependabot before then._ Dependabot has...

dependabot-preview[bot]

chore(deps): [security] bump postcss from 7.0.14 to 7.0.36

1

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.14 to 7.0.36. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in postcss The npm...

dependabot-preview[bot]

chore(deps-dev): bump sass-loader from 8.0.0 to 12.1.0

1

Bumps [sass-loader](https://github.com/webpack-contrib/sass-loader) from 8.0.0 to 12.1.0. Release notes Sourced from sass-loader's releases. v12.1.0 12.1.0 (2021-06-10) Features allow String value for the implementation option (382a3ca) v12.0.0 12.0.0 (2021-06-01) ⚠ BREAKING CHANGES...

dependabot-preview[bot]

chore(deps): [security] bump browserslist from 4.5.2 to 4.16.6

1

Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.5.2 to 4.16.6. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service in browserslist The package...

dependabot-preview[bot]

chore(deps): [security] bump ssri from 6.0.1 to 6.0.2

1

Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Regular Expression Denial of Service (ReDoS) npm ssri 5.2.2-6.0.1...

dependabot-preview[bot]

chore(deps): [security] bump y18n from 4.0.0 to 4.0.3

1

Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3. **This update includes a security fix.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution Overview The npm package y18n before versions...

dependabot-preview[bot]

chore(deps): [security] bump lodash from 4.17.15 to 4.17.21

1

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. Prototype Pollution in lodash Versions of lodash prior to 4.17.19...

dependabot-preview[bot]