penplot
penplot copied to clipboard
srmullen
Bumps [body-parser-xml](https://github.com/fiznool/body-parser-xml) from 1.1.0 to 2.0.3. Release notes Sourced from body-parser-xml's releases. v2.0.3 Fixed Fixed prototype pollution vulnerability #69 - thanks to @yadhukrishnam for disclosing and fixing v2.0.2 Added Official...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [tar](https://github.com/npm/node-tar) from 4.4.13 to 4.4.19. Commits 9a6faa0 4.4.19 70ef812 drop dirCache for symlink on all platforms 3e35515 4.4.18 52b09e3 fix: prevent path escape using drive-relative paths bb93ba2 fix: reserve...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [postcss](https://github.com/postcss/postcss) from 7.0.26 to 7.0.36. Release notes Sourced from postcss's releases. 7.0.36 Backport ReDoS vulnerabilities from PostCSS 8. 7.0.35 Add migration guide link to PostCSS 8 error text. 7.0.34...
Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 1.3.1 to 1.3.4. Commits ebdf849 1.3.4 ac57872 move all allocUnsafes to allocs for easier maintenance c64c950 1.3.3 0598ba1 fix .. in encodingLength 010aedb 1.3.2 0d0d593 backport encodingLength...
Bumps [mathjs](https://github.com/josdejong/mathjs) from 5.2.3 to 7.5.1. Changelog Sourced from mathjs's changelog. 2020-10-10, version 7.5.1 Fix object pollution vulnerability in math.config. Thanks Snyk. 2020-10-07, version 7.5.0 Function pickRandom now allows randomly...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.1. Changelog Sourced from y18n's changelog. Change Log All notable changes to this project will be documented in this file. See standard-version for commit guidelines....
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.4.1 to 6.5.4. Commits 43ac7f2 6.5.4 f4bc72b package: bump deps 441b742 ec: validate that a point before deriving keys e71b2d9 lib: relint using eslint 8421a01 build(deps): bump...
Bumps [axios](https://github.com/axios/axios) from 0.19.0 to 0.21.1. Release notes Sourced from axios's releases. v0.21.1 0.21.1 (December 21, 2020) Fixes and Functionality: Hotfix: Prevent SSRF (#3410) Protocol not parsed when setting proxy...