catage

catage copied to clipboard

Bumps [file-type](https://github.com/sindresorhus/file-type) from 12.3.0 to 16.5.4. Release notes Sourced from file-type's releases. v16.5.4 Fix: Malformed MKV could cause an infinite loop https://github.com/sindresorhus/file-type/commit/d86835680f4cccbee1a60628783c36700ec9e254 CVE-2022-36313 Also fixed in 17.1.3 v16.5.3 Upgrade dependencies...

dependabot[bot]

Bumps [plist](https://github.com/TooTallNate/node-plist) from 3.0.1 to 3.0.4. Changelog Sourced from plist's changelog. 3.0.4 / 2021-08-27 inline [email protected] to eliminate security warning false positive (Mike Reinstein) 3.0.3 / 2021-08-04 update xmldom to...

dependabot[bot]

Bumps [pathval](https://github.com/chaijs/pathval) from 1.1.0 to 1.1.1. Release notes Sourced from pathval's releases. v1.1.1 Fixes a security issue around prototype pollution. Commits db6c3e3 chore: v1.1.1 7859e0e Merge pull request #60 from...

dependabot[bot]

Bumps [ws](https://github.com/websockets/ws) from 6.2.1 to 6.2.2. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Hey, first of all, thank you for this library. It saved me tons of time. My addition is only cosmetic and provides an option for setting background color + adds...

krasimir

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]

Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.1. Changelog Sourced from y18n's changelog. Change Log All notable changes to this project will be documented in this file. See standard-version for commit guidelines....

dependabot[bot]

Bumps [is-svg](https://github.com/sindresorhus/is-svg) from 4.2.0 to 4.2.2. Release notes Sourced from is-svg's releases. v4.2.2 Fix ReDoS vulnerability 01f8a08 You are only affected if you use this package on a server that...

dependabot[bot]

Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. Commits a2c5da8 1.3.8 af5c6bb Do not use Object.create(null) 8b648a1 don't test where our devdeps don't even work c74c8af 1.3.7 024b8b5 update deps, add linting...

dependabot[bot]

First off: Thank you for your efforts and contributing this project to the community. Long lines of code are currently not wrapped, creating images that are very wide and hard...

W1M0R