shrimpit
shrimpit copied to clipboard
yamafaktory
Shrimpit 🍤 is a small CLI analysis tool for checking unused JavaScript, JSX & Vue templates ES6 exports in your project.
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.9.2 to 6.12.6. Release notes Sourced from ajv's releases. v6.12.6 Fix performance issue of "url" format. v6.12.5 Fix uri scheme validation (@ChALkeR). Fix boolean schemas with strictKeywords...
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [set-value](https://github.com/jonschlinkert/set-value) from 3.0.1 to 4.1.0. Commits c574eb8 4.1.0 276ce85 run benchmarks, build readme with verb cdc7446 fixes jonschlinkert/set-value#11 7cf8073 4.0.1 17ac6b7 lint b057b1b Merge pull request #33 from ready-research/ready-research-Prototype-Pollution...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.0 to 5.1.2. Release notes Sourced from glob-parent's releases. v5.1.2 Bug Fixes eliminate ReDoS (#36) (f923116) v5.1.1 Bug Fixes unescape exclamation mark (#26) (a98874f) Changelog Sourced from...
Bumps [ws](https://github.com/websockets/ws) from 7.2.3 to 7.4.6. Release notes Sourced from ws's releases. 7.4.6 Bug fixes Fixed a ReDoS vulnerability (00c425ec). A specially crafted value of the Sec-Websocket-Protocol header could be...
Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.1 to 2.1.1. Commits 56ca75b build: v2.1.1 7b0ddc2 fix: prototype pollution 8686d85 build: bump version 80151be build 0acaaf3 build: update dev dependencies f571887 Merge pull request #38...
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.7.1 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 2.8.8 (2020-02-29) Bug Fixes #61 & #65...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Metadata
Owner
Metadata
Shrimpit 🍤 is a small CLI analysis tool for checking unused JavaScript, JSX & Vue templates ES6 exports in your project.