Update vulnerable dependencies #13

psvet · 2018-12-13T18:53:46Z

CHANGELOG

Updated dependencies with security vulnerabilities.

TooTallNate · 2018-12-13T19:12:26Z

Why this commit: 407282c ?

NatalieWolfe · 2018-12-13T19:17:36Z

Debug v4 is not backwards compatible to Node 4 or 5.

TooTallNate · 2018-12-13T19:27:46Z

I'm ok with dropping support for Node < 8.x

aoberoi · 2019-03-08T02:13:54Z

i'm getting a warning in npm audit about a vuln in debug, would like to see this PR land 😄

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Low           │ Regular Expression Denial of Service                         │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ debug                                                        │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >= 2.6.9 < 3.0.0 || >= 3.1.0                                 │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ proxy [dev]                                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ proxy > debug                                                │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/534                             │
└───────────────┴──────────────────────────────────────────────────────────────┘

Peter Svetlichny added 3 commits December 13, 2018 10:51

update dependencies

29e8eba

add newer node versions to .travis.yml

3b67f19

drop debug to v3

407282c

NatalieWolfe approved these changes Dec 13, 2018

View reviewed changes

Merge branch 'master' into psvet/deps

81201ff

TooTallNate merged commit f90f189 into TooTallNate:master Oct 4, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update vulnerable dependencies #13

Update vulnerable dependencies #13

Uh oh!

psvet commented Dec 13, 2018

Uh oh!

TooTallNate commented Dec 13, 2018

Uh oh!

NatalieWolfe commented Dec 13, 2018

Uh oh!

TooTallNate commented Dec 13, 2018

Uh oh!

aoberoi commented Mar 8, 2019

Uh oh!

Uh oh!

Update vulnerable dependencies #13

Update vulnerable dependencies #13

Uh oh!

Conversation

psvet commented Dec 13, 2018

CHANGELOG

Uh oh!

TooTallNate commented Dec 13, 2018

Uh oh!

NatalieWolfe commented Dec 13, 2018

Uh oh!

TooTallNate commented Dec 13, 2018

Uh oh!

aoberoi commented Mar 8, 2019

Uh oh!

Uh oh!