Commit Graph

26 Commits (fd3646e4b908c6b352a69dbc63f61e7223c62689)

Author SHA1 Message Date
Hwee-Boon Yar 156f79e132 Update `npm` version (development use only) to not rely on vulnerable version of `got` package. CVE-2022-33987 2 years ago
Hwee-Boon Yar 6acf3ecf3e Fix vulnerabilities by GitHub for node-fetch, mimimist CVE-2022-0235, CVE-2021-44906 3 years ago
Hwee-Boon Yar 1b48d7609f Fix vulnerabilities by GitHub for parse-link-header CVE-2021-23490 3 years ago
Hwee-Boon Yar 8efb9dced8 Fix vulnerabilities by GitHub for json-schema CVE-2021-3918 3 years ago
Hwee-Boon Yar a906980ed2 Fix vulnerabilities by GitHub for jsonpointer CVE-2021-23807 3 years ago
Hwee-Boon Yar 31a75899f1 Fix: vulnerability found by GitHub: CVE-2021-3807 3 years ago
Hwee-Boon Yar 7833755969 Fix: vulnerability found by GitHub: CVE-2021-23440 3 years ago
dependabot[bot] 40a48668f1
Build(deps): Bump tar from 4.4.15 to 4.4.19 3 years ago
dependabot[bot] 8a3f634ea0
Build(deps): Bump path-parse from 1.0.6 to 1.0.7 3 years ago
dependabot[bot] 10c6398c9f
Bump tar from 4.4.13 to 4.4.15 3 years ago
dependabot[bot] beff400410
Bump hosted-git-info from 2.8.8 to 2.8.9 4 years ago
Hwee-Boon Yar 2a2b155ca0 Fix: vulnerability found by GitHub: CVE-2020-7774 4 years ago
Hwee-Boon Yar 05ec62ec1d Fix: vulnerability found by GitHub: CVE-2021-27290 4 years ago
dependabot[bot] 005c34f5f9
Bump ini from 1.3.5 to 1.3.7 4 years ago
dependabot[bot] 883d8aff2a
Build(deps): Bump npm-user-validate from 1.0.0 to 1.0.1 4 years ago
Hwee-Boon Yar c669c60855 Fix: GitHub security warning for JavaScript packages: 4 years ago
dependabot[bot] c4132eff36
Bump node-fetch from 2.6.0 to 2.6.1 4 years ago
dependabot[bot] 272ec97205
Bump lodash from 4.17.15 to 4.17.19 4 years ago
dependabot[bot] a224606ca4
Bump npm from 6.13.4 to 6.14.6 4 years ago
Hwee-Boon Yar 897353037c Fix: GitHub security warning for JavaScript packages: CVE-2020-7598, CVE-2019-20149 4 years ago
dependabot[bot] 57fa1eb83b
Bump https-proxy-agent from 2.2.2 to 2.2.4 5 years ago
dependabot[bot] c7960e0732
Build(deps): Bump npm from 6.10.3 to 6.13.4 5 years ago
Hwee-Boon Yar db5880679f Fix vulnerabilities by GitHub for JavaScript: lodash, mem 5 years ago
James Sangalli 64aed28cce
Upgrade fstream for security 5 years ago
James Sangalli ab7d73da4b update lodash dependency for security 6 years ago
Hwee-Boon Yar 82c50c622d Add dangerfile to look for messed up commits. To be used in a post-commit hook 6 years ago