Skip to content
This repository has been archived by the owner on Oct 3, 2023. It is now read-only.

chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed #998

Closed
wants to merge 1 commit into from
Closed

chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed #998

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Sep 25, 2022
edited

Mend Renovate

This PR contains the following updates:

Package Change
parse-url 6.0.5 -> 8.1.0

GitHub Vulnerability Alerts

CVE-2022-2900

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 8.1.0.

CVE-2022-3224

parse-url prior to 8.1.0 is vulnerable to Misinterpretation of Input. parse-url parses certain http or https URLs incorrectly, identifying the URL's protocol as ssh. It may also parse the host name incorrectly.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 24, 2023
@renovate renovate bot closed this Mar 24, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 24, 2023 22:04
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 29, 2023
@renovate renovate bot reopened this Mar 29, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 29, 2023 02:34
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 29, 2023
@renovate renovate bot closed this Mar 29, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 29, 2023 15:41
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 29, 2023
@renovate renovate bot reopened this Mar 29, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 29, 2023 19:42
@renovate renovate bot force-pushed the renovate/npm-parse-url-vulnerability branch from dcf3b8e to 0a49f58 Compare March 29, 2023 19:52
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 29, 2023
@renovate renovate bot closed this Mar 29, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 29, 2023 23:58
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 30, 2023
@renovate renovate bot reopened this Mar 30, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 30, 2023 01:34
@codecov-commenter
Copy link

codecov-commenter commented Mar 30, 2023
edited

Codecov Report

Merging #998 (26967f6) into master (5bf0c25) will increase coverage by 0.16%.
The diff coverage is n/a.

❗ Current head 26967f6 differs from pull request most recent head 0a49f58. Consider uploading reports for the commit 0a49f58 to get more accurate results

@@            Coverage Diff             @@
##           master     #998      +/-   ##
==========================================
+ Coverage   95.04%   95.21%   +0.16%     
==========================================
  Files          72      106      +34     
  Lines        5796     6754     +958     
  Branches      700      577     -123     
==========================================
+ Hits         5509     6431     +922     
- Misses        287      323      +36

see 129 files with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

@aabmass
Copy link
Member

aabmass commented Mar 30, 2023

This only affects dev dependencies. This does not affect production uses of these modules.

@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 30, 2023
@renovate renovate bot closed this Mar 30, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 30, 2023 02:07
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 30, 2023
@renovate renovate bot reopened this Mar 30, 2023
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Apr 1, 2023
@renovate renovate bot reopened this Apr 1, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch April 1, 2023 02:28
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Apr 3, 2023
@renovate renovate bot closed this Apr 3, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch April 3, 2023 11:24
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Apr 3, 2023
@renovate renovate bot reopened this Apr 3, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch April 3, 2023 12:55
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Apr 3, 2023
@renovate renovate bot closed this Apr 3, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch April 3, 2023 14:16
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Apr 3, 2023
@renovate renovate bot reopened this Apr 3, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch April 3, 2023 21:08
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Apr 5, 2023
@renovate renovate bot closed this Apr 5, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch April 5, 2023 03:10
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Apr 5, 2023
@renovate renovate bot reopened this Apr 5, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch April 5, 2023 07:11
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Apr 17, 2023
@renovate renovate bot closed this Apr 17, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch April 17, 2023 11:45
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Apr 18, 2023
@renovate renovate bot reopened this Apr 18, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch April 18, 2023 13:40
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed May 28, 2023
@renovate renovate bot closed this May 28, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch May 28, 2023 10:36
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@mayurkale22 mayurkale22 Awaiting requested review from mayurkale22 mayurkale22 is a code owner

@draffensperger draffensperger Awaiting requested review from draffensperger draffensperger is a code owner

@aabmass aabmass Awaiting requested review from aabmass aabmass is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@codecov-commenter @aabmass