Upgrade: Debug 4.0.1 > 4.3.2 #14892
Upgrade: Debug 4.0.1 > 4.3.2 #14892
Conversation
eslint-github-bot
bot
added
the
triage
|
Hi @sandeshvijayraj!, thanks for the Pull Request The first commit message isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
|
Hi @sandeshvijayraj!, thanks for the Pull Request The pull request title isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
sandeshvijayraj
changed the title
|
Hi @sandeshvijayraj!, thanks for the Pull Request The pull request title isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
sandeshvijayraj
changed the title
There was a problem hiding this comment.
@sandeshvijayraj thanks for the PR!
Can you please sign our CLA so we could merge this?
mdjermanovic
added
accepted
|
I did signed it and when I open it it shows me as signed not sure why its not updating here do I have to do any more steps ?? |
|
It looks like you used a different email address for commits, so maybe this could help: |
|
Note to the merger - While merging make sure to remove |
|
Thanks @snitin315 |
* master:
Chore: Add rel/abs path tests in `no-restricted-{imports/modules}` rules (eslint#14910)
Upgrade: Debug 4.0.1 > 4.3.2 (eslint#14892)
Chore: add assertions on reporting location in `semi` (eslint#14899)
Fix: no-useless-computed-key edge cases with class fields (refs eslint#14857) (eslint#14903)
Upgrade: `js-yaml` to v4 (eslint#14890)
Fix: prefer-destructuring PrivateIdentifier false positive (refs eslint#14857) (eslint#14897)
Fix: dot-notation false positive with private identifier (refs eslint#14857) (eslint#14898)
Sponsors: Sync README with website
Sponsors: Sync README with website
Docs: improve rule details for `no-console` (fixes eslint#14793) (eslint#14901)
Update: check class fields in no-extra-parens (refs eslint#14857) (eslint#14906)
Docs: add class fields in no-multi-assign documentation (refs eslint#14857) (eslint#14907)
Docs: add class fields in func-names documentation (refs eslint#14857) (eslint#14908)
Upgrade: `eslint-visitor-keys` to v3 (eslint#14902)
Upgrade: `markdownlint` dev dependencies (eslint#14883)
Upgrade: @humanwhocodes/config-array to 0.6 (eslint#14891)
Chore: Specify Node 14.x for Verify Files CI job (eslint#14896)
eslint-github-bot
bot
added
the
archived due to age
Prerequisites checklist
What is the purpose of this pull request? (put an "X" next to an item)
[ ] Documentation update
[ ] Bug fix (template)
[ ] New rule (template)
[ ] Changes an existing rule (template)
[ ] Add auto fixing to a rule
[ ] Add a CLI option
[ ] Add something to the core
[ X] Other, please explain:
What changes did you make? (Give an overview)
The Debug libraries < 4.1.1 are considered to be vulnerable. A project having vulnerability scanners are getting blocked due to this vulnerable library inside eslint. The eslint consumer may not have a way to override sub-libraries. The fix can be done in the core repo only.
The MR just updates Debug library specified in package.json dependencies to the latest 4.3 version
Is there anything you'd like reviewers to focus on?
I ran the test specified in your project and seems to be fine but can still test the MR has no issues