New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade: Debug 4.0.1 > 4.3.2 #14892
Upgrade: Debug 4.0.1 > 4.3.2 #14892
Conversation
Hi @sandeshvijayraj!, thanks for the Pull Request The first commit message isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
Hi @sandeshvijayraj!, thanks for the Pull Request The pull request title isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
Hi @sandeshvijayraj!, thanks for the Pull Request The pull request title isn't properly formatted. We ask that you update the message to match this format, as we use it to generate changelogs and automate releases.
Read more about contributing to ESLint here |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@sandeshvijayraj thanks for the PR!
Can you please sign our CLA so we could merge this?
I did signed it and when I open it it shows me as signed not sure why its not updating here do I have to do any more steps ?? |
It looks like you used a different email address for commits, so maybe this could help: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, thanks for contributing.
Note to the merger - While merging make sure to remove |
Thanks @snitin315 |
* master: Chore: Add rel/abs path tests in `no-restricted-{imports/modules}` rules (eslint#14910) Upgrade: Debug 4.0.1 > 4.3.2 (eslint#14892) Chore: add assertions on reporting location in `semi` (eslint#14899) Fix: no-useless-computed-key edge cases with class fields (refs eslint#14857) (eslint#14903) Upgrade: `js-yaml` to v4 (eslint#14890) Fix: prefer-destructuring PrivateIdentifier false positive (refs eslint#14857) (eslint#14897) Fix: dot-notation false positive with private identifier (refs eslint#14857) (eslint#14898) Sponsors: Sync README with website Sponsors: Sync README with website Docs: improve rule details for `no-console` (fixes eslint#14793) (eslint#14901) Update: check class fields in no-extra-parens (refs eslint#14857) (eslint#14906) Docs: add class fields in no-multi-assign documentation (refs eslint#14857) (eslint#14907) Docs: add class fields in func-names documentation (refs eslint#14857) (eslint#14908) Upgrade: `eslint-visitor-keys` to v3 (eslint#14902) Upgrade: `markdownlint` dev dependencies (eslint#14883) Upgrade: @humanwhocodes/config-array to 0.6 (eslint#14891) Chore: Specify Node 14.x for Verify Files CI job (eslint#14896)
Prerequisites checklist
What is the purpose of this pull request? (put an "X" next to an item)
[ ] Documentation update
[ ] Bug fix (template)
[ ] New rule (template)
[ ] Changes an existing rule (template)
[ ] Add auto fixing to a rule
[ ] Add a CLI option
[ ] Add something to the core
[ X] Other, please explain:
What changes did you make? (Give an overview)
The Debug libraries < 4.1.1 are considered to be vulnerable. A project having vulnerability scanners are getting blocked due to this vulnerable library inside eslint. The eslint consumer may not have a way to override sub-libraries. The fix can be done in the core repo only.
The MR just updates Debug library specified in package.json dependencies to the latest 4.3 version
Is there anything you'd like reviewers to focus on?
I ran the test specified in your project and seems to be fine but can still test the MR has no issues