chore(deps): bump the npm_and_yarn group across 3 directories with 6 updates#523
Open
dependabot[bot] wants to merge 1 commit intomasterfrom
Open
Conversation
…updates Bumps the npm_and_yarn group with 1 update in the /src/list directory: [vue](https://github.com/vuejs/core). Bumps the npm_and_yarn group with 1 update in the /src/list/frontend directory: [vue](https://github.com/vuejs/core). Bumps the npm_and_yarn group with 2 updates in the /src/list/frontend/tests/e2e directory: [@cypress/request](https://github.com/cypress-io/request) and [tmp](https://github.com/raszi/node-tmp). Updates `vue` from 2.7.16 to 3.0.0 - [Release notes](https://github.com/vuejs/core/releases) - [Changelog](https://github.com/vuejs/core/blob/v3.0.0/CHANGELOG.md) - [Commits](https://github.com/vuejs/core/commits/v3.0.0) Updates `nanoid` from 3.3.6 to 3.3.11 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.6...3.3.11) Updates `vue` from 2.7.16 to 3.0.0 - [Release notes](https://github.com/vuejs/core/releases) - [Changelog](https://github.com/vuejs/core/blob/v3.0.0/CHANGELOG.md) - [Commits](https://github.com/vuejs/core/commits/v3.0.0) Updates `@cypress/request` from 2.88.12 to 3.0.9 - [Release notes](https://github.com/cypress-io/request/releases) - [Changelog](https://github.com/cypress-io/request/blob/master/CHANGELOG.md) - [Commits](cypress-io/request@v2.88.12...v3.0.9) Updates `qs` from 6.10.4 to 6.14.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.10.4...v6.14.0) Updates `form-data` from 2.3.3 to 4.0.5 - [Release notes](https://github.com/form-data/form-data/releases) - [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md) - [Commits](https://github.com/form-data/form-data/commits/v4.0.5) Updates `tmp` from 0.2.3 to 0.2.5 - [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md) - [Commits](raszi/node-tmp@v0.2.3...v0.2.5) --- updated-dependencies: - dependency-name: vue dependency-version: 3.0.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: nanoid dependency-version: 3.3.11 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: vue dependency-version: 3.0.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@cypress/request" dependency-version: 3.0.9 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.14.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: form-data dependency-version: 4.0.5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tmp dependency-version: 0.2.5 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
dependencies
✅
|
| Descriptor | Linter | Files | Fixed | Errors | Warnings | Elapsed time |
|---|---|---|---|---|---|---|
| ✅ ACTION | actionlint | 14 | 0 | 0 | 0.26s | |
| ✅ BASH | bash-exec | 7 | 0 | 0 | 0.03s | |
| ✅ BASH | shellcheck | 4 | 0 | 0 | 0.17s | |
| shfmt | 7 | 1 | 0 | 0.02s | ||
| ✅ CSHARP | csharpier | 3 | 0 | 0 | 1.94s | |
| roslynator | 1 | 1 | 0 | 10.98s | ||
| ✅ CSS | stylelint | 1 | 0 | 0 | 1.85s | |
| ✅ DOCKERFILE | hadolint | 5 | 0 | 0 | 0.25s | |
| ✅ EDITORCONFIG | editorconfig-checker | 435 | 0 | 0 | 2.67s | |
| ✅ ENV | dotenv-linter | 1 | 0 | 0 | 0.01s | |
| npm-groovy-lint | 8 | 0 | 20 | 25.17s | ||
| ✅ HTML | djlint | 2 | 0 | 0 | 1.89s | |
| ✅ HTML | htmlhint | 2 | 0 | 0 | 0.22s | |
| checkstyle | 64 | 0 | 90 | 10.42s | ||
| ✅ JSON | jsonlint | 53 | 0 | 0 | 0.45s | |
| ✅ JSON | prettier | 53 | 0 | 0 | 5.91s | |
| ✅ JSON | v8r | 53 | 0 | 0 | 34.35s | |
| markdownlint | 23 | 273 | 0 | 2.49s | ||
| ✅ PYTHON | bandit | 1 | 0 | 0 | 2.86s | |
| ✅ PYTHON | black | 1 | 0 | 0 | 2.37s | |
| ✅ PYTHON | flake8 | 1 | 0 | 0 | 0.89s | |
| ✅ PYTHON | isort | 1 | 0 | 0 | 0.61s | |
| ✅ PYTHON | mypy | 1 | 0 | 0 | 10.28s | |
| ✅ PYTHON | ruff | 1 | 0 | 0 | 0.1s | |
| ✅ REPOSITORY | checkov | yes | no | no | 44.97s | |
| ✅ REPOSITORY | gitleaks | yes | no | no | 5.38s | |
| ✅ REPOSITORY | git_diff | yes | no | no | 0.4s | |
| kics | yes | no | 109 | 53.83s | ||
| ✅ REPOSITORY | secretlint | yes | no | no | 3.5s | |
| ✅ REPOSITORY | syft | yes | no | no | 17.82s | |
| trivy | yes | 17 | no | 23.12s | ||
| ✅ REPOSITORY | trivy-sbom | yes | no | no | 6.28s | |
| ✅ REPOSITORY | trufflehog | yes | no | no | 8.63s | |
| ✅ XML | xmllint | 4 | 0 | 0 | 2.09s | |
| ✅ YAML | prettier | 118 | 0 | 0 | 3.2s |
Detailed Issues
⚠️ JAVA / checkstyle - 90 warnings
warning: First sentence of Javadoc is missing an ending period.
warning: First sentence of Javadoc is missing an ending period.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 103).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: First sentence of Javadoc is missing an ending period.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 107).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: First sentence of Javadoc is missing an ending period.
warning: Line is longer than 100 characters (found 115).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 220).
warning: Line is longer than 100 characters (found 104).
warning: Line is longer than 100 characters (found 117).
warning: Line is longer than 100 characters (found 154).
warning: Line is longer than 100 characters (found 111).
warning: Line is longer than 100 characters (found 128).
warning: Line is longer than 100 characters (found 142).
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 104).
warning: Line is longer than 100 characters (found 132).
warning: Line is longer than 100 characters (found 141).
warning: 90 warnings emitted
⚠️ REPOSITORY / kics - 109 warnings
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:2:1
│
2 │ fhir:
│ ^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:44:1
│
44 │ loader:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:51:1
│
51 │ fhir-pseudonymizer:
│ ^^^^^^^^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/notify/tests/e2e/docker-compose.yaml:33:1
│
33 │ tester:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ docker-compose/docker-compose.staging.yaml:25:1
│
25 │ omopdb:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:26:1
│
26 │ jaeger:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:36:1
│
36 │ keycloak:
│ ^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:19:1
│
19 │ tester:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/query/tests/e2e/docker-compose.yaml:2:1
│
2 │ query:
│ ^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:72:1
│
72 │ jaeger:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ docker-compose/docker-compose.staging.yaml:220:1
│
220 │ query:
│ ^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/query/tests/e2e/docker-compose.yaml:35:1
│
35 │ fhir:
│ ^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ docker-compose/docker-compose.staging.yaml:142:1
│
142 │ fhir-db:
│ ^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docke
(Truncated to 5714 characters out of 33943)
⚠️ MARKDOWN / markdownlint - 273 errors
CHANGELOG.md:5 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:9:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:10:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:13 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:24 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:25 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:30 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:31 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:45 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:52 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:53 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:56:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:59 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:60 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:66:121 MD013/line-length Line length [Expected: 120; Actual: 241]
CHANGELOG.md:73 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:74 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:81:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:86 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:91 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:92 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:105:121 MD013/line-length Line length [Expected: 120; Actual: 229]
CHANGELOG.md:106:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:109:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:122 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:125:121 MD013/line-length Line length [Expected: 120; Actual: 224]
CHANGELOG.md:127 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:128 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:132 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:133 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:139 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:140 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Features"]
CHANGELOG.md:144 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:145 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:151 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:152 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:158 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:159 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Features"]
CHANGELOG.md:163 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:164 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:167:121 MD013/line-length Line length [Expected: 120; Actual: 219]
CHANGELOG.md:168:121 MD013/line-length Line length [Expected: 120; Actual: 221]
CHANGELOG.md:169:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:170:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:171:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:177:121 MD013/line-length Line length [Expected: 120; Actual: 233]
CHANGELOG.md:180 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:181 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Documentation"]
CHANGELOG.md:185 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:186 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:207:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:209:121 MD013/line-length Line length [Expected: 120; Actual: 230]
CHANGELOG.md:211:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:212:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:213:121 MD013/line-length Line length [Expected: 120; Actual: 234]
CHANGELOG.md:215:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:216:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:217:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:218:121 MD013/line-length Line length [Expected: 120; Actual: 239]
CHANGELOG.md:219:121 MD013/line-length Line length [Expected: 120; Actual: 239]
CHANGELOG.md:220:121 MD013/line-length Line length [Expected: 12
(Truncated to 5714 characters out of 26039)
⚠️ GROOVY / npm-groovy-lint - 20 warnings
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
note: The String 'spring-boot-loader' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:71:24
│
71 │ intoLayer("spring-boot-loader") {
│ ^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'org/springframework/boot/loader/**' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:72:26
│
72 │ include("org/springframework/boot/loader/**")
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'application' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:74:24
│
74 │ intoLayer("application")
│ ^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'module-dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:77:24
│
77 │ intoLayer("module-dependencies") {
│ ^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'org.miracum:*:*' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:78:26
│
78 │ include("org.miracum:*:*")
│ ^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:80:24
│
80 │ intoLayer("dependencies")
│ ^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:25
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'spring-boot-loader' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:41
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'module-dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:63
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'application' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:86
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with ei
(Truncated to 5714 characters out of 7255)
⚠️ CSHARP / roslynator - 1 error
Results of roslynator linter (version 0.11.0.0)
See documentation on https://megalinter.io/9.2.0/descriptors/csharp_roslynator/
-----------------------------------------------
❌ [ERROR] tests/chaos/tester/tester.csproj
Loading project 'tests/chaos/tester/tester.csproj'...
Analyze 'tester'
Program.cs(50,32): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(108,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(115,28): error CS0103: The name 'File' does not exist in the current context
Program.cs(117,9): error CS0103: The name 'JsonSerializer' does not exist in the current context
Program.cs(125,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(127,22): error CS0103: The name 'Policy' does not exist in the current context
Program.cs(140,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(141,15): error CS0103: The name 'System' does not exist in the current context
Program.cs(141,49): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(147,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(155,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(160,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(169,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(184,13): error CS0103: The name 'Console' does not exist in the current context
Program.cs(192,19): error CS0103: The name 'System' does not exist in the current context
Program.cs(192,53): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(196,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(202,13): error CS0103: The name 'Console' does not exist in the current context
Program.cs(213,15): error CS0103: The name 'System' does not exist in the current context
Program.cs(213,49): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(101,42): error CS0161: 'RunTest(FileInfo, Uri, TimeSpan, int)': not all code paths return a value
Program.cs(145,42): error CS0161: 'RunDeleteMessages(Uri)': not all code paths return a value
Program.cs(163,42): error CS0161: 'RunAssert(Uri, int, int)': not all code paths return a value
Program.cs(1,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(2,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(3,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(4,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(5,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(6,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(7,7): error CS0246: The type or namespace name 'Polly' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(9,23): error CS0246: The type or namespace name 'RootCommand' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(11,35): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(11,42): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(18,33): error CS0246: The type or namespace name 'Command' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(26,22): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(26,29): error CS0246: The type or namespace name 'FileInfo' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(34,27): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(40,31): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(40,38): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(44,41): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(46,26): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(46,33): error CS0246: The type or namespace name 'TimeSpan' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(52,23): error CS0246: The type or namespace name 'Command' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(73,38): error CS0246: The type or namesp
(Truncated to 5714 characters out of 26578)
⚠️ BASH / shfmt - 1 error
diff src/gradlew.orig src/gradlew
--- src/gradlew.orig
+++ src/gradlew
@@ -71,15 +71,15 @@
# Need this for daisy-chained symlinks.
while
- APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
- [ -h "$app_path" ]
+ APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
+ [ -h "$app_path" ]
do
- ls=$( ls -ld "$app_path" )
- link=${ls#*' -> '}
- case $link in #(
- /*) app_path=$link ;; #(
- *) app_path=$APP_HOME$link ;;
- esac
+ ls=$(ls -ld "$app_path")
+ link=${ls#*' -> '}
+ case $link in #(
+ /*) app_path=$link ;; #(
+ *) app_path=$APP_HOME$link ;;
+ esac
done
# This is normally unused
@@ -86,20 +86,20 @@
# shellcheck disable=SC2034
APP_BASE_NAME=${0##*/}
# Discard cd standard output in case $CDPATH is set (https://github.com/gradle/gradle/issues/25036)
-APP_HOME=$( cd -P "${APP_HOME:-./}" > /dev/null && printf '%s\n' "$PWD" ) || exit
+APP_HOME=$(cd -P "${APP_HOME:-./}" >/dev/null && printf '%s\n' "$PWD") || exit
# Use the maximum available, or set MAX_FD != -1 to use that value.
MAX_FD=maximum
-warn () {
- echo "$*"
-} >&2
-
-die () {
- echo
- echo "$*"
- echo
- exit 1
+warn() {
+ echo "$*"
+} >&2
+
+die() {
+ echo
+ echo "$*"
+ echo
+ exit 1
} >&2
# OS specific support (must be 'true' or 'false').
@@ -107,57 +107,56 @@
msys=false
darwin=false
nonstop=false
-case "$( uname )" in #(
- CYGWIN* ) cygwin=true ;; #(
- Darwin* ) darwin=true ;; #(
- MSYS* | MINGW* ) msys=true ;; #(
- NONSTOP* ) nonstop=true ;;
+case "$(uname)" in #(
+CYGWIN*) cygwin=true ;; #(
+Darwin*) darwin=true ;; #(
+MSYS* | MINGW*) msys=true ;; #(
+NONSTOP*) nonstop=true ;;
esac
-
-
# Determine the Java command to use to start the JVM.
-if [ -n "$JAVA_HOME" ] ; then
- if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
- # IBM's JDK on AIX uses strange locations for the executables
- JAVACMD=$JAVA_HOME/jre/sh/java
- else
- JAVACMD=$JAVA_HOME/bin/java
- fi
- if [ ! -x "$JAVACMD" ] ; then
- die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+if [ -n "$JAVA_HOME" ]; then
+ if [ -x "$JAVA_HOME/jre/sh/java" ]; then
+ # IBM's JDK on AIX uses strange locations for the executables
+ JAVACMD=$JAVA_HOME/jre/sh/java
+ else
+ JAVACMD=$JAVA_HOME/bin/java
+ fi
+ if [ ! -x "$JAVACMD" ]; then
+ die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
else
- JAVACMD=java
- if ! command -v java >/dev/null 2>&1
- then
- die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+ JAVACMD=java
+ if ! command -v java >/dev/null 2>&1; then
+ die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
fi
# Increase the maximum file descriptors if we can.
-if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
- case $MAX_FD in #(
- max*)
- # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- MAX_FD=$( ulimit -H -n ) ||
- warn "Could not query maximum file descriptor limit"
- esac
- case $MAX_FD in #(
- '' | soft) :;; #(
- *)
- # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- ulimit -n "$MAX_FD" ||
- warn "Could not set maximum file descriptor limit to $MAX_FD"
- esac
+if ! "$cygwin" && ! "$darwin" && ! "$nonstop"; then
+ case $MAX_FD in #(
+ max*)
+ # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ MAX_FD=$(ulimit -H -n) ||
+ warn "Could not query maximum file descriptor limit"
+ ;;
+ esac
+ case $MAX_FD in #(
+ '' | soft) : ;; #(
+ *)
+ # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ ulimit -n "$MAX_FD" ||
+ warn "Could not set maximum file descriptor limit to $MAX_FD"
+ ;;
+ esac
fi
# Collect all arguments for the java command, stacking in reverse order:
@@ -169,35 +168,36 @@
# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
# For Cygwin or MSYS, switch paths to Windows format before running java
-if "$cygwin" || "$msys" ; then
- APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
-
- JAVACMD=$( cygpath --unix "$JAVACMD" )
-
- # Now convert the arguments - kludge to limit ourselves to /bin/sh
- for arg do
- if
- case $arg in #(
- -*) false ;; # don't mess with options #(
- /?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
- [ -e "$t" ] ;; #(
- *) false ;;
- esac
- then
- arg=$( cygpath --path --ignore --mixed "$arg" )
- fi
- # Roll the args list around exactly as many times as the number of
- # args, so each arg
(Truncated to 5714 characters out of 8251)
⚠️ REPOSITORY / trivy - 17 errors
error: Package: qs
Installed Version: 6.14.0
Vulnerability CVE-2025-15284
Severity: HIGH
Fixed Version: 6.14.1
Link: [CVE-2025-15284](https://avd.aquasec.com/nvd/cve-2025-15284)
┌─ src/list/frontend/tests/e2e/package-lock.json:1562:1
│
1562 │ ╭ "node_modules/qs": {
1563 │ │ "version": "6.14.0",
1564 │ │ "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.0.tgz",
1565 │ │ "integrity": "sha512-YWWTjgABSKcvs/nWBi9PycY/JiPJqOD4JA6o9Sej2AtvSGarXxKC3OQSk4pAarbdQlKAh5D4FCQkJNkW+GAn3w==",
· │
1575 │ │ }
1576 │ │ },
│ ╰^
│
= qs: qs: Denial of Service via improper input validation in array parsing
= Improper Input Validation vulnerability in qs (parse modules) allows HTTP DoS.This issue affects qs: < 6.14.1.
SummaryThe arrayLimit option in qs does not enforce limits for bracket notation (a[]=1&a[]=2), allowing attackers to cause denial-of-service via memory exhaustion. Applications using arrayLimit for DoS protection are vulnerable.
DetailsThe arrayLimit option only checks limits for indexed notation (a[0]=1&a[1]=2) but completely bypasses it for bracket notation (a[]=1&a[]=2).
Vulnerable code (lib/parse.js:159-162):
if (root === '[]' && options.parseArrays) {
obj = utils.combine([], leaf); // No arrayLimit check
}
Working code (lib/parse.js:175):
else if (index <= options.arrayLimit) { // Limit checked here
obj = [];
obj[index] = leaf;
}
The bracket notation handler at line 159 uses utils.combine([], leaf) without validating against options.arrayLimit, while indexed notation at line 175 checks index <= options.arrayLimit before creating arrays.
PoCTest 1 - Basic bypass:
npm install qs
const qs = require('qs');
const result = qs.parse('a[]=1&a[]=2&a[]=3&a[]=4&a[]=5&a[]=6', { arrayLimit: 5 });
console.log(result.a.length); // Output: 6 (should be max 5)
Test 2 - DoS demonstration:
const qs = require('qs');
const attack = 'a[]=' + Array(10000).fill('x').join('&a[]=');
const result = qs.parse(attack, { arrayLimit: 100 });
console.log(result.a.length); // Output: 10000 (should be max 100)
Configuration:
* arrayLimit: 5 (test 1) or arrayLimit: 100 (test 2)
* Use bracket notation: a[]=value (not indexed a[0]=value)
ImpactDenial of Service via memory exhaustion. Affects applications using qs.parse() with user-controlled input and arrayLimit for protection.
Attack scenario:
* Attacker sends HTTP request: GET /api/search?filters[]=x&filters[]=x&...&filters[]=x (100,000+ times)
* Application parses with qs.parse(query, { arrayLimit: 100 })
* qs ignores limit, parses all 100,000 elements into array
* Server memory exhausted → application crashes or becomes unresponsive
* Service unavailable for all users
Real-world impact:
* Single malicious request can crash server
* No authentication required
* Easy to automate and scale
* Affects any endpoint parsing query strings with bracket notation
error: Package: braces
Installed Version: 2.3.2
Vulnerability CVE-2024-4068
Severity: HIGH
Fixed Version: 3.0.3
Link: [CVE-2024-4068](https://avd.aquasec.com/nvd/cve-2024-4068)
┌─ src/list/package-lock.json:20705:1
│
20705 │ ╭ "node_modules/jscodeshift/node_modules/braces": {
20706 │ │ "version": "2.3.2",
20707 │ │ "license": "MIT",
20708 │ │ "optional": true,
· │
20723 │ │ }
20724 │ │ },
│ ╰^
│
= braces: fails to limit the number of characters it can handle
= The NPM package `braces`, versions prior to 3.0.3, fails to limit the number of characters it can handle, which could lead to Memory Exhaustion. In `lib/parse.js,` if a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, which will cause the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.
error: Package: cross-spawn
Installed Version: 6.0.5
Vulnerability CVE-2024-21538
Severity: HIGH
Fixed Version: 7.0.5, 6.0.6
Link: [CVE-2024-21538](https://avd.aquasec.com/nvd/cve-2024-21538)
┌─ src/list/package-lock.json:14063:1
│
14063 │ ╭ "node_modules/execa/node_modules/cross-spawn": {
14064 │ │ "version": "6.0.5",
14065 │ │ "devOptional": true,
14066 │ │ "license": "MIT",
· │
14076 │ │ }
14077 │ │ },
│ ╰^
│
= cross-spawn: regular expression denial of service
= Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string.
error: Package: cross-spawn
Installed Version: 7.0.3
Vulnerability CVE-2024-21538
Severity: HIGH
Fixed Version: 7.0.5, 6.0.6
Link: [CVE-2024-21538](https://avd.aquasec.com/nvd/cve-2024-21538)
┌─ src/list/package-lock.json:11663:1
│
11663 │ ╭ "node_modules/cross-spawn": {
11664 │ │ "version": "7.0.3",
11665 │ │ "devOptional": true,
11666 │ │
(Truncated to 5714 characters out of 21538)
See detailed reports in MegaLinter artifacts
Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)
- Documentation: Custom Flavors
- Command:
npx [email protected] --custom-flavor-setup --custom-flavor-linters PYTHON_BLACK,PYTHON_FLAKE8,PYTHON_ISORT,PYTHON_BANDIT,PYTHON_MYPY,PYTHON_RUFF,ACTION_ACTIONLINT,BASH_EXEC,BASH_SHELLCHECK,BASH_SHFMT,CSHARP_CSHARPIER,CSHARP_ROSLYNATOR,CSS_STYLELINT,DOCKERFILE_HADOLINT,EDITORCONFIG_EDITORCONFIG_CHECKER,ENV_DOTENV_LINTER,GROOVY_NPM_GROOVY_LINT,HTML_DJLINT,HTML_HTMLHINT,JAVA_CHECKSTYLE,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_KICS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,XML_XMLLINT,YAML_PRETTIER
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 1 update in the /src/list directory: vue.
Bumps the npm_and_yarn group with 1 update in the /src/list/frontend directory: vue.
Bumps the npm_and_yarn group with 2 updates in the /src/list/frontend/tests/e2e directory: @cypress/request and tmp.
Updates
vuefrom 2.7.16 to 3.0.0Changelog
Sourced from vue's changelog.
... (truncated)
Commits
Updates
nanoidfrom 3.3.6 to 3.3.11Release notes
Sourced from nanoid's releases.
Changelog
Sourced from nanoid's changelog.
Commits
37289ceRelease 3.3.11 version23690b7Fix CIc147962Fix RN supporta83734eMove to manually ESM/CJS dual packagebb12e8aRelease 3.3.10 version8f44264Fix Expo supportadf9b0cRelease 3.3.9 version1c6f088Remove dev file from npm package3044cd5Release 3.3.8 version4fe3495Update size limitUpdates
vuefrom 2.7.16 to 3.0.0Changelog
Sourced from vue's changelog.
... (truncated)
Commits
Updates
@cypress/requestfrom 2.88.12 to 3.0.9Release notes
Sourced from
@cypress/request's releases.... (truncated)
Commits
3cffd53Merge pull request #88 from ahayes91/update-form-data7c424d5chore: fix lint issue7f6fdecchore: remove test now that we are on form-data 4.0.4a2f3199fix: update patch version of form-data to address new critical Snyk vulnerabi...a1252ddMerge pull request #84 from cypress-io/renovate/qs-6.x16066b6fix(deps): update dependency qs to v6.14.05fd0770Merge pull request #83 from cypress-io/renovate/cimg-node-18.xb42b322chore(deps): update node.js to v18.20.7e79201aMerge pull request #80 from cypress-io/renovate/cimg-node-18.x0e4e875Merge pull request #81 from cypress-io/renovate/qs-6.xUpdates
qsfrom 6.10.4 to 6.14.0Changelog
Sourced from qs's changelog.
... (truncated)
Commits
32dcc63v6.14.04ec582b[Dev Deps] updatees-value-fixtures,has-bigintsa240c52[Tests] increase coverage25956a7[Refactor]parse: useutils.combinemoreb189ed4[patch]parse: add explicitthrowOnLimitExceededdefault1d590de[actions] simplify finisher6cd60a5[actions] use shared action89edfd2[Deps] updateside-channele26e7a8[Dev Deps] updatehas-proto,has-symbols51fdc98[actions] re-add finishersUpdates
form-datafrom 2.3.3 to 4.0.5Release notes
Sourced from form-data's releases.
... (truncated)
Changelog
Sourced from form-data's changelog.
... (truncated)
Commits
Maintainer changes
This version was pushed to npm by ljharb, a new releaser for form-data since your current version.
Updates
tmpfrom 0.2.3 to 0.2.5Commits
3d2fe38Bump up the versione162828Merge pull request #309 from fflorent/fix-tmp-dir-with-dirb847d2fFix use of tmp.dir() withdiroption08fa3abUpdate version1cf4ec5Merge commit from fork188b25eFix GHSA-52f5-9888-hmc673b9fe4Add test case for GHSA-52f5-9888-hmc6b8e2f29Remove broken tests2892a02Remove outdated URLf592318Reformat package.jsonYou can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.