Skip to content

[security] update lockfile to fix security vuln #42

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
newhouse merged 1 commit into from
Apr 2, 2021
Merged

[security] update lockfile to fix security vuln #42

newhouse merged 1 commit into from
Apr 2, 2021

Conversation

@newhouse
Copy link
Contributor

@newhouse newhouse commented Apr 1, 2021
edited
Loading

Description of the change

Not sure why dependabot only fixed the 4.X requirements, but the 5.x one is also vulnerable, so this updates that.

https://github.com/anvilco/node-anvil/security/dependabot/yarn.lock/y18n/open

Type of change

  • Bug fix (non-breaking change that fixes an issue)
  • New feature (non-breaking change that adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)

Related issues

Checklists

Development

  • The code changed/added as part of this pull request has been covered with tests
  • All tests related to the changed code pass in development
  • No previous tests unrelated to the changed code fail in development

Code review

  • This pull request has a descriptive title and information useful to a reviewer. There may be a screenshot or screencast attached.
  • At least one reviewer has been requested
  • Changes have been reviewed by at least one other engineer
  • The relevant project board has been selected in Projects to auto-link to this pull request

@newhouse newhouse requested review from Winggo and benogle and removed request for Winggo April 1, 2021 23:59
@newhouse newhouse changed the title update lockfile to fix security vuln [security] update lockfile to fix security vuln Apr 2, 2021
@newhouse newhouse merged commit 3718848 into master Apr 2, 2021
@newhouse newhouse deleted the newhouse/update-y18n-5 branch April 2, 2021 00:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@benogle benogle Awaiting requested review from benogle

1 more reviewer

@Winggo Winggo Winggo approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@newhouse @Winggo