dependabotNudge: filter nudges for available patched versions

brave · Feb 6, 2024 · cc5f2b2 · cc5f2b2
1 parent 8a3b543
commit cc5f2b2
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/dependabotNudge.js b/src/dependabotNudge.js
@@ -111,7 +111,8 @@ export default async function dependabotNudge({
                 sort: 'updated',
                 state: 'open',
                 severity: Object.keys(Severity).filter(s => Severity[s] >= minlevel)
-            })).filter(a => !skipHotwords.some(h => a.security_advisory.summary.toLowerCase().includes(h)));
+            })).filter(a => !skipHotwords.some(h => a.security_advisory.summary.toLowerCase().includes(h))).
+                filter(a => a.security_vulnerability?.first_patched_version?.identifier);
 
             // get property values for this repository
             const prop = props[repo.name] || {properties: {}};