Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

tools: update path-parse to 1.0.7 #39232

Merged
merged 1 commit into from
Jul 4, 2021
Merged

tools: update path-parse to 1.0.7 #39232

merged 1 commit into from
Jul 4, 2021

Conversation

Trott
Copy link
Member

@Trott Trott commented Jul 2, 2021

path-parse 1.0.6 is vulnerable to ReDoS. Update to 1.0.7. Uh, not that a
ReDoS is likely to affect us in this tool.

Refs: jbgutierrez/path-parse@09e1086

@Trott Trott added the request-ci Add this label to start a Jenkins CI on a PR. label Jul 2, 2021
@github-actions github-actions bot added tools Issues and PRs related to the tools directory. and removed request-ci Add this label to start a Jenkins CI on a PR. labels Jul 2, 2021
@nodejs-github-bot
Copy link
Collaborator

@nodejs-github-bot
Copy link
Collaborator

path-parse 1.0.6 is vulnerable to ReDoS. Update to 1.0.7. Uh, not that a
ReDoS is likely to affect us in this tool.

Refs: jbgutierrez/path-parse@09e1086

PR-URL: nodejs#39232
Reviewed-By: Michaël Zasso <targos@protonmail.com>
Reviewed-By: Zijian Liu <lxxyxzj@gmail.com>
@Trott
Copy link
Member Author

Trott commented Jul 4, 2021

Landed in 2d542f5

@Trott Trott merged commit 2d542f5 into nodejs:master Jul 4, 2021
@Trott Trott deleted the path-parse branch July 4, 2021 14:42
targos pushed a commit that referenced this pull request Jul 11, 2021
path-parse 1.0.6 is vulnerable to ReDoS. Update to 1.0.7. Uh, not that a
ReDoS is likely to affect us in this tool.

Refs: jbgutierrez/path-parse@09e1086

PR-URL: #39232
Reviewed-By: Michaël Zasso <targos@protonmail.com>
Reviewed-By: Zijian Liu <lxxyxzj@gmail.com>
targos pushed a commit that referenced this pull request Sep 4, 2021
path-parse 1.0.6 is vulnerable to ReDoS. Update to 1.0.7. Uh, not that a
ReDoS is likely to affect us in this tool.

Refs: jbgutierrez/path-parse@09e1086

PR-URL: #39232
Reviewed-By: Michaël Zasso <targos@protonmail.com>
Reviewed-By: Zijian Liu <lxxyxzj@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
tools Issues and PRs related to the tools directory.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants