Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[chore] pin version of npm package #10063

Merged
merged 2 commits into from
May 1, 2024
Merged

[chore] pin version of npm package #10063

merged 2 commits into from
May 1, 2024

Conversation

codeboten
Copy link
Contributor

this addresses a security concern around the version of the package installed

@codeboten
[chore] pin version of npm package
13ca44b 
this addresses a security concern around the version of the package installed

Signed-off-by: Alex Boten <223565+codeboten@users.noreply.github.com>
@codeboten codeboten requested a review from a team as a code owner May 1, 2024 17:26
@codeboten codeboten requested a review from jpkrohling May 1, 2024 17:26
@codecov Codecov
Copy link

codecov bot commented May 1, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 91.87%. Comparing base (aacb835) to head (98290cb).

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #10063      +/-   ##
==========================================
- Coverage   91.88%   91.87%   -0.02%     
==========================================
  Files         360      360              
  Lines       16725    16725              
==========================================
- Hits        15368    15366       -2     
- Misses       1020     1021       +1     
- Partials      337      338       +1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@codeboten codeboten merged commit 334d95a into open-telemetry:main May 1, 2024
48 checks passed
@codeboten codeboten deleted the codeboten/pin-version-markdown-check branch May 1, 2024 19:40
@github-actions github-actions bot added this to the next release milestone May 1, 2024
andrzej-stencel pushed a commit to andrzej-stencel/opentelemetry-collector that referenced this pull request May 27, 2024
@codeboten @andrzej-stencel
[chore] pin version of npm package (open-telemetry#10063)
bec0217 
this addresses a security concern around the version of the package
installed

Signed-off-by: Alex Boten <223565+codeboten@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TylerHelmuth TylerHelmuth TylerHelmuth approved these changes

@jpkrohling jpkrohling Awaiting requested review from jpkrohling jpkrohling is a code owner automatically assigned from open-telemetry/collector-approvers

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v0.100.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@codeboten @TylerHelmuth