Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade markdownlint-cli from 0.27.1 to 0.43.0 #208

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade markdownlint-cli from 0.27.1 to 0.43.0 #208

wants to merge 1 commit into from
+736 −192

Conversation

terrorizer1980
Copy link

snyk-top-banner

Snyk has created this PR to upgrade markdownlint-cli from 0.27.1 to 0.43.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 20 versions ahead of your current version.

  • The recommended version was released 2 months ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Infinite loop
SNYK-JS-MARKDOWNIT-6483324		 479 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-MARKDOWNIT-2331914		 479 No Known Exploit
low severity Prototype Pollution
SNYK-JS-MINIMIST-2429795		 479 Proof of Concept
Release notes
Package name: markdownlint-cli
  • 0.43.0 - 2024-11-23
    • Update markdownlint dependency to 0.36.1
      • Improve MD051
      • Make micromark parser available to custom rules
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.42.0 - 2024-09-24
    • Update markdownlint dependency to 0.35.0
      • Add MD058/blanks-around-tables
      • Use micromark in MD001/MD003/MD009/MD010/MD013/MD014/MD019/MD021/MD023/MD024/MD025/MD039/MD042/MD043
      • Improve MD018/MD020/MD031/MD034/MD044
      • markdown-it parser no longer invoked by default
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.41.0 - 2024-05-26
    • Change TOML parser to smol-toml which supports v1.0.0 of the specification
    • Update all dependencies via Dependabot
  • 0.40.0 - 2024-04-30
    • Update markdownlint dependency to 0.34.0
      • Use micromark in MD027/MD028/MD036/MD040/MD041/MD046/MD048
      • Improve MD013/MD034/MD049/MD050/MD051
    • Add support for TOML configuration files via --config
    • Add --configPointer argument for nested configuration
    • Update --ignore for directories to ignore all files within
    • Update all dependencies via Dependabot
  • 0.39.0 - 2024-01-28
    • Update markdownlint dependency to 0.33.0
      • Add MD055/table-pipe-style, MD056/table-column-count
      • Improve MD005/MD007/MD024/MD026/MD038
      • Incorporate micromark-extension-directive
      • Improve JSON schema, document validation
    • Handle trailing commas in JSONC configuration
    • Update all dependencies via Dependabot
  • 0.38.0 - 2023-12-09
    • Update markdownlint dependency to 0.32.1
      • Remove deprecated MD002/MD006
      • Remove rule aliases for "header"
      • Add MD054/link-image-style
      • Use micromark in MD005/MD007/MD030
      • Improve MD022/MD026/MD034/MD037/MD038/MD045/MD051
    • Remove support for end-of-life Node version 16
    • Update all dependencies via Dependabot
  • 0.37.0 - 2023-09-22
    • Update markdownlint dependency to 0.31.1
      • Improve MD032/MD034/MD037/MD043/MD044/MD051/MD052
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.36.0 - 2023-09-03
    • Update markdownlint dependency to 0.30.0
      • Use micromark in MD022/MD026/MD032/MD037/MD045/MD051
      • Incorporate micromark-extension-math for math syntax
      • Allow custom rules to override information URL
    • Update all dependencies via Dependabot
  • 0.35.0 - 2023-06-17
    • Update markdownlint dependency to 0.29.0
      • Update micromark parser dependencies for better performance
      • Use micromark in MD049/MD050
      • Improve MD034/MD037/MD044/MD049/MD050
    • Update all dependencies via Dependabot
  • 0.34.0 - 2023-04-30
    • Update markdownlint dependency to 0.28.2
      • Introduce micromark parser for better positional data (internal only)
      • Use micromark in MD013/MD033/MD034/MD035/MD038/MD044/MD052/MD053
    • Update all dependencies via Dependabot
  • 0.33.0 - 2023-01-07
  • 0.32.2 - 2022-08-20
  • 0.32.1 - 2022-07-25
  • 0.32.0 - 2022-07-16
  • 0.31.1 - 2022-02-09
  • 0.31.0 - 2022-02-05
  • 0.30.0 - 2021-11-20
  • 0.29.0 - 2021-10-05
  • 0.28.1 - 2021-07-23
  • 0.28.0 - 2021-07-23
  • 0.27.1 - 2021-03-02
from markdownlint-cli GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade markdownlint-cli from 0.27.1 to 0.43.0
eb3c0c1 
Snyk has created this PR to upgrade markdownlint-cli from 0.27.1 to 0.43.0.

See this package in npm:
markdownlint-cli

See this project in Snyk:
https://app.snyk.io/org/terrorizer1980/project/beba94bf-370f-431f-ad11-f6641e4ecc35?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@terrorizer1980 @snyk-bot