Skip to content
This repository has been archived by the owner on Mar 22, 2022. It is now read-only.

Update dependency ajv to 6.12.3 [SECURITY] #335

Merged
merged 1 commit into from
Feb 12, 2022
Merged

Update dependency ajv to 6.12.3 [SECURITY] #335

merged 1 commit into from
Feb 12, 2022

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Feb 12, 2022

WhiteSource Renovate

This PR contains the following updates:

Package Change
ajv 6.12.0 -> 6.12.3

GitHub Vulnerability Alerts

CVE-2020-15366

An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by WhiteSource Renovate. View repository job log here.

@renovate renovate bot merged commit 958d0c6 into master Feb 12, 2022
@renovate renovate bot deleted the renovate/npm-ajv-vulnerability branch February 12, 2022 02:26
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@renovate-bot