Skip to content
This repository has been archived by the owner on Feb 6, 2025. It is now read-only.

chore(deps): update dependency parse-url to 8.1.0 [security] #613

Closed
wants to merge 1 commit into from
Closed

chore(deps): update dependency parse-url to 8.1.0 [security] #613

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Mar 17, 2023

Mend Renovate

This PR contains the following updates:

Package Change
parse-url 5.0.2 -> 8.1.0

GitHub Vulnerability Alerts

CVE-2022-0722

Exposure of Sensitive Information to an Unauthorized Actor via hostname confusion in GitHub repository ionicabizau/parse-url prior to 6.0.1

CVE-2022-2218

Cross-site Scripting (XSS) - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0.

CVE-2022-2216

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 7.0.0.

CVE-2022-2217

Cross-site Scripting (XSS) - Generic in GitHub repository ionicabizau/parse-url prior to 6.0.1

CVE-2022-2900

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 8.1.0.

CVE-2022-3224

parse-url prior to 8.1.0 is vulnerable to Misinterpretation of Input. parse-url parses certain http or https URLs incorrectly, identifying the URL's protocol as ssh. It may also parse the host name incorrectly.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 24, 2023
@renovate renovate bot closed this Mar 24, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 24, 2023 13:46
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 24, 2023
@renovate renovate bot reopened this Mar 24, 2023
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 24, 2023
@renovate renovate bot closed this Mar 24, 2023
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 25, 2023
@renovate renovate bot reopened this Mar 25, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 25, 2023 00:23
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 25, 2023
@renovate renovate bot closed this Mar 25, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 25, 2023 01:48
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 25, 2023
@renovate renovate bot reopened this Mar 25, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 25, 2023 06:49
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 27, 2023
@renovate renovate bot closed this Mar 27, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 27, 2023 19:47
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 27, 2023
@renovate renovate bot reopened this Mar 27, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 27, 2023 22:43
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 28, 2023
@renovate renovate bot closed this Mar 28, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 28, 2023 01:06
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 28, 2023
@renovate renovate bot reopened this Mar 28, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 28, 2023 06:02
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 28, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 28, 2023 07:15
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 28, 2023
@renovate renovate bot reopened this Mar 28, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 28, 2023 11:59
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 28, 2023
@renovate renovate bot closed this Mar 28, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 28, 2023 13:10
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 28, 2023
@renovate renovate bot reopened this Mar 28, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 28, 2023 18:42
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 30, 2023
@renovate renovate bot closed this Mar 30, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 30, 2023 00:12
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 30, 2023
@renovate renovate bot reopened this Mar 30, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 30, 2023 00:58
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 30, 2023
@renovate renovate bot closed this Mar 30, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 30, 2023 02:46
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 30, 2023
@renovate renovate bot reopened this Mar 30, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 30, 2023 07:15
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed Mar 30, 2023
@renovate renovate bot closed this Mar 30, 2023
@renovate renovate bot deleted the renovate/npm-parse-url-vulnerability branch March 30, 2023 08:54
@renovate renovate bot changed the title chore(deps): update dependency parse-url to 8.1.0 [security] - autoclosed chore(deps): update dependency parse-url to 8.1.0 [security] Mar 30, 2023
@renovate renovate bot reopened this Mar 30, 2023
@renovate renovate bot restored the renovate/npm-parse-url-vulnerability branch March 30, 2023 14:51
@khriztianmoreno khriztianmoreno deleted the renovate/npm-parse-url-vulnerability branch January 29, 2024 13:28
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@khriztianmoreno