Skip to content

fix(deps): update dependency semver-regex to v4

Botaniker (Bot) requested to merge renovate/semver-regex-4.x into deploy

This MR contains the following updates:

Package Type Update Change
semver-regex dependencies major 3.1.2 -> 4.0.5

Release Notes

sindresorhus/semver-regex

v4.0.5

Compare Source

Tip: If you use it in a server context, it's a good idea to give the regex a timeout.

v4.0.4

Compare Source

Tip: If you use it in a server context, it's a good idea to give the regex a timeout.

v4.0.3

Compare Source

  • Fix ReDoS vulnerability d8ba39a
    • This only affects you if you run the regex on untrusted user input in a server context.
    • Also back-ported to v3 in 3.1.4.
    • CVE pending

v4.0.2

Compare Source

  • No changes. Just fixing a npm dist tag.

v4.0.1

Compare Source

  • Fix ReDoS vulnerability 11c6624
    • This only affects you if you run the regex on untrusted user input in a server context.
    • Also back-ported to v3 in 3.1.3.
    • CVE-2021-3795

v4.0.0

Compare Source

Breaking

v3.1.4

Compare Source

v3.1.3

Compare Source


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.


  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot. The local configuration can be found in the SI Renovate Bot repository.

Edited by Botaniker (Bot)

Merge request reports