New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency semver to v6 #54

Open

mend-for-github-com wants to merge 1 commit into master from whitesource-remediate/semver-6.x

mend-for-github-com bot commented Mar 14, 2024

This PR contains the following updates:

Package	Type	Update	Change
semver	devDependencies	major	`^5.3.0` -> `^6.0.0`

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE
High	7.5	CVE-2022-25883

Release Notes

npm/node-semver (semver)

`v6.3.1`

Bug Fixes

928e56d #591 better handling of whitespace (#591) (@lukekarrys, @joaomoreno, @nicolo-ribaudo)

`v6.3.0`

Expose the token enum on the exports

`v6.2.0`

Coerce numbers to strings when passed to semver.coerce()
Add rtl option to coerce from right to left

`v6.1.3`

Handle X-ranges properly in includePrerelease mode

`v6.1.2`

Do not throw when testing invalid version strings

`v6.1.1`

Add options support for semver.coerce()
Handle undefined version passed to Range.test

`v6.1.0`

Add semver.compareBuild function
Support * in semver.intersects

`v6.0.0`

`v5.7.2`

Bug Fixes

2f8fd41 #585 better handling of whitespace (#585) (@joaomoreno, @lukekarrys)

`v5.7.1`

If you want to rebase/retry this PR, check this box


          chore(deps): update dependency semver to v6

80bd644

mend-for-github-com bot added the security fix label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels