[Snyk] Upgrade nodemon from 2.0.4 to 2.0.21 #92

ChronisYan · 2023-03-23T19:19:21Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade nodemon from 2.0.4 to 2.0.21.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 27 versions ahead of your current version.
The recommended version was released 21 days ago, on 2023-03-02.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-INI-1048974	375/1000 Why? CVSS 7.5	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	375/1000 Why? CVSS 7.5	Proof of Concept
Open Redirect SNYK-JS-GOT-2932019	375/1000 Why? CVSS 7.5	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	375/1000 Why? CVSS 7.5	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	375/1000 Why? CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: nodemon

2.0.21 - 2023-03-02
2.0.21 (2023-03-02)

Bug Fixes
- remove ts mapping if loader present (1468397), closes #2083
2.0.20 - 2022-09-16
2.0.20 (2022-09-16)

Bug Fixes
- remove postinstall script (e099e91)
2.0.19 - 2022-07-05
2.0.19 (2022-07-05)

Bug Fixes
- Replace update notifier with simplified deps (#2033) (176c4a6), closes #1961 #2028
2.0.18 - 2022-06-23
2.0.18 (2022-06-23)

Bug Fixes
- revert update-notifier forcing esm (1b3bc8c)
2.0.17 - 2022-06-23
2.0.17 (2022-06-23)

Bug Fixes
- bump update-notifier to v6.0.0 (#2029) (0144e4f)
- update packge-lock (27e91c3)
2.0.16 - 2022-04-29
2.0.16 (2022-04-29)

Bug Fixes
- support windows by using path.delimiter (e26aaa9)
2.0.15 - 2021-11-09
2.0.15 (2021-11-09)

Bug Fixes
- bump prod dep versions (54784ab)
2.0.14 - 2021-10-19
2.0.14 (2021-10-19)

Bug Fixes
- add windows signals SIGUSR2 & SIGUSR1 to terminate the process (#1938) (61e7abd), closes #1903 #1915 #1936 #1937 #1882 #1893
2.0.14-alpha.1 - 2021-10-18
2.0.13 - 2021-09-23
2.0.13 (2021-09-23)

Bug Fixes
- bump update-notifier (90e7a3e), closes #1919
- release process on main (9f82a48)
2.0.13-alpha.1 - 2021-07-27
2.0.12 - 2021-07-10
2.0.12 (2021-07-10)

Bug Fixes
- windows: properly handle quoted args in event (0823f18), closes #1823
2.0.12-alpha.3 - 2021-07-10
2.0.12-alpha.2 - 2021-07-10
2.0.12-alpha.1 - 2021-07-10
2.0.11 - 2021-07-09
2.0.11-alpha.1 - 2021-07-09
2.0.10 - 2021-07-08
2.0.10-alpha.2 - 2021-07-07
2.0.10-alpha.1 - 2021-07-02
2.0.9 - 2021-06-30
2.0.8 - 2021-06-29
2.0.8-alpha.a - 2021-05-05
2.0.8-alpha.1 - 2021-06-30
2.0.7 - 2021-01-06
2.0.6 - 2020-10-19
2.0.5 - 2020-10-13
2.0.4 - 2020-05-14

from nodemon GitHub release notes

Commit messages

Package name: nodemon

1468397 fix: remove ts mapping if loader present
adaafa1 One more fix
010266a Get rid of spawning shell windows if nodemon is started without console.
ec9ea6c chore: update supporters
a15f469 chore: + support
fb7cd1c chore: supporters
736dff0 chore: update
506c80f chore: update supporters
ee561cf chore: fix url
544e3d5 chore: supporters
80dc137 chore: supporters
1de684b chore: supporters
0a6ff95 Merge branch 'main' of github.com:remy/nodemon
fcf423d chore: update supporters
fe6471e docs: add workaround for inspect problem to faq.md
e099e91 fix: remove postinstall script
05de353 chore: supports
876d60c chore: supporters
188f2d3 chore: supporters
a1ad44a chore: supporters update
8abd3fc chore: supporters update
30c80f8 chore: add unused files to .npmignore (#2055)
3dd38de docs: added link on banner (#1944)
fb51359 docs: add important note about ignore rules

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade nodemon from 2.0.4 to 2.0.21. See this package in npm: https://www.npmjs.com/package/nodemon See this project in Snyk: https://app.snyk.io/org/chronisg/project/cb04f975-3871-4319-a66c-f20c7e75c7d0?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade nodemon from 2.0.4 to 2.0.21 #92

[Snyk] Upgrade nodemon from 2.0.4 to 2.0.21 #92

ChronisYan commented Mar 23, 2023

2.0.21 (2023-03-02)

Bug Fixes

2.0.20 (2022-09-16)

Bug Fixes

2.0.19 (2022-07-05)

Bug Fixes

2.0.18 (2022-06-23)

Bug Fixes

2.0.17 (2022-06-23)

Bug Fixes

2.0.16 (2022-04-29)

Bug Fixes

2.0.15 (2021-11-09)

Bug Fixes

2.0.14 (2021-10-19)

Bug Fixes

2.0.13 (2021-09-23)

Bug Fixes

2.0.12 (2021-07-10)

Bug Fixes

[Snyk] Upgrade nodemon from 2.0.4 to 2.0.21 #92

Are you sure you want to change the base?

[Snyk] Upgrade nodemon from 2.0.4 to 2.0.21 #92

Conversation

ChronisYan commented Mar 23, 2023

Snyk has created this PR to upgrade nodemon from 2.0.4 to 2.0.21.

2.0.21 (2023-03-02)

Bug Fixes

2.0.20 (2022-09-16)

Bug Fixes

2.0.19 (2022-07-05)

Bug Fixes

2.0.18 (2022-06-23)

Bug Fixes

2.0.17 (2022-06-23)

Bug Fixes

2.0.16 (2022-04-29)

Bug Fixes

2.0.15 (2021-11-09)

Bug Fixes

2.0.14 (2021-10-19)

Bug Fixes

2.0.13 (2021-09-23)

Bug Fixes

2.0.12 (2021-07-10)

Bug Fixes