[Snyk] Upgrade marked from 0.3.5 to 8.0.0

[arifishere]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade marked from 0.3.5 to 8.0.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 111 versions ahead of your current version.
• The recommended version was released 24 days ago, on 2023-09-03.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Cross-site Scripting (XSS) npm:marked:20150520	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Cross-site Scripting (XSS) npm:marked:20170112	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Cross-site Scripting (XSS) npm:marked:20170815	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:marked:20170907	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:marked:20180225	654/1000 Why? Has a fix available, CVSS 8.8	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-174116	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342073	654/1000 Why? Has a fix available, CVSS 8.8	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-2342082	654/1000 Why? Has a fix available, CVSS 8.8	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-451540	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKED-584281	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit
	Cross-site Scripting (XSS) npm:marked:20170815-1	654/1000 Why? Has a fix available, CVSS 8.8	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: marked

• 8.0.0 - 2023-09-03
  

  8.0.0 (2023-09-03)

  Bug Fixes

  • remove deprecated options (#2936) (22ebdb2)

  Features

  • add --config options to marked cli (#2937) (fc643a2)

  BREAKING CHANGES

  • deprecated options removed. See https://marked.js.org/using_advanced#options to see how to enable the removed options with extensions.
• 7.0.5 - 2023-08-26
  

  7.0.5 (2023-08-26)

  Bug Fixes

  • remove unknown from walkTokens return types (#2955) (65934c1)
• 7.0.4 - 2023-08-19
  

  7.0.4 (2023-08-19)

  Bug Fixes

  • fix more types (#2893) (a990c54)
  • ignore async: false when async: true is set by an extension (#2920) (b6ee877)
• 7.0.3 - 2023-08-15
  

  7.0.3 (2023-08-15)

  Bug Fixes

  • Fix unicode Regex miscounting emoji length (#2942) (f3af23e)
• 7.0.2 - 2023-08-10
  

  7.0.2 (2023-08-10)

  Bug Fixes

  • fix sourcemaps and circular dependencies (#2929) (eb4ce21)
  • noImplicitAny: true (#2891) (ff1602c)
• 7.0.1 - 2023-08-07
  

  7.0.1 (2023-08-07)

  Bug Fixes

  • use rollup to output js files (#2916) (610bc45)
• 7.0.0 - 2023-08-06
  

  7.0.0 (2023-08-06)

  Bug Fixes

  • change defaults for mangle and headerIds to false (#2890) (63a839b)

  BREAKING CHANGES

  • change defaults for mangle and headerIds to false
• 6.0.0 - 2023-07-31
  

  6.0.0 (2023-07-31)

  Bug Fixes

  • Migrate to Typescript (#2805) (cb54906)

  BREAKING CHANGES

  • Migrate to Typescript
• 5.1.2 - 2023-07-25
  

  5.1.2 (2023-07-25)

  Bug Fixes

  • Add support for Node 16 (#2886) (e465ce4)
• 5.1.1 - 2023-07-07
  

  5.1.1 (2023-07-07)

  Bug Fixes

  • fix typo (#2870) (e6a7184)
• 5.1.0 - 2023-06-10
• 5.0.5 - 2023-06-07
• 5.0.4 - 2023-05-30
• 5.0.3 - 2023-05-26
• 5.0.2 - 2023-05-11
• 5.0.1 - 2023-05-06
• 5.0.0 - 2023-05-02
• 4.3.0 - 2023-03-22
• 4.2.12 - 2023-01-14
• 4.2.11 - 2023-01-14
• 4.2.10 - 2023-01-14
• 4.2.9 - 2023-01-14
• 4.2.8 - 2023-01-14
• 4.2.7 - 2023-01-14
• 4.2.6 - 2023-01-14
• 4.2.5 - 2022-12-23
• 4.2.4 - 2022-12-07
• 4.2.3 - 2022-11-20
• 4.2.2 - 2022-11-05
• 4.2.1 - 2022-11-02
• 4.2.0 - 2022-10-31
• 4.1.1 - 2022-10-01
• 4.1.0 - 2022-08-30
• 4.0.19 - 2022-08-21
• 4.0.18 - 2022-07-11
• 4.0.17 - 2022-06-13
• 4.0.16 - 2022-05-17
• 4.0.15 - 2022-05-02
• 4.0.14 - 2022-04-11
• 4.0.13 - 2022-04-08
• 4.0.12 - 2022-01-27
• 4.0.11 - 2022-01-26
• 4.0.10 - 2022-01-13
• 4.0.9 - 2022-01-06
• 4.0.8 - 2021-12-19
• 4.0.7 - 2021-12-09
• 4.0.6 - 2021-12-02
• 4.0.5 - 2021-11-25
• 4.0.4 - 2021-11-19
• 4.0.3 - 2021-11-13
• 4.0.2 - 2021-11-12
• 4.0.1 - 2021-11-11
• 4.0.0 - 2021-11-02
• 3.0.8 - 2021-10-24
• 3.0.7 - 2021-10-07
• 3.0.6 - 2021-10-06
• 3.0.5 - 2021-10-06
• 3.0.4 - 2021-09-14
• 3.0.3 - 2021-09-08
• 3.0.2 - 2021-08-25
• 3.0.1 - 2021-08-23
• 3.0.0 - 2021-08-16
• 2.1.3 - 2021-06-25
• 2.1.2 - 2021-06-22
• 2.1.1 - 2021-06-16
• 2.1.0 - 2021-06-15
• 2.0.7 - 2021-06-01
• 2.0.6 - 2021-05-27
• 2.0.5 - 2021-05-21
• 2.0.4 - 2021-05-20
• 2.0.3 - 2021-04-11
• 2.0.2 - 2021-04-10
• 2.0.1 - 2021-02-27
• 2.0.0 - 2021-02-07
• 1.2.9 - 2021-02-03
• 1.2.8 - 2021-01-26
• 1.2.7 - 2020-12-15
• 1.2.6 - 2020-12-10
• 1.2.5 - 2020-11-19
• 1.2.4 - 2020-11-15
• 1.2.3 - 2020-11-04
• 1.2.2 - 2020-10-21
• 1.2.1 - 2020-10-21
• 1.2.0 - 2020-09-28
• 1.1.2 - 2020-10-21
• 1.1.1 - 2020-07-14
• 1.1.0 - 2020-05-16
• 1.0.0 - 2020-04-21
• 0.8.2 - 2020-03-22
• 0.8.1 - 2020-03-18
• 0.8.0 - 2019-12-12
• 0.7.0 - 2019-07-06
• 0.6.3 - 2019-06-30
• 0.6.2 - 2019-04-05
• 0.6.1 - 2019-02-19
• 0.6.0 - 2019-01-01
• 0.5.2 - 2018-11-20
• 0.5.1 - 2018-09-26
• 0.5.0 - 2018-08-16
• 0.4.0 - 2018-05-21
• 0.3.19 - 2018-03-26
• 0.3.18 - 2018-03-22
• 0.3.17 - 2018-02-27
• 0.3.16 - 2018-02-20
• 0.3.15 - 2018-02-19
• 0.3.14 - 2018-02-16
• 0.3.13 - 2018-02-16
• 0.3.12 - 2018-01-09
• 0.3.9 - 2017-12-23
• 0.3.7 - 2017-12-01
• 0.3.6 - 2016-07-30
• 0.3.5 - 2015-07-31

from marked GitHub release notes

Commit messages

Package name: marked

• 4a855a8 chore(release): 8.0.0 [skip ci]
• 326d46f 🗜️ build v8.0.0 [skip ci]
• 22ebdb2 fix: remove deprecated options (#2936)
• fc643a2 feat: add --config options to marked cli
• 65b6f14 add config option to bin/marked (#2937)
• afbaebc chore(deps-dev): Bump rollup from 3.28.0 to 3.28.1 (#2960)
• 68ec0c9 chore(deps-dev): Bump typescript from 5.1.6 to 5.2.2 (#2959)
• d491f4e chore(deps-dev): Bump eslint from 8.47.0 to 8.48.0 (#2958)
• f8e0c6e chore(deps-dev): Bump @ rollup/plugin-typescript from 11.1.2 to 11.1.3 (#2957)
• 603197e chore(deps-dev): Bump eslint-plugin-n from 16.0.1 to 16.0.2 (#2956)
• 0ef23ba chore(release): 7.0.5 [skip ci]
• 662e666 🗜️ build v7.0.5 [skip ci]
• 65934c1 fix: remove unknown from walkTokens return types (#2955)
• 5bc2fdb chore(deps-dev): Bump @ typescript-eslint/eslint-plugin from 6.3.0 to 6.4.1 (#2953)
• e7d4915 chore(deps-dev): Bump @ typescript-eslint/parser from 6.4.0 to 6.4.1 (#2952)
• 14a6e03 chore(deps-dev): Bump @ typescript-eslint/parser from 6.3.0 to 6.4.0 (#2948)
• 1ca75b5 chore(deps-dev): Bump eslint-plugin-import from 2.28.0 to 2.28.1 (#2949)
• c599264 chore(deps-dev): Bump semantic-release from 21.0.7 to 21.0.9 (#2951)
• dd2a74e chore(deps-dev): Bump @ semantic-release/npm from 10.0.4 to 10.0.5 (#2950)
• f2a6368 chore(release): 7.0.4 [skip ci]
• 6867c38 🗜️ build v7.0.4 [skip ci]
• b6ee877 fix: ignore async: false when async: true is set by an extension (#2920)
• a990c54 fix: fix more types (#2893)
• 4e6acc8 docs: Tweaks to docs to make them clearer, regarding hooks and options to lexer/parser (#2946)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs