Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade markdownlint-cli from 0.22.0 to 0.41.0 #88

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade markdownlint-cli from 0.22.0 to 0.41.0 #88

wants to merge 1 commit into from

Conversation

NOUIY
Copy link
Owner

@NOUIY NOUIY commented Jun 16, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade markdownlint-cli from 0.22.0 to 0.41.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 26 versions ahead of your current version.

  • The recommended version was released on 22 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Infinite loop
SNYK-JS-MARKDOWNIT-6483324		 631 Proof of Concept
medium severity Missing Release of Resource after Effective Lifetime
SNYK-JS-INFLIGHT-6095116		 631 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-MARKDOWNIT-2331914		 631 No Known Exploit
Release notes
Package name: markdownlint-cli
  • 0.41.0 - 2024-05-26
    • Change TOML parser to smol-toml which supports v1.0.0 of the specification
    • Update all dependencies via Dependabot
  • 0.40.0 - 2024-04-30
    • Update markdownlint dependency to 0.34.0
      • Use micromark in MD027/MD028/MD036/MD040/MD041/MD046/MD048
      • Improve MD013/MD034/MD049/MD050/MD051
    • Add support for TOML configuration files via --config
    • Add --configPointer argument for nested configuration
    • Update --ignore for directories to ignore all files within
    • Update all dependencies via Dependabot
  • 0.39.0 - 2024-01-28
    • Update markdownlint dependency to 0.33.0
      • Add MD055/table-pipe-style, MD056/table-column-count
      • Improve MD005/MD007/MD024/MD026/MD038
      • Incorporate micromark-extension-directive
      • Improve JSON schema, document validation
    • Handle trailing commas in JSONC configuration
    • Update all dependencies via Dependabot
  • 0.38.0 - 2023-12-09
    • Update markdownlint dependency to 0.32.1
      • Remove deprecated MD002/MD006
      • Remove rule aliases for "header"
      • Add MD054/link-image-style
      • Use micromark in MD005/MD007/MD030
      • Improve MD022/MD026/MD034/MD037/MD038/MD045/MD051
    • Remove support for end-of-life Node version 16
    • Update all dependencies via Dependabot
  • 0.37.0 - 2023-09-22
    • Update markdownlint dependency to 0.31.1
      • Improve MD032/MD034/MD037/MD043/MD044/MD051/MD052
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.36.0 - 2023-09-03
    • Update markdownlint dependency to 0.30.0
      • Use micromark in MD022/MD026/MD032/MD037/MD045/MD051
      • Incorporate micromark-extension-math for math syntax
      • Allow custom rules to override information URL
    • Update all dependencies via Dependabot
  • 0.35.0 - 2023-06-17
    • Update markdownlint dependency to 0.29.0
      • Update micromark parser dependencies for better performance
      • Use micromark in MD049/MD050
      • Improve MD034/MD037/MD044/MD049/MD050
    • Update all dependencies via Dependabot
  • 0.34.0 - 2023-04-30
    • Update markdownlint dependency to 0.28.2
      • Introduce micromark parser for better positional data (internal only)
      • Use micromark in MD013/MD033/MD034/MD035/MD038/MD044/MD052/MD053
    • Update all dependencies via Dependabot
  • 0.33.0 - 2023-01-07
    • Update markdownlint dependency to 0.27.0
      • Improve MD011/MD013/MD022/MD031/MD032/MD033/MD034/MD040/MD043/MD051/MD053
      • Generate/separate documentation
      • Improve documentation
    • Publish Docker container images for both linux/amd64 and linux/arm64
    • Support JSONC and YAML inside markdownlint-configure-file comments
    • Update all dependencies via Dependabot
  • 0.32.2 - 2022-08-20
    • Update markdownlint dependency to 0.26.2
      • Improve MD037/MD051/MD053
    • Update all dependencies via Dependabot
  • 0.32.1 - 2022-07-25
  • 0.32.0 - 2022-07-16
  • 0.31.1 - 2022-02-09
  • 0.31.0 - 2022-02-05
  • 0.30.0 - 2021-11-20
  • 0.29.0 - 2021-10-05
  • 0.28.1 - 2021-07-23
  • 0.28.0 - 2021-07-23
  • 0.27.1 - 2021-03-02
  • 0.27.0 - 2021-03-02
  • 0.26.0 - 2020-12-16
  • 0.25.0 - 2020-11-17
  • 0.24.0 - 2020-10-02
  • 0.23.2 - 2020-06-30
  • 0.23.1 - 2020-05-17
  • 0.23.0 - 2020-05-05
  • 0.22.0 - 2020-02-09
from markdownlint-cli GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade markdownlint-cli from 0.22.0 to 0.41.0
2843535 
Snyk has created this PR to upgrade markdownlint-cli from 0.22.0 to 0.41.0.

See this package in npm:
markdownlint-cli

See this project in Snyk:
https://app.snyk.io/org/nexuscompute/project/0cfb715e-add8-4b3c-a268-cada62765a5e?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@NOUIY @snyk-bot