-
Notifications
You must be signed in to change notification settings - Fork 8
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(dependency maintenance): update dependency @nestjs/core to v9 [security] #820
base: master
Are you sure you want to change the base?
Conversation
⚠ Artifact update problemRenovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is. ♻ Renovate will retry this branch, including artifacts, only when one of the following happens:
The artifact failure details are included below: File name: package-lock.json
|
2bdbf7c
to
9b205a6
Compare
126edba
to
b1ea3fe
Compare
0cdc508
to
296fcf9
Compare
296fcf9
to
9561f21
Compare
|
9561f21
to
1df6340
Compare
6c751c1
to
dccba09
Compare
dccba09
to
ae0b5ea
Compare
This PR contains the following updates:
8.2.6
->9.0.5
GitHub Vulnerability Alerts
CVE-2023-26108
Versions of the package @nestjs/core before 9.0.5 are vulnerable to Information Exposure via the StreamableFile pipe. Exploiting this vulnerability is possible when the client cancels a request while it is streaming a StreamableFile, the stream wrapped by the StreamableFile will be kept open.
Release Notes
nestjs/nest (@nestjs/core)
v9.0.5
Compare Source
v9.0.5 (2022-07-20)
Bug fixes
common
,platform-express
Enhancements
microservices
platform-express
,platform-fastify
Dependencies
platform-fastify
Committers: 4
v9.0.4
Compare Source
v9.0.3
Compare Source
v9.0.2
Compare Source
v9.0.2
Bug fixes
common
Enhancements
core
Dependencies
Committers: 3
v9.0.1
Compare Source
v9.0.0
Compare Source
v9.0.0 (2022-07-08)
Article: https://trilon.io/blog/nestjs-9-is-now-available
Migration guide: https://docs.nestjs.com/migration-guide
Features
common
common
,core
Bug fixes
microservices
Enhancements
common
,core
,platform-express
,platform-fastify
HttpServer#applyVersionFilter
mandatory (@micalevisk)common
inject
on class and value providers at type level (@micalevisk)microservices
postfixId
onKafkaOptions
to be an empty string (@micalevisk)core
common
,core
,microservices
core
,websockets
Dependencies
platform-fastify
microservices
,testing
platform-ws
Committers: 13
v8.4.7
Compare Source
v8.4.7 (2022-06-14)
Enhancements
microservices
common
Dependencies
Committers: 5
v8.4.6
Compare Source
v8.4.5
Compare Source
v8.4.5 (2022-05-13)
Bug fixes
core
Enhancements
common
core
Dependencies
platform-fastify
platform-socket.io
platform-express
common
common
,core
,microservices
,platform-express
,platform-fastify
,platform-socket.io
,platform-ws
,testing
,websockets
Committers: 6
v8.4.4
Compare Source
v8.4.4 (2022-04-07)
Bug fixes
microservices
Enhancements
common
private
modifer on built-in pipes toprotected
(@micalevisk)Dependencies
platform-fastify
platform-express
Committers: 5
v8.4.3
Compare Source
v8.4.2
Compare Source
v8.4.1
Compare Source
v8.4.1 (2022-03-14)
Bug fixes
core
microservices
Enhancements
common
Dependencies
common
platform-fastify
Committers: 6
v8.4.0
Compare Source
v8.4.0 (2022-03-01)
Features
common
,core
Bug fixes
microservices
core
Enhancements
microservices
common
common
,platform-express
,platform-fastify
Dependencies
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.