Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency webpack-dev-server to v2.9.5 - autoclosed #47

Closed
wants to merge 1 commit into from
Closed

Update dependency webpack-dev-server to v2.9.5 - autoclosed #47

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link
Contributor

This PR contains the following updates:

Package Type Update Change
webpack-dev-server dependencies patch 2.9.4 -> 2.9.5

This PR resolves the vulnerabilities described in Issue #34

Version 2.9.4
Risk Change Critical High Medium Low
N/A 5 16 8 1
Version 2.9.5
Risk Change Critical High Medium Low
-76% 1 (-4 ) 7 (-9 ) 5 (-3 ) 0 (-1 )
Version 2.11.5
Risk Change Critical High Medium Low
-76% 1 (-4 ) 7 (-9 ) 5 (-3 ) 0 (-1 )

Mend ensures you have the greatest risk reduction ("Recommended Fix"-highlighted in green) by removing as many vulnerabilities as possible. Click to see how we calculate risk reduction.

Release Notes

webpack/webpack-dev-server

v2.9.5

Compare Source

Updates

  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Nov 3, 2023
@coderabbitai coderabbitai
Copy link

coderabbitai bot commented Nov 3, 2023

Important

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

Tips

Chat with CodeRabbit Bot (@coderabbitai)

  • If you reply to a review comment from CodeRabbit, the bot will automatically respond.
  • To engage with CodeRabbit bot directly around the specific lines of code in the PR, mention @coderabbitai in your review comment
  • Note: Review comments are made on code diffs or files, not on the PR overview.
  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Commands (invoked as PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai help to get help.
  • @coderabbitai resolve to resolve all the CodeRabbit review comments.

Note: For conversation with the bot, please use the review comments on code diffs or files.

CodeRabbit Configration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • The JSON schema for the configuration file is available here.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.json

@mend-for-github-com mend-for-github-com bot changed the title Update dependency webpack-dev-server to v2.9.5 Update dependency webpack-dev-server to v2.9.5 - autoclosed Nov 3, 2023
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/webpack-dev-server-2.x branch November 3, 2023 07:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants