Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps-dev): bump typedoc from 0.22.10 to 0.22.11 #481

Merged
merged 1 commit into from
Jan 18, 2022
Merged

build(deps-dev): bump typedoc from 0.22.10 to 0.22.11 #481

merged 1 commit into from
Jan 18, 2022

Conversation

dreamorosi
Copy link
Contributor

Description of your changes

Following security advisory GHSA-5v2h-r2cx-5xgj that impacted marked a dependency of typedoc which we use to generate the docs for the project's API, this PR bumps the version of typedoc to v0.22.11 which in turn uses marked@4.0.10 (see PR) that patches the vulnerability.

How to verify this change

Checkout branch, run npm ci while in root & then run npm run docs-generateApiDoc + npm run docs-runLocalApiDoc.

Related issues, RFCs

N/A

PR status

Is this ready for review?: YES
Is it a breaking change?: NO

Checklist

Breaking change checklist

N/A

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

@dreamorosi dreamorosi added dependencies Changes that touch dependencies, e.g. Dependabot, etc. internal PRs that introduce changes in governance, tech debt and chores (linting setup, baseline, etc.) labels Jan 18, 2022
@dreamorosi dreamorosi added this to the production-ready-release milestone Jan 18, 2022
@dreamorosi dreamorosi self-assigned this Jan 18, 2022
@dreamorosi dreamorosi added this to Pull Requests - Work in progress in Pull Requests via automation Jan 18, 2022
@dreamorosi dreamorosi moved this from Pull Requests - Work in progress to Pull Requests - Review needed in Pull Requests Jan 18, 2022
Pull Requests automation moved this from Pull Requests - Review needed to Pull Requests - Approved and ready to be merged Jan 18, 2022
@flochaz flochaz merged commit 671bf00 into main Jan 18, 2022
Pull Requests automation moved this from Pull Requests - Approved and ready to be merged to Pull Requests - Merged or Closed Jan 18, 2022
@flochaz flochaz deleted the build/bump/typedoc/0.22.11 branch January 18, 2022 13:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@flochaz flochaz flochaz approved these changes

@saragerion saragerion saragerion approved these changes

Assignees

@dreamorosi dreamorosi

Labels
dependencies Changes that touch dependencies, e.g. Dependabot, etc. internal PRs that introduce changes in governance, tech debt and chores (linting setup, baseline, etc.)
Projects
No open projects
Pull Requests
Pull Requests - Merged or Closed
Milestone
production-ready-release
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@dreamorosi @flochaz @saragerion