chore(deps): update dependency grunt to ~1.3.0 - autoclosed #39

mend-for-github-com · 2020-12-18T19:20:01Z

This PR contains the following updates:

Package	Type	Update	Change
grunt (source)	devDependencies	minor	`~1.0.1` -> `~1.3.0`

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE
High	9.8	CVE-2020-28282
High	7.5	CVE-2021-23343
High	7.5	CVE-2021-33623
High	7.1	CVE-2020-7729
Medium	5.3	CVE-2021-23362

Release Notes

gruntjs/grunt

`v1.3.0`

Compare Source

Merge pull request #1720 from gruntjs/update-changelog-deps faab6be
Update Changelog and legacy-util dependency 520fedb
Merge pull request #1719 from gruntjs/yaml-refactor 7e669ac
Switch to use safeLoad for loading YML files via file.readYAML. e350cea
Merge pull request #1718 from gruntjs/legacy-log-bumo 7125f49
Bump legacy-log 00d5907

`v1.2.1`

Compare Source

Changelog update ae11839
Merge pull request #1715 from sibiraj-s/remove-path-is-absolute 9d23cb6
Remove path-is-absolute dependency e789b1f

`v1.2.0`

Compare Source

Allow usage of grunt plugins that are located in any location that
is visible to Node.js and NPM, instead of node_modules directly
inside package that have a dev dependency to these pluginhttps://github.com/gruntjs/grunt/pull/1677nt/pull/1677)
Removed coffeescript from dependencies. To ease transition, if
coffeescript is still around, Grunt will attempt to load it.
If it is not, and the user loads a CoffeeScript file,
Grunt will print a useful error indicating that the
coffeescript package should be installed as a dev dependency.
This is considerably more user-friendly than dropping the require entirely,
but doing so is feasible with the latest grunt-cli as users
may simply use grunt --require https://github.com/gruntjs/grunt/pull/1675thub.com/Remove coffeescript from dependencies. gruntjs/grunt#1675)
Exposes Grunt Option keys for ease of use.
(https://github.com/gruntjs/grunt/pull/15701570)
Avoiding infinite loop on very long command names.
(https://github.com/gruntjs/grunt/pull/16971697)

`v1.1.0`

Compare Source

Update to mkdirp ~1.0.3
Only support versions of Node >= 8

If you want to rebase/retry this PR, click this checkbox.

chore(deps): update dependency grunt to ~1.3.0

56d4879

mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Dec 18, 2020

mend-for-github-com bot changed the title ~~chore(deps): update dependency grunt to ~1.3.0~~ chore(deps): update dependency grunt to ~1.3.0 - autoclosed May 6, 2022

mend-for-github-com bot closed this May 6, 2022

mend-for-github-com bot deleted the whitesource-remediate/grunt-1.x branch May 6, 2022 12:35

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update dependency grunt to ~1.3.0 - autoclosed #39

chore(deps): update dependency grunt to ~1.3.0 - autoclosed #39

mend-for-github-com bot commented Dec 18, 2020 •

edited

chore(deps): update dependency grunt to ~1.3.0 - autoclosed #39

chore(deps): update dependency grunt to ~1.3.0 - autoclosed #39

Conversation

mend-for-github-com bot commented Dec 18, 2020 • edited

Release Notes

v1.3.0

v1.2.1

v1.2.0

v1.1.0

v1.0.4

v1.0.3

v1.0.2

mend-for-github-com bot commented Dec 18, 2020 •

edited

`v1.3.0`

`v1.2.1`

`v1.2.0`

`v1.1.0`

`v1.0.4`

`v1.0.3`

`v1.0.2`