Update dependency shelljs to v0.8.5 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
shelljs	0.3.0 -> 0.8.5

GitHub Vulnerability Alerts

GHSA-64g7-mvw6-v9qj

Impact

Output from the synchronous version of shell.exec() may be visible to other users on the same system. You may be affected if you execute shell.exec() in multi-user Mac, Linux, or WSL environments, or if you execute shell.exec() as the root user.

Other shelljs functions (including the asynchronous version of shell.exec()) are not impacted.

Patches

Patched in shelljs 0.8.5

Workarounds

Recommended action is to upgrade to 0.8.5.

References

https://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c/

For more information

If you have any questions or comments about this advisory:

• Ask at https://github.com/shelljs/shelljs/issues/1058
• Open an issue at https://github.com/shelljs/shelljs/issues/new

CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management

---

Release Notes

shelljs/shelljs

v0.8.5

Compare Source

This was a small security fix for #​1058.

v0.8.4

Compare Source

Small patch release to fix a circular dependency warning in node v14. See #​973.

v0.8.3

Compare Source

Full Changelog

Closed issues:

• Shelljs print stderr to console even if exec-only "silent" is true #​905
• refactor: remove common.state.tempDir #​902
• Can't suppress stdout for echo #​899
• exec() doesn't apply the arguments correctly #​895
• shell.exec('npm pack') painfully slow #​885
• shelljs.exec cannot find app.asar/node_modules/shelljs/src/exec-child.js #​881
• test infra: mocks and skipOnWin conflict #​862
• Support for shell function completion on IDE #​859
• echo command shows options in stdout #​855
• silent does not always work #​851
• Appveyor installs the latest npm, instead of the latest compatible npm #​844
• Force symbolic link (ln -sf) does not overwrite/recreate existing destination #​830
• inconsistent result when trying to echo to a file #​798
• Prevent require()ing executable-only files #​789
• Cannot set property to of [object String] which has only a getter #​752
• which() should check executability before returning a value #​657
• Bad encoding experience #​456
• phpcs very slow #​440
• Error shown when triggering a sigint during shelljs.exec if process.on sigint is defined #​254
• .to\(file\) does not mute STDIO output #​146
• Escaping shell arguments to exec() #​143
• Allow multiple string arguments for exec() #​103
• cp does not recursively copy from readonly location #​98
• Handling permissions errors on file I/O #​64

Merged pull requests:

• Add test case for sed on empty file #​904 (wyardley)
• refactor: don't expose tempdir in common.state #​903 (nfischer)
• chore(ci): fix codecov on travis #​897 (nfischer)
• chore(npm): add ci-or-install script #​896 (nfischer)
• Fix silent exec #​892 (nfischer)
• chore(appveyor): run entire test matrix #​886 (nfischer)
• docs: remove gitter badge #​880 (nfischer)
• grep includes the i flag #​876 (ppsleep)
• Fix(which): match only executable files (#​657) #​874 (termosa)
• chore: rename some tests #​871 (nfischer)
• Fix cp from readonly source #​870 (nfischer)
• chore: bump dev dependencies and add package-lock #​864 (nfischer)
• fix(mocks): fix conflict between mocks and skip #​863 (nfischer)
• chore: output npm version in travis #​850 (nfischer)
• Prevent require-ing bin/shjs #​848 (freitagbr)
• chore(appveyor): do not use latest npm #​847 (nfischer)
• chore: update shelljs-release version #​846 (nfischer)

v0.8.2

Compare Source

Full Changelog

Closed issues:

• High severity vulnerability in shelljs 0.8.1 #​842
• Add test for ls() on a symlink to a directory #​795
• Harden shell.exec by writing the child process in a source file #​782
• shell.exec() doesn't respond correctly to config.fatal = true #​735
• Merge 'exec: internal error' with ShellJSInternalError #​734
• exec returning null from command #​724
• Only Get Stderr from Exec #​371
• Execute child.stdout.on before child.on("exit") #​224

Merged pull requests:

• Workaround codecov bug of miscalculation of coverage (#​795) #​838 (dwi2)
• Update doc comments and regenerate README.md. #​825 (Zearin)
• chore: update contributing guidelines #​817 (nfischer)
• chore(lint): don't allow excess trailing newlines #​816 (nfischer)
• Remove separate "internal error" from exec #​802 (freitagbr)

v0.8.1

Compare Source

Full Changelog

Closed issues:

• Exec failing with internal error when piping large output #​818

Merged pull requests:

• Revert "refactor(exec): remove paramsFile (#​807)" #​819 (nfischer)

v0.8.0

Compare Source

Full Changelog

Closed issues:

• Snyk vulnerability DB reporting command injection vulnerability in ShellJS #​810
• chore: upgrade nyc #​803
• Update CI to use Node v9 #​799
• Link to FAQ wiki section in our issue template #​787
• Is it possible to get a js library(file) for ShellJS #​776
• 48, #​774
• 47 #​773
• Exec function calls JSON.stringify on command #​772
• getting different result from terminal and with shelljs #​769
• test() does not support -w and -x options #​768
• Snyk "high severity" issue #​766
• Snyk "high security #​765
• ShellJS doesn't respect NPM Registry being set outside of it #​761
• Run second shell script #​756
• shelljs seems NOT compatible with nexe under CentOS 6.5 #​754
• Feature request: pushd/popd -q option #​753
• cat doesn't support '-n' option #​750
• shelljs run xcodebuild error #​749
• Add wrappers around fs.statSync and fs.lstatSync #​745
• Improve coverage for exec() #​742
• Improve coverage for head() #​741
• shelljs is no longer used in PDF.js #​737
• ls doesn't follow links to directories #​733
• Add test for ls regular-file.txt #​732
• Clean up common tests #​714
• Cant get encoding buffer to work on exec #​675
• Set up Codecov for the project #​671
• ShellJS: internal error Error: EBUSY: resource busy or locked, lstat 'C:\pagefile.sys' #​514
• Feature request: provide a way to skip option parsing #​778
• Switch to os.homedir() when we move to v4+ #​683
• Drop support for v0.12 #​647
• feature: echo -n #​559
• Don't kill the node process upon unexpected error #​483
• Echo doesn't return value ending in a trailing newline #​476
• Synchronous exec stalls permenantly when there is an error/w the shell #​7

Merged pull requests:

• docs: announce plugin API #​812 (nfischer)
• chore: update CI to Node v9 #​811 (nfischer)
• refactor(exec): remove paramsFile #​807 (nfischer)
• chore: update nyc dependency #​805 (nfischer)
• refactor: harden plugins against unknown options #​804 (nfischer)
• chore(eslint): use words instead of numbers #​797 (nfischer)
• Add note to issue template about FAQ #​794 (freitagbr)
• Remove codeFile parameter #​791 (nfischer)
• Use execFileSync to launch child process #​790 (nfischer)
• refactor(exec): move child process to source file #​786 (nfischer)
• Remove unnecessary shell.error checks from common tests #​785 (freitagbr)
• Add a test for ls for a single file #​784 (freitagbr)
• Wrap fs.statSync and fs.lstatSync #​783 (freitagbr)
• chore: set AVA options #​780 (nfischer)
• chore: clean up refs to unsupported node versions #​779 (nfischer)
• Added -q (quiet) option to push, popd, dirs functions. #​777 (alexreg)
• feat(cat): number output lines (#​750) #​775 (gcca)
• refactor(test): update AVA and refactor tests #​760 (nfischer)
• chore: add skipOnWin and skipOnUnix test helpers #​746 (nfischer)
• test(exec): add tests for coverage #​744 (nfischer)
• test(head): improve coverage #​743 (nfischer)
• Remove PDF.js mention from README.md #​738 (voy)
• Provide an API to pass parameters which resemble options #​792 (nfischer)
• Fix ls not following links to directories by default #​764 (freitagbr)
• Add "encoding" option to exec #​763 (freitagbr)
• Merge dev into master #​731 (freitagbr)
• Deprecate common.getUserHome, advise using os.homedir instead #​725 (freitagbr)
• Echo test mocks #​708 (freitagbr)
• Safely exit by throwing an error #​546 (freitagbr)
• chore(make): depreciate shelljs/make #​431 (ariporad)

v0.7.8

Compare Source

Full Changelog

Closed issues:

• Add node v8 to CI #​729
• Exec not working in Electron ! #​726
• is rechoir used anywhere? #​723
• ShellJS: internal error on shelljs.mkdir('myFile/myDir') #​720
• Can't make sed perform global replace #​719
• grep: option not recognized: l #​717
• Problems getting code, stdout, stderr #​715
• Copying hidden files fails on Windows 10 #​711
• How am I suppose to handle errors with ShellJS? #​707
• use cp('-r', './src', './dist') bug #​705
• Way to ignore files in globs. #​699
• Buffer constructor is deprecated #​694
• source command not working via exec method. #​693
• Would you be interested in a PR for open? #​692
• Get rid of common.platform in favor of process.platform #​670
• Passing empty string to cp throws internal error #​664
• Why does sed split files into an array, call replace on each line and rejoin? #​645
• feat: cp & mv should not overwrite recently created files #​631
• Echo tests unnecessarily run tests in own process #​622
• rm -rf on a symbolic link to a dir deletes its contents #​587
• "Cannot extract package" with node-webkit #​181
• EBADF, bad file descriptor #​180

Merged pull requests:

• Add node 8 to CI #​730 (freitagbr)
• fix(mkdir): improve error handling around files #​721 (nfischer)
• Properly handle directories as arguments #​713 (nfischer)
• Add common.buffer #​710 (freitagbr)
• Fix common.expand error #​709 (freitagbr)
• refactor: remove unnecessary common.js imports #​703 (nfischer)
• Fix #​631 throw error when overwriting recently created file #​702 (uttpal)
• Small clarification of verbose flag #​691 (zommerfelds)
• fix(grep, sed, sort, uniq): Split only on newline characters #​690 (freitagbr)
• Refactor: Use process.platform across codebase #​689 (freitagbr)
• Remove contents of symlink to dir with rm -rf #​688 (freitagbr)
• Echo stdout #​677 (nfischer)

v0.7.7

Compare Source

Full Changelog

Closed issues:

• Error output should be consistent across all platforms. #​681
• *CRITICAL data loss* shell.cp() Content of file is erased when trying to copy it to the folder it already belongs to #​678
• Use with webpack broken in 0.7.6 #​667
• Difference between bash ls -R and ShellJS ls -R with symlinks #​666
• Refactor which() (too many repeated code blocks) #​656
• find() raises error when unable to find any files matching, expected to return empty array. #​653
• Reformat the markdown in RELEASE.md #​642
• rm -rf doesn't work if the directory contains an asar archive in Electron #​618
• Add support for other file types in rm #​617
• Feature request: ls -L option #​563
• How to send SIGINT signal to child process launched with exec #​518
• feature request: option to add node_modules to the path for shelljs scripts #​469
• high cpu usage during synchronous exec #​167

Merged pull requests:

• Add support for removing fifos #​687 (freitagbr)
• chore: add codecov script to appveyor CI #​686 (nfischer)
• Refactor tests to improve readability #​685 (nfischer)
• fix: convert error output to be consistent cross-platform #​684 (nfischer)
• chore: add codecov #​682 (nfischer)
• Fix cp overwriting identical files #​679 (freitagbr)
• Modified glob pattern. Fixes #​666 #​676 (frandiox)
• refactor(parseOptions): better handle errors #​674 (nfischer)
• test: add misc. tests to improve coverage #​673 (nfischer)
• test: don't count hard-to-test lines for coverage #​672 (nfischer)
• fix: switch commands.json -> commands.js #​668 (nfischer)
• ls -L (follow symlinks) #​665 (frandiox)
• docs(chmod): document options argument #​663 (gkalpak)
• docs: clean up RELEASE.md #​662 (nfischer)
• docs: miscellaneous README changes #​661 (nfischer)
• Fix typo in README #​660 (faheel)
• refactor: reduce repeated code in which() #​659 (nfischer)
• feature: add -a option for which command #​655 (termosa)
• Fix find ENOENT #​654 (freitagbr)
• Safely exit by throwing an error #​649 (freitagbr)
• Chore drop 0.12 #​648 (nfischer)
• chore(lint): Enforce a trailing comma for multi-line #​646 (nfischer)
• docs(release): use bulleted list #​643 (freitagbr)

v0.7.6

Compare Source

Full Changelog

Closed issues:

• unable to execute ionic command with shell js #​640
• How to increase ShellJS buffer size? #​639
• mkdir fails with non-normalized path #​634
• Move execPath into common #​633
• QUESTION: Feedback while an operation is running? #​629
• Test setup/cleanup is broken #​621
• Ignore temp directories when running lint #​620
• parseOptions should throw an error if the option string doesn't start with '-' #​614
• chore: LGTM.co is gone #​595
• refactor: objectAssign should refer to Object.assign if it exists, or the internal polyfill otherwise #​592
• parseOptions: allow a way to keep errors silent (exception only) #​591
• [Question] commands with multiple options / arguments? #​589
• feature: GNU Parallel #​585
• write to file #​568
• Cannot figure out how to disable globbing for rm #​567
• Switch to the ava test framework #​560
• Option not recognized #​556
• chore: add @​freitagbr to LGTM maintainers #​552
• chore: set up dev branch #​548
• bug: cp() doesn't always copy everything #​547
• User-friendly lint command #​544
• Lint warning #​542
• chore: add nodejs v7 to CI #​537
• error.code is not always available #​536
• Add shx as a dependency for testing #​525
• Feature request: allow common.error\(\) to optionally not insert a prefix and optionally not print to console #​523
• Feature request: Add "shelljs.unlink" #​519
• Sed should allow a replacement string to contain \1 for match groups #​507
• Usage with neodoc #​445
• [ Feature idea ] synchronous sleep command #​441
• Improve test coverage #​347
• Add a way to prevent shell-expansion on commands (this issue is not for exec) #​345
• Chown #​183
• spawn EMFILE #​81
• Rewrite exec using execsync-ng (which uses node-ffi) #​66
• exec gets stuck on my Debian box #​51
• 100% cpu usage when a nodejs script goes side ways executing a command. #​5

Merged pull requests:

• refactor: add config.reset() and .resetForTesting() #​641 (nfischer)
• chore: set up test coverage #​638 (nfischer)
• refactor: create common.execPath #​636 (nfischer)
• fix: allow non-normalized paths as input to mkdir #​635 (nfischer)
• Finalize moving to ava #​630 (freitagbr)
• test: refactor pushd tests to AVA #​627 (nfischer)
• test: refactor popd tests to AVA #​626 (nfischer)
• test: refactor shjs tests to AVA #​625 (nfischer)
• test: remove tests for make (deprecated) #​624 (nfischer)
• Ignore test temp directories during linting #​623 (freitagbr)
• refactor: list all commands in commands.json #​616 (nfischer)
• Throw an error if the options string does not start with '-' #​615 (freitagbr)
• chore: switch to files attribute from npmignore #​613 (nfischer)
• test: refactor 'test' command tests to AVA #​612 (nfischer)
• test: refactor find tests to AVA #​611 (nfischer)
• test: refactor ln tests to AVA #​610 (nfischer)
• test: refactor ls to use AVA #​609 (nfischer)
• test: refactor pipe tests to AVA #​608 (nfischer)
• test: refactor sed tests to AVA #​607 (nfischer)
• test: refactor grep tests to AVA #​606 (nfischer)
• test: refactor global tests to AVA #​605 (nfischer)
• test: refactor touch tests to AVA #​604 (nfischer)
• test: refactor uniq tests to AVA #​603 (nfischer)
• test: refactor sort tests to AVA #​602 (nfischer)
• test: refactor tail tests to AVA #​601 (nfischer)
• test: refactor head tests to AVA #​600 (nfischer)
• test: refactor mkdir tests to AVA #​599 (nfischer)
• Fix: rm behavior regarding symlinks #​598 (freitagbr)
• test: refactor mv tests to AVA #​597 (nfischer)
• Remove files related to lgtm.co #​596 (freitagbr)
• Add ability to configure error from parseOptions #​594 (freitagbr)
• Use Object.assign if possible #​593 (freitagbr)
• Add "-n" option to echo #​590 (freitagbr)
• test: refactor rm tests to AVA #​586 (nfischer)
• test: refactor pwd tests to AVA #​582 (nfischer)
• test: refactor tempdir tests to AVA #​581 (nfischer)
• test: refactor 'which' tests to AVA #​580 (nfischer)
• test: refactor plugin tests to AVA #​579 (nfischer)
• test: refactor toEnd tests to AVA #​578 (nfischer)
• test: refactor to tests to AVA #​577 (nfischer)
• test: refactor 'set' tests to AVA #​576 (nfischer)
• test: refactor echo tests to AVA #​575 (nfischer)
• test: refactor exec tests to AVA #​574 (nfischer)
• test: refactor env tests to AVA #​573 (nfischer)
• test: refactor dirs tests to AVA #​572 (nfischer)
• test: refactor config tests to AVA #​571 (nfischer)
• test: refactor common tests to AVA #​570 (nfischer)
• test: refactor chmod tests to AVA #​569 (nfischer)
• test: refactor cp tests to ava #​565 (nfischer)
• test: refactor cat tests to ava #​564 (nfischer)
• test: set up ava and move cd.js #​561 (nfischer)
• Update sed documentation regarding capture groups #​558 (freitagbr)
• Add newline to output of echo #​557 (freitagbr)
• fix: handle code-less errors more carefully in exec #​554 (nfischer)
• Add Brandon Freitag to maintainers/contributors #​553 (freitagbr)
• Get pipe tests running on Windows. #​550 (binki)
• fix: maxdepth doesn't limit total number of copies #​549 (nfischer)
• Fix lint warning #​543 (freitagbr)
• chore: remove v0.10 from Travis CI #​540 (nfischer)
• chore: add Node v7 for CI #​539 (nfischer)

v0.7.5

Compare Source

Full Changelog

Closed issues:

• Project objectives: there is some higher goal to achieve? #​533
• fs.existsSync is un-deprecated #​531
• Inadvertent breaking change to shell.test() #​529
• Add -u flag support for cp #​526
• API request: allow plugin.error\(\) to take an options parameter #​522
• FS Real Path error thrown when requiring shelljs #​521
• Question: passing code via pipe? #​520
• The performance in cp is different between 0.6.0 and 0.7.4 #​517
• ShellJS in Electron package don't find ffmpeg anymore #​516
• Exec issues with string option introduced in 0.7.4 #​515
• [ Feature ] SSH command #​435

Merged pull requests:

• feat: plugin.error() takes an options parameter #​535 (nfischer)
• Revert "refactor: replace fs.existsSync" fixes(#​531) #​532 (gyandeeps)
• Fix: Remove default glob from shell.test (fixes #​529) #​530 (gyandeeps)
• feat: cp -u option #​527 (nfischer)
• chore: add downloads per month on README #​513 (nfischer)

v0.7.4

Compare Source

Full Changelog

Closed issues:

• fix: echo -e should not print "-e" #​510
• Wrong method signature in doc #​498
• readFromPipe should be a function with no arguments #​485
• TypeError: Cannot read property 'toString' of undefined #​471

Merged pull requests:

• fix: echo supports -e option properly #​511 (nfischer)
• refactor: replace fs.existsSync #​509 (nfischer)
• refactor: readFromPipe() requires no arguments #​506 (nfischer)
• chore: switch to eslint #​504 (nfischer)
• feat: add overWrite option for commands #​503 (nfischer)
• chore: update issue template #​502 (nfischer)
• fixed head/tail readme #​499 (charlesread)

v0.7.3

Compare Source

Full Changelog

Closed issues:

• expose execSync #​494
• Add a way to create commands that can receive from a pipe without being standalone commands #​487
• cp -r breaks when the directory contains a softlink #​193
• Redirect output to file fails #​60
• We need sed -n ? #​38

Merged pull requests:

• refactor: allow pipeOnly commands (methods on ShellStrings) #​493 (nfischer)
• refactor: glob by default for commands #​492 (nfischer)
• refactor: switch from notUnix to unix in wrap() #​491 (nfischer)
• refactor: switch common.extend() to Object.assign ponyfill #​490 (nfischer)
• fix: conflicting options now properly override each other #​489 (nfischer)
• refactor: expose plugin utils & add initial tests #​484 (nfischer)

v0.7.2

Compare Source

Full Changelog

Closed issues:

• shelljs should not kill process if node call throws exception #​473
• cp work incorrectly when folder name contains '@​' #​463
• Something went wrong #​158

Merged pull requests:

• fix: resolve a cylcic-dependency problem #​482 (nfischer)
• refactor: add wrapOutput option to auto-ShellString-ify command output #​481 (nfischer)
• refactor: move option parsing into common.wrap() #​479 (nfischer)
• refactor: hook new uniq() command using new format #​478 (nfischer)
• Fix mkdir malformed path #​477 (nfischer)
• fix: mkdir for invalid perms does not kill process #​474 (nfischer)
• feat(command): new command: uniq() #​453 (joshi-sh)

v0.7.1

Compare Source

Full Changelog

Closed issues:

• cp -n doesn't work correctly #​465
• how can i run sudo apt-get install xtodotool by your plugin? #​448
• shell.js grep: internal error, Invalid regular expression #​447
• Stdout is empty on Git log command #​439
• Cannot read toString of null when using execSync #​415
• cp -R dir/ target fails to copy hidden files in dir #​140
• #mv Won't Work Across Disks #​1

Merged pull requests:

• refactor: commands now register themselves #​475 (nfischer)
• chore: switch to shields.io, and add npm badge #​470 (nfischer)
• fix(cp): -n option no longer raises error #​466 (nfischer)
• refactor: expose pipe-ability to command configuration #​464 (nfischer)
• fix(mv): works across partitions #​461 (nfischer)
• chore: switch to shelljs-changelog #​460 (nfischer)
• chore: update release process #​459 (nfischer)
• chore: revert depreciate shelljs/make (#​431) #​458 (zephraph)
• chore: clarify message for when docs are not generated #​457 (nfischer)
• chore(gendocs): add npm run gendocs command #​455 (nfischer)
• chore: update jshint and move it to an npm script #​454 (nfischer)
• test(ls): add case for trailing slash on dir name #​450 (nfischer)
• docs(exec): explicitly mention the shell option #​449 (nfischer)
• chore: setup changelog #​443 (levithomason)
• docs: comment code better to help contributors #​437 (nfischer)
• chore(CI): update appveyor #​436 (nfischer)
• chore: test against node v6 #​433 (nfischer)
• docs: warn that README contains newest features #​410 (nfischer)

v0.7.0

Compare Source

Full Changelog

Closed issues:

• exec('nohup node some.js &') #​426
• shelljs Breaks SemVer for Alpha and Pre-Release Versions #​390
• Copy not accepting source end with wildcards * when using -r on v0.6.0 #​389
• Support globbing in shjs #​388
• Refactor more commands to return ShellString #​373
• ln('-sf', './', '<destination>') is not linking the right folder #​363
• v0.6.0 - shell.cp('r', '/foo/*, '/bar') fails with /foo/* no such file or directory #​342
• Add documentup as a webhook #​327
• Dir glob breaks when in the middle of path #​245
• could you switch off wiki page? #​233
• ls globbing does not behave like shell, consider using glob.sync #​225
• Cannot run shell.exec('heroku config:push') -- just hangs #​218
• cp does not overwrite files by default #​210
• exec failed to return #​208
• CLI Version #​202
• Bracket expansion not working #​176
• "exec" causes LiveScript interpreter (lsc) to hang #​160
• Don't modify string prototype #​159
• exec\(...\).to\(file\) should work #​154
• Can't install shelljs locally instead of globally #​136
• shelljs and node 0.10.28 #​125
• Use case for global installed shelljs #​123
• Only get stdout from exec #​92
• What about other commands? #​90
• Flesh out example of exit() #​73
• exec doesn't work with qualified paths on windows #​41
• exec does not working in mingw bash in windows #​17
• Add support for cp -P option #​413
• cp -L: Incorrect behavior for symlinks to regular files #​407
• Edit the docs to emphasize ShellStrings and Pipes #​398
• Error message isn't always printed #​372
• Standardize command output #​356
• exec() doesn't clean up all temp files #​353
• Document that exec() options don't work on early versions of node #​350
• Add -f option to set() #​344
• Glob commands by default #​343
• rm -rf incorrect behaviour #​332
• Switch exec\(\) to use bash by default #​281
• pipe to proc #​148
• shell builtin #​138
• add timeout option for exec #​132
• shelljs cp handling symlinks badly #​69

Merged pull requests:

• chore: add "Team" section to README #​423 (nfischer)
• Contributing guidelines #​422 (nfischer)
• feat(glob): expose config.globOptions. [#​400](https://togithub.com/shel

---

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[vizipi]

Pull request analysis by VIZIPI

Below you will find who is the most qualified team member to review your code.
This analysis includes his/her work on the code included in this Pull request, in addition to their experience in code affected by these changes ( partly found within the list of potential missing files below )   Feedback always welcome

No other active qualified developers found to review these specific changes. You might consider involving more team members with these code segments.

---

Potential missing files from this Pull request

No files found with a 40% threashold :)
No commonly committed files found with a 40% threashold

---

Committed file ranks

(click to expand)

50.00%[package.json]