Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency chromedriver to v119 [security] #611

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): update dependency chromedriver to v119 [security] #611

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 9, 2023
edited

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
chromedriver 115.0.1 -> 119.0.1 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2023-26156

Versions of the package chromedriver before 119.0.1 are vulnerable to Command Injection when setting the chromedriver.path to an arbitrary system binary. This could lead to unauthorized access and potentially malicious actions on the host system.

Note:

An attacker must have access to the system running the vulnerable chromedriver library to exploit it. The success of exploitation also depends on the permissions and privileges of the process running chromedriver.

Release Notes

giggio/node-chromedriver (chromedriver)

v119.0.1

Compare Source

v119.0.0

Compare Source

v118.0.1

Compare Source

v118.0.0

Compare Source

v117.0.3

Compare Source

v117.0.2

Compare Source

v117.0.1

Compare Source

v117.0.0

Compare Source

v116.0.0

Compare Source

Configuration

📅 Schedule: Branch creation - "" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot requested a review from a team as a code owner November 9, 2023 22:21
@renovate renovate bot added the security label Nov 9, 2023
@renovate renovate bot enabled auto-merge (squash) November 9, 2023 22:21
renovate-approve[bot]
renovate-approve bot previously approved these changes Nov 9, 2023
View reviewed changes
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 039c295 to 0eb24e4 Compare November 29, 2023 08:15
renovate-approve[bot]
renovate-approve bot previously approved these changes Nov 29, 2023
View reviewed changes
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 2 times, most recently from ddebd87 to 3c9b025 Compare November 30, 2023 12:18
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 3c9b025 to d33a501 Compare December 27, 2023 04:41
renovate-approve[bot]
renovate-approve bot previously approved these changes Dec 27, 2023
View reviewed changes
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 15 times, most recently from d21861e to 7d09c99 Compare January 2, 2024 00:50
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 7d09c99 to 976624e Compare January 8, 2024 21:59
renovate-approve[bot]
renovate-approve bot previously approved these changes Jan 8, 2024
View reviewed changes
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 7a19278 to e9589ed Compare April 5, 2024 21:58
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from cf6b77b to 74d16c2 Compare May 2, 2024 13:25
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 74d16c2 to 3f41941 Compare May 3, 2024 07:12
renovate-approve[bot]
renovate-approve bot previously approved these changes May 3, 2024
View reviewed changes
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from f38c80c to 14907ba Compare May 10, 2024 03:49
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 14907ba to e9c2247 Compare May 13, 2024 18:54
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from e9c2247 to fb00bfb Compare May 21, 2024 17:26
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 9 times, most recently from fb9c38a to 26cf758 Compare May 29, 2024 13:52
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from 41b812e to c6cbb5f Compare June 5, 2024 19:51
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from c6cbb5f to 72773a6 Compare June 5, 2024 23:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@renovate-approve renovate-approve[bot] renovate-approve approved these changes

Assignees
No one assigned
Labels
security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants