chore(deps): update dependency grunt to v1 (master) #40

appcues-wss · 2023-02-18T22:59:34Z

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
grunt (source)	`~0.4.1` -> `~1.5.3`
grunt (source)	`^0.4.5` -> `^1.5.3`

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE
Critical	9.8	CVE-2020-28282
Critical	9.1	CVE-2019-10744
Critical	9.1	CVE-2019-10744
High	8.1	WS-2019-0063
High	7.5	CVE-2016-10540
High	7.5	CVE-2016-10540
High	7.5	WS-2019-0032
High	7.4	CVE-2020-8203
High	7.4	CVE-2020-8203
High	7.2	CVE-2021-23337
High	7.2	CVE-2021-23337
High	7.1	CVE-2020-7729
High	7.0	CVE-2022-1537
Medium	6.5	CVE-2018-3721
Medium	6.5	CVE-2018-3721
Medium	6.5	CVE-2019-1010266
Medium	6.5	CVE-2019-1010266
Medium	5.6	CVE-2018-16487
Medium	5.6	CVE-2018-16487
Medium	5.5	CVE-2022-0436

Release Notes

gruntjs/grunt (grunt)

`v1.5.3`

Compare Source

Merge pull request #1745 from gruntjs/fix-copy-op 572d79b
Patch up race condition in symlink copying. 58016ff
Merge pull request #1746 from JamieSlome/patch-1 0749e1d
Create SECURITY.md 69b7c50

`v1.5.2`

Compare Source

Update Changelog 7f15fd5
Merge pull request #1743 from gruntjs/cleanup-link b0ec6e1
Clean up link handling 433f91b

`v1.5.1`

Compare Source

Merge pull request #1742 from gruntjs/update-symlink-test ad22608
Fix symlink test 0652305

`v1.5.0`

Compare Source

Updated changelog b2b2c2b
Merge pull request #1740 from gruntjs/update-deps-22-10 3eda6ae
Update testing matrix 47d32de
More updates 2e9161c
Remove console log 04b960e
Update dependencies, tests... aad3d45
Merge pull request #1736 from justlep/main fdc7056
support .cjs extension e35fe54

`v1.4.1`

Compare Source

Update Changelog e7625e5
Merge pull request #1731 from gruntjs/update-options 5d67e34
Fix ci install d13bf88
Switch to Actions 08896ae
Update grunt-known-options eee0673
Add note about a breaking change 1b6e288

`v1.4.0`

Compare Source

Merge pull request #1728 from gruntjs/update-deps-changelog 63b2e89
Update changelog and util dep 106ed17
Merge pull request #1727 from gruntjs/update-deps-apr 49de70b
Update CLI and nodeunit 47cf8b6
Merge pull request #1722 from gruntjs/update-through e86db1c
Update deps 4952368

`v1.3.0`

Compare Source

Merge pull request #1720 from gruntjs/update-changelog-deps faab6be
Update Changelog and legacy-util dependency 520fedb
Merge pull request #1719 from gruntjs/yaml-refactor 7e669ac
Switch to use safeLoad for loading YML files via file.readYAML. e350cea
Merge pull request #1718 from gruntjs/legacy-log-bumo 7125f49
Bump legacy-log 00d5907

`v1.2.1`

Compare Source

Changelog update ae11839
Merge pull request #1715 from sibiraj-s/remove-path-is-absolute 9d23cb6
Remove path-is-absolute dependency e789b1f

`v1.2.0`

Compare Source

Allow usage of grunt plugins that are located in any location that
is visible to Node.js and NPM, instead of node_modules directly
inside package that have a dev dependency to these pluginhttps://github.com/gruntjs/grunt/pull/1677nt/pull/1677)
Removed coffeescript from dependencies. To ease transition, if
coffeescript is still around, Grunt will attempt to load it.
If it is not, and the user loads a CoffeeScript file,
Grunt will print a useful error indicating that the
coffeescript package should be installed as a dev dependency.
This is considerably more user-friendly than dropping the require entirely,
but doing so is feasible with the latest grunt-cli as users
may simply use grunt --require https://github.com/gruntjs/grunt/pull/1675thub.com/Remove coffeescript from dependencies. gruntjs/grunt#1675)
Exposes Grunt Option keys for ease of use.
(https://github.com/gruntjs/grunt/pull/15701570)
Avoiding infinite loop on very long command names.
(https://github.com/gruntjs/grunt/pull/16971697)

`v1.1.0`

Compare Source

Update to mkdirp ~1.0.3
Only support versions of Node >= 8

If you want to rebase/retry this PR, check this box

appcues-wss bot added the security fix Security fix generated by WhiteSource label Feb 18, 2023

appcues-wss bot force-pushed the whitesource-remediate/master-grunt-1.x branch 4 times, most recently from 2b378b2 to 0271c7e Compare February 21, 2023 14:42

appcues-wss bot force-pushed the whitesource-remediate/master-grunt-1.x branch 2 times, most recently from 5b1e6f4 to 5fe96fa Compare June 16, 2023 03:06

chore(deps): update dependency grunt to v1

3610715

appcues-wss bot changed the title ~~Update dependency grunt to v1 (master)~~ chore(deps): update dependency grunt to v1 (master) Oct 30, 2023

appcues-wss bot force-pushed the whitesource-remediate/master-grunt-1.x branch from 5fe96fa to 3610715 Compare October 30, 2023 20:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update dependency grunt to v1 (master) #40

chore(deps): update dependency grunt to v1 (master) #40

appcues-wss bot commented Feb 18, 2023 •

edited

Loading

chore(deps): update dependency grunt to v1 (master) #40

Are you sure you want to change the base?

chore(deps): update dependency grunt to v1 (master) #40

Conversation

appcues-wss bot commented Feb 18, 2023 • edited Loading

Release Notes

appcues-wss bot commented Feb 18, 2023 •

edited

Loading