[Snyk] Upgrade vsce from 1.88.0 to 2.14.0

[Centaurioun]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade vsce from 1.88.0 to 2.14.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 51 versions ahead of your current version.
• The recommended version was released a month ago, on 2022-11-07.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MARKDOWNIT-2331914	479/1000 Why? Has a fix available, CVSS 5.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: vsce

• 2.14.0 - 2022-11-07
  

  2.14.0 (2022-11-07)

  Features

  • prompt for full name to confirm unpublish action (#782) (#783) (d608ecd)
• 2.13.0 - 2022-10-21
  

  2.13.0 (2022-10-21)

  Features

  • support pricing model in the manifest file (#749) (1dcedef)
• 2.12.0 - 2022-10-19
  

  2.12.0 (2022-10-19)

  Features

  • allow to skip publishing duplicate package (#776) (2589114)
• 2.11.0 - 2022-08-29
  

  2.11.0 (2022-08-29)

  Bug Fixes

  • correct program path in launch.json (#771) (5110bcf)

  Features

  • expose all options to packaging and publishing APIs (#759) (8e193c9)
• 2.10.2 - 2022-08-19
  

  2.10.2 (2022-08-19)

  Bug Fixes

  • clarify simultaneous use of packagePath and target in vsce publish (#765) (3024d0f), closes #764
• 2.10.1 - 2022-08-19
  

  2.10.1 (2022-08-19)

  Bug Fixes

  • list all valid targets in documentation for --target (#766) (0940626), closes #763
• 2.10.0 - 2022-07-19
  

  2.10.0 (2022-07-19)

  Features

  • github actions logging (#752) (9c50aa6)
• 2.9.3 - 2022-07-15
  

  2.9.3 (2022-07-15)

  Bug Fixes

  • support fragments in image URLs (#753) (7e16ed7)
• 2.9.2 - 2022-06-21
  

  2.9.2 (2022-06-21)

  Bug Fixes

  • ensure that we can define dependency argument in config (#743) (b2288cd), closes #742
• 2.9.1 - 2022-06-01
  

  2.9.1 (2022-06-01)

  Bug Fixes

  • change sponsor to object with url property (75456f2)
  • validate sponsor URL (ded4841)
• 2.9.0 - 2022-05-30
• 2.8.0 - 2022-05-18
• 2.7.0 - 2022-03-11
• 2.6.7 - 2022-02-03
• 2.6.6 - 2022-02-01
• 2.6.5 - 2022-01-27
• 2.6.4 - 2022-01-25
• 2.6.3 - 2022-01-03
• 2.6.2 - 2022-01-03
• 2.6.1 - 2022-01-03
• 2.6.0 - 2021-12-31
• 2.5.3 - 2021-12-17
• 2.5.2 - 2021-12-16
• 2.5.1 - 2021-11-29
• 2.5.0 - 2021-11-24
• 2.4.0 - 2021-11-22
• 2.3.0 - 2021-11-11
• 2.2.0 - 2021-11-05
• 2.1.0 - 2021-11-04
• 2.0.0 - 2021-11-04
• 1.103.1 - 2021-11-04
• 1.103.0 - 2021-11-03
• 1.102.0 - 2021-11-02
• 1.101.0 - 2021-11-02
• 1.100.2 - 2021-10-22
• 1.100.1 - 2021-09-28
• 1.100.0 - 2021-09-22
• 1.99.0 - 2021-09-10
• 1.98.0 - 2021-09-10
• 1.98.0-alpha.0 - 2021-09-10
• 1.97.0 - 2021-09-06
• 1.96.3 - 2021-09-01
• 1.96.2 - 2021-08-30
• 1.96.1 - 2021-07-21
• 1.96.0 - 2021-07-20
• 1.95.1 - 2021-07-09
• 1.95.0 - 2021-06-25
• 1.94.0 - 2021-06-23
• 1.93.0 - 2021-06-07
• 1.92.0 - 2021-06-04
• 1.91.0 - 2021-06-01
• 1.88.0 - 2021-04-30

from vsce GitHub release notes

Commit messages

Package name: vsce

• d608ecd feat: prompt for full name to confirm unpublish action (Add jailbreak to Elm server NixOS/nixpkgs#782) (pavucontrol 2.0 NixOS/nixpkgs#783)
• 1dcedef feat: support pricing model in the manifest file (gtk2: fix build on darwin NixOS/nixpkgs#749)
• 2589114 feat: allow to skip publishing duplicate package (propagatedUserEnvPackages vs. propagatedUserEnvPkgs NixOS/nixpkgs#776)
• 8e193c9 feat: expose all options to packaging and publishing APIs (opening libreoffice writer's open dialog causes an immediate quit of the application NixOS/nixpkgs#759)
• 5110bcf fix: correct program path in `launch.json` (Add haskell-qrencode NixOS/nixpkgs#771)
• 742720a chore: set up #codereview automation (Remove the old KQEMU accelerator module NixOS/nixpkgs#768)
• 3024d0f fix: clarify simultaneous use of packagePath and target in `vsce publish` (Use fetchgit for vanitygen instead of fetchurl, github changed something NixOS/nixpkgs#765)
• 0940626 fix: list all valid targets in documentation for --target (add herbstluftwm 0.5.2 NixOS/nixpkgs#766)
• 27fad23 chore: add branch protection (Update btsync to 1.1.42. NixOS/nixpkgs#767)
• 9c50aa6 feat: github actions logging (matplotlib: fix build on darwin NixOS/nixpkgs#752)
• 7e16ed7 fix: support fragments in image URLs (numpy: fix build on darwin NixOS/nixpkgs#753)
• 955c760 build(deps): bump shell-quote from 1.7.2 to 1.7.3 (gst-plugins-base: fix build on darwin NixOS/nixpkgs#746)
• 57112fd Merge pull request fluidsynth: fix build on darwin NixOS/nixpkgs#745 from microsoft/fix-744
• d68e2f7 Remove check for yarn.lock
• b2288cd fix: ensure that we can define dependency argument in config (Add nvpy, a Simplenote syncing note-taking application NixOS/nixpkgs#743)
• 76b06f2 build(deps-dev): bump semantic-release from 19.0.2 to 19.0.3 (Add bindings-DSL and bindings-posix hackage packages NixOS/nixpkgs#741)
• 293f3d5 build(deps): bump semver-regex from 3.1.3 to 3.1.4 (qca2: Patch for gcc 4.7+. NixOS/nixpkgs#738)
• 9ef1cf0 build(deps): bump npm from 8.3.2 to 8.12.0 (Add easyrsa NixOS/nixpkgs#736)
• 95823b6 Merge pull request openconnect and vpnc NetworkManager plugins added NixOS/nixpkgs#735 from microsoft/sandy081/horrible-rat
• 75456f2 fix: change sponsor to object with url property
• ded4841 fix: validate sponsor URL
• 2ec05b1 Merge pull request Build haddock for transformers-compat NixOS/nixpkgs#732 from microsoft/sandy081/sponsorExtension
• 9e7825d fix: tests
• e363a60 fix: change name

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs