Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump tmpl from 1.0.4 to 1.0.5 #140

Merged
merged 1 commit into from
Sep 21, 2021
Merged

build(deps): bump tmpl from 1.0.4 to 1.0.5 #140

merged 1 commit into from
Sep 21, 2021

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 21, 2021
edited by MrChocolatine
Loading

Build

Update tmpl from 1.0.4 to 1.0.5 (#140)

Fix the vulnerability GHSA-jgrx-mgxx-jf9v .

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 21, 2021
@dependabot dependabot bot requested a review from a team September 21, 2021 10:19
@MrChocolatine MrChocolatine added the security Pull requests that address a security vulnerability label Sep 21, 2021
@MrChocolatine MrChocolatine changed the base branch from master to stop-testing-beta-and-canary September 21, 2021 10:46
Base automatically changed from stop-testing-beta-and-canary to master September 21, 2021 12:57
@dependabot @MrChocolatine
build(deps): bump tmpl from 1.0.4 to 1.0.5
5280b90 
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/daaku/nodejs-tmpl/releases)
- [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5)

---
updated-dependencies:
- dependency-name: tmpl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@MrChocolatine MrChocolatine force-pushed the dependabot-npm_and_yarn-tmpl-1.0.5 branch from 22c724c to 5280b90 Compare September 21, 2021 13:10
@MrChocolatine MrChocolatine self-assigned this Sep 21, 2021
@MrChocolatine MrChocolatine merged commit 73e9067 into master Sep 21, 2021
@MrChocolatine MrChocolatine deleted the dependabot-npm_and_yarn-tmpl-1.0.5 branch September 21, 2021 13:27
@MrChocolatine MrChocolatine mentioned this pull request Nov 4, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MrChocolatine MrChocolatine MrChocolatine approved these changes

Assignees

@MrChocolatine MrChocolatine

Labels
dependencies Pull requests that update a dependency file security Pull requests that address a security vulnerability
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@MrChocolatine