-
Notifications
You must be signed in to change notification settings - Fork 52
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update github.com/brave-intl/bat-go/libs digest to 9cd1a7b #275
base: master
Are you sure you want to change the base?
Update github.com/brave-intl/bat-go/libs digest to 9cd1a7b #275
Conversation
1e75f0a
to
1cfb836
Compare
1cfb836
to
c360c94
Compare
c360c94
to
4938ecb
Compare
4938ecb
to
015f8c7
Compare
015f8c7
to
c33861a
Compare
4d79294
to
e99aa60
Compare
65d9da5
to
d06dcf2
Compare
5af1a00
to
749eb00
Compare
749eb00
to
51de9c1
Compare
95f6e50
to
d7317ee
Compare
98f3bc5
to
82d6905
Compare
71f02f8
to
c546537
Compare
c546537
to
730de88
Compare
730de88
to
9bdad91
Compare
0173f46
to
432a945
Compare
432a945
to
f8ec0a4
Compare
f8ec0a4
to
211221a
Compare
211221a
to
798f5f4
Compare
798f5f4
to
2bcdc72
Compare
2bcdc72
to
62b5b68
Compare
62b5b68
to
9f7fc2d
Compare
🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎ To accept the risk, merge this PR and you will not be notified again.
Next stepsWhat is a mild CVE?Contains a low severity Common Vulnerability and Exposure (CVE). Remove or replace dependencies that include known low severity CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies. Take a deeper look at the dependencyTake a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev. Remove the packageIf you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency. Mark a package as acceptable riskTo ignore an alert, reply with a comment starting with
|
This PR contains the following updates:
cc9860c
->9cd1a7b
Configuration
📅 Schedule: Branch creation - "* 0-12 * * 3" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.