[Snyk] Upgrade: ,

[snyk-io]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade multiple dependencies.

👯 The following dependencies are linked and will therefore be updated together.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

Name	Versions	Released on

@commitlint/cli
from 16.1.0 to 19.3.0 | 51 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 3 months ago
on 2024-04-23
@commitlint/config-conventional
from 16.0.0 to 19.2.2 | 36 versions ahead of your current version
⚠️ This is a major version upgrade, and may be a breaking change | 3 months ago
on 2024-04-14

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Infinite loop SNYK-JS-MARKDOWNIT-6483324	178	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	178	Proof of Concept
	Internal Property Tampering SNYK-JS-TAFFYDB-2992450	178	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	178	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	178	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	178	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	178	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	178	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	178	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	178	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	178	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	178	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	178	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	178	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	178	No Known Exploit
	Template Injection SNYK-JS-DOMPURIFY-6474511	178	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-IP-7148531	178	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	178	Proof of Concept

Release notes

Package name: @commitlint/cli

• 19.3.0 - 2024-04-23
  

  19.3.0 (2024-04-23)

  Features

  • feat(format): print full commit message for valid commits if -V by @ weixinwu in #4026
  • feat(container): added @ commitlint/config-nx-scopes for nx monorepos by @ gperdomor in #3913

  Chore

  • docs: 📝 add pnpm to the getting started and local setup guides by @ VoloshchenkoAl in #4041

  New Contributors

  • @ weixinwu made their first contribution in #4026
  • @ fuyangpengqi made their first contribution in #4035
  • @ gperdomor made their first contribution in #3913
  • @ VoloshchenkoAl made their first contribution in #4041

  Full Changelog: v19.2.2...v19.3.0

• 19.2.2 - 2024-04-14
  

  19.2.2 (2024-04-14)

  Bug Fixes

  • fix(is-ignored): ignore "amend!" commits by @ chalkygames123 in #4024

  Chore

  • Update circleci ci-setup.md by @ HennaAbbas in #3989

  New Contributors

  • @ HennaAbbas made their first contribution in #3989

  Full Changelog: v19.2.1...v19.2.2

• 19.2.1 - 2024-03-19
  

  19.2.1 (2024-03-19)

  Bug Fixes

  • fix(config-nx-scopes): include file extension in nx imports by @ timonmasberg in #3979
  • Fix regression when using --last flag by @ webwarrior-ws in #3982

  New Contributors

  • @ timonmasberg made their first contribution in #3979
  • @ webwarrior-ws made their first contribution in #3982

  Full Changelog: v19.2.0...v19.2.1

• 19.2.0 - 2024-03-15
  

  19.2.0 (2024-03-15)

  Features

  • feat(cli): introduce new --last flag, to stop recommending HEAD~1 by @ knocte in #3916
  • feat(load): update cosmiconfig to v9 to add support for package.yaml config by @ danielbayley in #3976

  New Contributors

  • @ danielbayley made their first contribution in #3976

  Full Changelog: v19.1.0...v19.2.0

• 19.1.0 - 2024-03-12
  

  19.1.0 (2024-03-12)

  Bug Fixes

  • fix: add main and types keys in package.json by @ marcalexiei in #3953
  • fix: add missing conditions param for moduleResolve by @ JounQin in #3962
  • fix: add missing cjs entry in package by @ frantic1048 in #3967

  Features

  • feat: add CJS export for cz-commitlint by @ frantic1048 in #3963

  Chore

  • docs: Update cz-commitlint install command by @ gin0606 in #3955

  New Contributors

  • @ gin0606 made their first contribution in #3955
  • @ frantic1048 made their first contribution in #3963

  Full Changelog: v19.0.3...v19.1.0

• 19.0.3 - 2024-02-28
  

  19.0.3 (2024-02-28)

  Bug Fixes

  • fix: mark @ types/conventional-commits-parser as dep for @ commitlint/types by @ JounQin in #3944

  Full Changelog: v19.0.2...v19.0.3

• 19.0.2 - 2024-02-28
  

  19.0.2 (2024-02-28)

  Bug Fixes

  • fix: fallback to resolve-from for Yarn P'n'P by @ JounQin in #3941

  Full Changelog: v19.0.1...v19.0.2

• 19.0.1 - 2024-02-27
  

  19.0.1 (2024-02-27)

  Bug Fixes

  • fix: drop resolve-from, resolve-global and import-fresh, resolve global packages correctly by @ JounQin in #3939

  Full Changelog: v19.0.0...v19.0.1

• 19.0.0 - 2024-02-27
• 18.6.1 - 2024-02-13
• 18.6.0 - 2024-01-25
• 18.5.0 - 2024-01-22
• 18.4.4 - 2024-01-04
• 18.4.3 - 2023-11-21
• 18.4.2 - 2023-11-16
• 18.4.1 - 2023-11-12
• 18.4.0 - 2023-11-10
• 18.2.0 - 2023-10-26
• 18.1.0 - 2023-10-25
• 18.0.0 - 2023-10-20
• 17.8.1 - 2023-10-20
• 17.8.0 - 2023-10-14
• 17.7.2 - 2023-09-28
• 17.7.1 - 2023-08-10
• 17.7.0 - 2023-08-09
• 17.6.7 - 2023-07-19
• 17.6.6 - 2023-06-24
• 17.6.5 - 2023-05-30
• 17.6.3 - 2023-05-04
• 17.6.1 - 2023-04-14
• 17.6.0 - 2023-04-13
• 17.5.1 - 2023-03-28
• 17.5.0 - 2023-03-22
• 17.4.4 - 2023-02-17
• 17.4.3 - 2023-02-13
• 17.4.2 - 2023-01-12
• 17.4.1 - 2023-01-09
• 17.4.0 - 2023-01-04
• 17.3.0 - 2022-11-21
• 17.2.0 - 2022-10-31
• 17.1.2 - 2022-08-29
• 17.1.1 - 2022-08-27
• 17.1.0 - 2022-08-27
• 17.0.3 - 2022-06-25
• 17.0.2 - 2022-06-01
• 17.0.1 - 2022-05-25
• 17.0.0 - 2022-05-16
• 16.3.0 - 2022-05-14
• 16.2.4 - 2022-04-28
• 16.2.3 - 2022-03-16
• 16.2.1 - 2022-02-13
• 16.1.0 - 2022-01-20

from @commitlint/cli GitHub release notes

Package name: @commitlint/config-conventional

• 19.2.2 - 2024-04-14
  

  19.2.2 (2024-04-14)

  Bug Fixes

  • fix(is-ignored): ignore "amend!" commits by @ chalkygames123 in #4024

  Chore

  • Update circleci ci-setup.md by @ HennaAbbas in #3989

  New Contributors

  • @ HennaAbbas made their first contribution in #3989

  Full Changelog: v19.2.1...v19.2.2

• 19.1.0 - 2024-03-12
  

  19.1.0 (2024-03-12)

  Bug Fixes

  • fix: add main and types keys in package.json by @ marcalexiei in #3953
  • fix: add missing conditions param for moduleResolve by @ JounQin in #3962
  • fix: add missing cjs entry in package by @ frantic1048 in #3967

  Features

  • feat: add CJS export for cz-commitlint by @ frantic1048 in #3963

  Chore

  • docs: Update cz-commitlint install command by @ gin0606 in #3955

  New Contributors

  • @ gin0606 made their first contribution in #3955
  • @ frantic1048 made their first contribution in #3963

  Full Changelog: v19.0.3...v19.1.0

• 19.0.3 - 2024-02-28
  

  19.0.3 (2024-02-28)

  Bug Fixes

  • fix: mark @ types/conventional-commits-parser as dep for @ commitlint/types by @ JounQin in #3944

  Full Changelog: v19.0.2...v19.0.3

• 19.0.0 - 2024-02-27
• 18.6.3 - 2024-03-11
  

  18.6.3 (2024-03-11)

  Bug Fixes

  • fix: add missing entry wrapper.mjs by @ JounQin in #3966

  Full Changelog: v18.6.2...v18.6.3

• 18.6.2 - 2024-02-14
• 18.6.1 - 2024-02-13
• 18.6.0 - 2024-01-25
• 18.5.0 - 2024-01-22
• 18.4.4 - 2024-01-04
• 18.4.3 - 2023-11-21
• 18.4.2 - 2023-11-16
• 18.4.0 - 2023-11-10
• 18.1.0 - 2023-10-25
• 18.0.0 - 2023-10-20
• 17.8.1 - 2023-10-20
• 17.8.0 - 2023-10-14
• 17.7.0 - 2023-08-09
• 17.6.7 - 2023-07-19
• 17.6.6 - 2023-06-24
• 17.6.5 - 2023-05-30
• 17.6.3 - 2023-05-04
• 17.6.1 - 2023-04-14
• 17.6.0 - 2023-04-13
• 17.4.4 - 2023-02-17
• 17.4.3 - 2023-02-13
• 17.4.2 - 2023-01-12
• 17.4.0 - 2023-01-04
• 17.3.0 - 2022-11-21
• 17.2.0 - 2022-10-31
• 17.1.0 - 2022-08-27
• 17.0.3 - 2022-06-25
• 17.0.2 - 2022-06-01
• 17.0.0 - 2022-05-16
• 16.2.4 - 2022-04-28
• 16.2.1 - 2022-02-13
• 16.0.0 - 2021-12-26

from @commitlint/config-conventional GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.