⬆️ Update dependency node to v18.17.1 by renovate[bot] · Pull Request #749 · frenck/python-twentemilieu

renovate · 2023-08-10T01:24:28Z

This PR contains the following updates:

Package	Update	Change
node	patch	`18.17.0` -> `18.17.1`

Release Notes

nodejs/node (node)

`v18.17.1`: 2023-08-09, Version 18.17.1 'Hydrogen' (LTS), @RafaelGSS

Compare Source

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

CVE-2023-32002: Policies can be bypassed via Module._load (High)
CVE-2023-32006: Policies can be bypassed by module.constructor.createRequire (Medium)
CVE-2023-32559: Policies can be bypassed via process.binding (Medium)
OpenSSL Security Releases

More detailed information on each of the vulnerabilities can be found in August 2023 Security Releases blog post.

Commits

[fe3abdf82e] - deps: update archs files for openssl-3.0.10+quic1 (Node.js GitHub Bot) #49036
[2c5a522d9c] - deps: upgrade openssl sources to quictls/openssl-3.0.10+quic1 (Node.js GitHub Bot) #49036
[15bced0bde] - policy: handle Module.constructor and main.extensions bypass (RafaelGSS) nodejs-private/node-private#417
[d4570fae35] - policy: disable process.binding() when enabled (Tobias Nießen) nodejs-private/node-private#460

Configuration

📅 Schedule: Branch creation - "before 2am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

codecov-commenter · 2023-08-10T01:26:14Z

Codecov Report

Merging #749 (3b97c6f) into main (02c377a) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##              main      #749   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            3         3           
  Lines           96        96           
  Branches        15        15           
=========================================
  Hits            96        96

sonarqubecloud · 2023-08-10T01:26:45Z

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

The version of Java (11.0.20) you have used to run this analysis is deprecated and we will stop accepting it soon. Please update to at least Java 17.
Read more here

⬆️ Update dependency node to v18.17.1

3b97c6f

renovate bot added dependencies Upgrade or downgrade of project dependencies. javascript no-stale This issue or PR is exempted from the stable bot. labels Aug 10, 2023

renovate bot merged commit 3ba93a6 into main Aug 10, 2023

renovate bot deleted the renovate/node-18.x branch August 10, 2023 03:21

github-actions bot locked and limited conversation to collaborators Aug 11, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

⬆️ Update dependency node to v18.17.1#749

⬆️ Update dependency node to v18.17.1#749
renovate[bot] merged 1 commit intomainfrom
renovate/node-18.x

renovate bot commented Aug 10, 2023

Uh oh!

codecov-commenter commented Aug 10, 2023

Uh oh!

sonarqubecloud bot commented Aug 10, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

renovate bot commented Aug 10, 2023

Release Notes

v18.17.1: 2023-08-09, Version 18.17.1 'Hydrogen' (LTS), @​RafaelGSS

Notable Changes

Commits

Configuration

Uh oh!

codecov-commenter commented Aug 10, 2023

Codecov Report

Uh oh!

sonarqubecloud bot commented Aug 10, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

`v18.17.1`: 2023-08-09, Version 18.17.1 'Hydrogen' (LTS), @RafaelGSS