Skip to content

fix(deps): update dependency happy-dom to v15.10.1 [security] #2281

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 6, 2024
Merged

fix(deps): update dependency happy-dom to v15.10.1 [security] #2281

merged 1 commit into from
Nov 6, 2024

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Nov 6, 2024

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
happy-dom 15.7.4 -> 15.10.1 age adoption passing confidence

GitHub Vulnerability Alerts

GHSA-96g7-g7g9-jxw8

Fixes security vulnerability that allowed for server side code to be executed by a <script> tag

Impact

Consumers of the NPM package happy-dom

Patches

The security vulnerability has been patched in v15.10.1

Workarounds

No easy workarounds to my knowledge

References

#​1585

Release Notes

capricorn86/happy-dom (happy-dom)

v15.10.1

Compare Source

v15.10.0

Compare Source

v15.9.0

Compare Source

v15.8.5

Compare Source

v15.8.4

Compare Source

v15.8.3

Compare Source

v15.8.2

Compare Source

v15.8.1

Compare Source

v15.8.0

Compare Source

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the UPDATE-MINOR label Nov 6, 2024
@changeset-bot
Copy link

changeset-bot bot commented Nov 6, 2024

⚠️ No Changeset found

Latest commit: d19be22

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@codecov
Copy link

codecov bot commented Nov 6, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 91.28%. Comparing base (21a2dc6) to head (d19be22).
Report is 3 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #2281   +/-   ##
=======================================
  Coverage   91.28%   91.28%           
=======================================
  Files          47       47           
  Lines        2376     2376           
  Branches      104      104           
=======================================
  Hits         2169     2169           
  Misses        196      196           
  Partials       11       11

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@philibea philibea merged commit aafd521 into main Nov 6, 2024
8 checks passed
@philibea philibea deleted the renovate/npm-happy-dom-vulnerability branch November 6, 2024 15:58
DorianMaliszewski pushed a commit that referenced this pull request Mar 20, 2025
@renovate @DorianMaliszewski
fix(deps): update dependency happy-dom to v15.10.1 [security] (#2281)
53bef7a 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

UPDATE-MINOR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@philibea