Skip to content

Files

Latest commit

author
sonatype-community
Nov 13, 2024
d18ff4c · Nov 13, 2024

History

History
331 lines (148 loc) · 16.6 KB

CHANGELOG.md

File metadata and controls

331 lines (148 loc) · 16.6 KB

4.0.46 (2024-11-13)

Bug Fixes

  • latest mock-fs fixes failing unit tests after other updates, resolve CVE-2024-21538 in cross-spawn 7.0.3 (7a66cbb)
  • resolve CVE-2024-21538 in cross-spawn : 7.0.3 (4ade2a7)
  • resolve CVE-2024-21538 in cross-spawn : 7.0.3 (update CI node version) (d3378f5)
  • resolve CVE-2024-4068 in braces : 3.0.2 (d065149)
  • update CI 'release' target to use latest semantic-release, now that we use newer node version (e2ac821)

4.0.45 (2024-01-17)

Bug Fixes

  • use semantic-release version that works with node 18 (newer node causes build errors). (a122b0e)

4.0.44 (2024-01-10)

Bug Fixes

  • minor change to trigger release of PR# 276 (f676f91)

4.0.43 (2023-12-13)

Bug Fixes

  • minor change to trigger release of fix for sonatype-2023-4801 (032b20a)

4.0.42 (2023-12-13)

Bug Fixes

  • error TS2688: Cannot find type definition file for 'node'. (#274) (2d79b85)

4.0.41 (2023-07-12)

Bug Fixes

  • sonatype-2022-3677 in node-fetch 2.6.7 (d1b15ab)

4.0.40 (2023-06-22)

Bug Fixes

  • CVE-2022-25883 in semver : 5.7.1 (51d1dd0)

4.0.39 (2022-10-31)

Bug Fixes

  • CVE-2022-39353 in @xmldom/xmldom : 0.8.3 (73b65bd)

4.0.38 (2022-10-13)

Bug Fixes

  • CVE-2022-37616 in @xmldom/xmldom : 0.7.2 (5269bef)

4.0.37 (2022-04-20)

Bug Fixes

  • security(npm): lock colors library to 1.4.0 (#251) (36ae07f), closes #250

4.0.36 (2022-02-08)

Bug Fixes

  • sonatype-2021-4879 in minimatch : 3.0.4 (384a99f)

4.0.35 (2022-01-20)

Bug Fixes

  • CVE-2022-21704 in log4js : 6.3.0 (b7f1548)

4.0.34 (2022-01-20)

Bug Fixes

  • CVE-2022-0235 in node-fetch : 2.6.1 (cde4677)

4.0.33 (2021-10-25)

Bug Fixes

4.0.32 (2021-09-16)

Bug Fixes

  • revert fix for SONATYPE-2021-1169, breaks eslint. needs more work (a7428e2)
  • SONATYPE-2021-1169 (74abe3c)

4.0.31 (2021-09-07)

Bug Fixes

  • Make caching class return undefined if property does not exist (#247) (8e3b3ad)
  • use newer node version in CI release process, required to run semantic-release. (589e0ce)
  • use newly published @xmldom/xmldom package. fixes #243 (9f8b646)

4.0.30 (2021-08-09)

Bug Fixes

  • CVE-2021-32796, will change when xmldom@0.7.0 is published on npm (#242) (a6c8e32)

4.0.29 (2021-08-05)

Bug Fixes

4.0.28 (2021-08-03)

Bug Fixes

  • workaround to fix issue #239. may convert to yarn later (2056567)

4.0.27 (2021-07-30)

Bug Fixes

  • switch to force-resolutions to avoid error when running on a project without a package-lock.json (a07ae78)

4.0.26 (2021-07-29)

Bug Fixes

  • avoid ab-end in Application.spec.ts test by using process.exitCode instead of process.exit(). @TNeer rules! (1e63108)
  • CWE-20: Improper Input Validation in y18n version 5.0.5 (1b6a7cb)
  • the releases must flow. remove semantic-release dry-run flag (9bb8efb)

4.0.25 (2021-03-12)

Bug Fixes

  • CVE-2021-21366 in commit 4d727dcd (7875242)

4.0.24 (2021-02-12)

Bug Fixes

4.0.23 (2021-01-11)

Bug Fixes

  • take whitelist path parameter into account (#219) (f2f14ac)

4.0.22 (2020-12-18)

Bug Fixes

  • document release process, test release credentials (3e5b2ba)

4.0.21 (2020-12-17)

Bug Fixes

4.0.20 (2020-11-17)

Bug Fixes

4.0.19 (2020-11-06)

Bug Fixes

4.0.18 (2020-06-04)

Bug Fixes

4.0.17 (2020-06-02)

Bug Fixes

4.0.16 (2020-05-20)

Bug Fixes

  • Mention support on README (e09edfd)

4.0.15 (2020-05-08)

Bug Fixes

4.0.14 (2020-03-27)

Bug Fixes

4.0.13 (2020-03-24)

Bug Fixes

  • Allow someone to force a Bower scan, if they so wish (#182) (840e81c)

4.0.12 (2020-03-12)

Bug Fixes

  • pkg.homepage, not pkg.repository.url (213e52d)

4.0.11 (2020-03-12)

Bug Fixes

  • (bug) Fixed NPE in logger if meta is not passed in (#183) (c113741)

4.0.10 (2020-03-04)

Bug Fixes

  • -d flag includes dev dependencies, not excludes (#181) (188b9be)

4.0.9 (2020-03-03)

Bug Fixes

4.0.8 (2020-02-28)

Bug Fixes

  • add some info on AuditJS and IQ CLI Scanner, and differences (ca3c119)
  • add verbiage to identify some potential differences with using AuditJS vs using the Sonatype Nexus IQ CLI Scanner (1d5a2d7)

4.0.7 (2020-02-26)

Bug Fixes

  • memorialize Allen, through AllenJS (592fb93)

4.0.6 (2020-02-24)

Bug Fixes

  • Added Istanbul (not Constantinople) as a code coverage checker (#173) (c7d3536)

4.0.5 (2020-02-21)

Bug Fixes

4.0.4 (2020-02-21)

Bug Fixes

  • Suggest to run with dev flag if 0 dependencies are found (#171) (39b7d73)

4.0.3 (2020-02-21)

Bug Fixes

  • Make sure CycloneDXSbomCreator handles URIs if it runs into a bad one (#170) (d6d24ba)

4.0.2 (2020-02-19)

Bug Fixes

4.0.1 (2020-02-18)

Bug Fixes

  • turn off Dry Run, publish to npm, hang on to your butts (5a96d2a)