summaryrefslogtreecommitdiff
path: root/yarn.lock (unfollow)
Commit message (Collapse)AuthorFilesLines
2021-02-08Update css-loader to 5.0.2David Mehren1-49/+67
Signed-off-by: David Mehren <git@herrmehren.de>
2021-02-08Update less to 4.1.1David Mehren1-11/+12
Signed-off-by: David Mehren <git@herrmehren.de>
2021-02-08Update less-loader to 7.3.0David Mehren1-12/+12
Signed-off-by: David Mehren <git@herrmehren.de>
2021-02-08Update dependency file-loader to v6Renovate Bot1-6/+6
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2021-02-08Upgrade to expose-loader 1.0.3David Mehren1-4/+7
Signed-off-by: David Mehren <git@herrmehren.de>
2021-02-08Upgrade to imports-loader 1.2.0David Mehren1-5/+12
Signed-off-by: David Mehren <git@herrmehren.de>
2021-02-05Update dependency async to v3Renovate Bot1-8/+1
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2021-02-05Update dependency webpack to v4.46.0Renovate Bot1-6/+6
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2021-02-05chore(deps): update dependency html-webpack-plugin to v4.5.1Renovate Bot1-5/+5
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2021-01-14Regenerate yarn.lockDavid Mehren1-342/+319
Signed-off-by: David Mehren <git@herrmehren.de>
2021-01-14Upgrade to socket.io 2.4.1David Mehren1-106/+21
Signed-off-by: David Mehren <git@herrmehren.de>
2021-01-14Update yarn.lockDavid Mehren1-54/+83
archiver@5.2.0, aws-sdk@2.828.0, file-type@16.2.0, prismjs@1.23.0, socket.io-client@2.4.0, bufferutil@4.0.3, utf-8-validate@5.0.4 Signed-off-by: David Mehren <git@herrmehren.de>
2020-12-27Update yarn.lockDavid Mehren1-217/+40
Signed-off-by: David Mehren <git@herrmehren.de>
2020-12-27Improve MIME-type checks of uploaded filesDavid Mehren1-45/+279
This commit adds a check if the MIME-type of the uploaded file (detected using the magic bytes) matches the file extension. Signed-off-by: David Mehren <git@herrmehren.de>
2020-12-21Update yarn.lockDavid Mehren1-125/+57
Signed-off-by: David Mehren <git@herrmehren.de>
2020-12-18Update dependency less to v3.13.1Renovate Bot1-4/+17
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-12-16Update dependency copy-webpack-plugin to v6.4.1Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-12-12Update dependency less to v3.13.0Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-12-07Update dependency copy-webpack-plugin to v6.4.0Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-12-02Update yarn.lockDavid Mehren1-3/+3
Signed-off-by: David Mehren <git@herrmehren.de>
2020-11-29Update yarn.lockDavid Mehren1-240/+61
Signed-off-by: David Mehren <git@herrmehren.de>
2020-11-27chore: bump AWS SDK from 2.345.0 to 2.521.0Renan Rodrigues1-4/+4
Signed-off-by: Renan Rodrigues <renanqts@gmail.com>
2020-11-19Update dependency copy-webpack-plugin to v6.3.2Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency tough-cookie to ~2.5.0Renovate Bot1-9/+9
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency shortid to v2.2.16Renovate Bot1-4/+11
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency randomcolor to ^0.6.0Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency mini-css-extract-plugin to v0.12.0Renovate Bot1-4/+4
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency i18n to ^0.13.0Renovate Bot1-16/+16
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Update dependency cookie to ^0.4.0Renovate Bot1-1/+6
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-17Pin dependenciesRenovate Bot1-34/+34
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2020-11-14Replace sloganTilman Vatteroth1-2/+2
Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
2020-11-14Regenerate yarn.lockTilman Vatteroth1-511/+351
Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
2020-11-11Use our fork of CodeMirrorDavid Mehren1-1/+1
Signed-off-by: David Mehren <git@herrmehren.de>
2020-11-10Update yarn.lockDavid Mehren1-350/+85
Signed-off-by: David Mehren <git@herrmehren.de>
2020-11-10Upgrade `archiver` to v5David Mehren1-98/+106
Breaking changes only include dropping node <8 and glob patterns. Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Upgrade meta-markedDavid Mehren1-10/+10
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Upgrade js-sequence-diagramsDavid Mehren1-31/+29
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Upgrade imgurDavid Mehren1-2/+2
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Upgrade diff-match-patchDavid Mehren1-1/+1
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Use npm-release of raphaelDavid Mehren1-7/+1
Other dependencies already depend on npm-releases of this, so it does not seem to make sense to get this via Git. Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Always use `~` to allow minor upgrades of dependenciesDavid Mehren1-129/+228
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Remove unneeded `style-loader` dependencyDavid Mehren1-8/+0
Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-10Update dependenciesDavid Mehren1-771/+1035
chance@1.1.7, express-session@1.17.1, formidable@1.2.2, graceful-fs@4.2.4, handlebars@4.7.6, lutim@1.0.3, mathjax@2.7.9, mermaid@8.5.2, minimist@1.2.5, xss@1.0.8, eslint-plugin-standard@4.0.2, optimize-css-assets-webpack-plugin@5.0.4, remark-cli@8.0.1, webpack@4.44.2 aws-sdk@2.781.0, flowchart.js@1.15.0, helmet@3.23.3, i18n@0.8.6, js-yaml@3.14.0, mariadb@2.5.1, markdown-it-deflist@2.1.0, moment@2.29.1, morgan@1.10.0, mysql2@2.2.5, passport-saml@1.4.2, pdfobject@2.2.4, pg@8.4.2, prismjs@1.22.0, sequelize@5.22.3, sqlite3@4.2.0, winston@3.3.3, copy-webpack-plugin@6.2.1, eslint-plugin-import@2.22.1, html-webpack-plugin@4.5.0, less@3.12.2, style-loader@1.3.0 Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
2020-11-08regenerate yarn.lockTilman Vatteroth1-270/+14
Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
2020-08-19Update copy-webpack-plugin, css-loader, html-webpack-plugin, style-loader, ↵David Mehren1-532/+961
webpack and webpack-cli Signed-off-by: David Mehren <git@herrmehren.de>
2020-08-17fix: package.json & yarn.lock to reduce vulnerabilitiessnyk-bot1-4/+4
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-590103
2020-08-10fix: package.json & yarn.lock to reduce vulnerabilitiessnyk-bot1-4/+4
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PRISMJS-597628
2020-07-10chore: update yarn.lockoupala1-11/+1195
Signed-off-by: oupala <oupala@users.noreply.github.com>
2020-07-10fix: package.json & yarn.lock to reduce vulnerabilitiessnyk-bot1-0/+5
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746
2020-06-27Upgrade LDAP-auth to fix RCE in ldapauth dependencySheogorath1-40/+69
Synk reported an Remote Code Execution vulnerability for the passport-ldapauth dependency `bunyan`. This RCE is due to wrong command sanitizing but doesn't only affects the executable the libary provides. It has no impact on CodiMD. This patch just updates passport-ldapauth since it's long overdue anyway and to silence annoying security scanners that pretend this is rather critical for us. Reference: https://github.com/trentm/node-bunyan/commit/ea21d75f548373f29bb772b15faeb83e87089746 https://app.snyk.io/vuln/SNYK-JS-BUNYAN-573166
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-09 15:24:26 +0000