⬆️ Updates Node.js to v17.9.1#3555
Conversation
Branch automerge failureThis PR was configured for branch automerge. However, this is not possible, so it has been raised as a PR instead.
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Scan Summary
| Tool | Critical | High | Medium | Low | Status |
|---|---|---|---|---|---|
| Dependency Scan (universal) | 2 | 8 | 5 | 0 | ❌ |
| Kotlin Static Analysis | 0 | 0 | 0 | 0 | ✅ |
| Security Audit for Infrastructure | 14 | 92 | 8 | 32 | ❌ |
| Secrets Audit | 0 | 4 | 0 | 0 | ❌ |
| Shell Script Analysis | 0 | 0 | 0 | 195 | ✅ |
| Kotlin Security Audit | 0 | 0 | 0 | 0 | ✅ |
| Python Source Analyzer | 0 | 0 | 0 | 0 | ✅ |
Recommendation
Please review the findings from Code scanning alerts before approving this pull request. You can also configure the build rules or add suppressions to customize this bot 👍
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
All alerts resolved. Learn more about Socket for GitHub. This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored. |
|
Welcome, new contributor! |
renovate
Bot
force-pushed
the
renovate/node-17.x
branch
from
2d82c3e to
bb559ed
Compare
There was a problem hiding this comment.
Scan Summary
| Tool | Critical | High | Medium | Low | Status |
|---|---|---|---|---|---|
| Dependency Scan (universal) | 2 | 7 | 5 | 0 | ❌ |
| Kotlin Security Audit | 0 | 0 | 0 | 0 | ✅ |
| Kotlin Static Analysis | 0 | 0 | 0 | 0 | ✅ |
| Security Audit for Infrastructure | 14 | 92 | 8 | 32 | ❌ |
| Secrets Audit | 0 | 4 | 0 | 0 | ❌ |
| Shell Script Analysis | 0 | 0 | 0 | 195 | ✅ |
| Python Source Analyzer | 0 | 0 | 0 | 0 | ✅ |
Recommendation
Please review the findings from Code scanning alerts before approving this pull request. You can also configure the build rules or add suppressions to customize this bot 👍
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
renovate
Bot
force-pushed
the
renovate/node-17.x
branch
from
bb559ed to
718d014
Compare
This PR contains the following updates:
17.1.0→17.9.1^17.0.21→^17.0.45Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
nodejs/node (node)
v17.9.1: 2022-06-01, Version 17.9.1 (Current), @ruyadornoCompare Source
Notable Changes
Update to OpenSSL 3.0.3
This update can be treated as a security release as the issues addressed in OpenSSL 3.0.3 slightly affect Node.js 17.
See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ for more information on how the May 2022 OpenSSL releases affect other Node.js release lines.
Commits
17fef6e] - deps: upgrade npm to 8.11.0 (npm team) #43210d0b53c0] - deps: upgrade npm to 8.10.0 (npm team) #4306172630d1] - deps: upgrade npm to 8.9.0 (npm team) #4296893d58c3] - deps: upgrade npm to 8.8.0 (npm team) #4288634e6edd] - deps: upgrade npm to 8.7.0 (npm team) #4274402f8b0c] - deps: upgrade npm to 8.6.0 (npm team) #42550871eace] - deps: update archs files for quictls/openssl-3.0.3 (RafaelGSS) #4302505fb807] - deps: upgrade openssl sources to quictls/openssl-3.0.3 (RafaelGSS) #43025Configuration
📅 Schedule: (in timezone Europe/Moscow)
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
This PR was generated by Mend Renovate. View the repository job log.