Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update sane package to avoid a security warning #7484

Closed
wants to merge 1 commit into from
Closed

Update sane package to avoid a security warning #7484

wants to merge 1 commit into from

Conversation

gkohen
Copy link

@gkohen gkohen commented Dec 7, 2018

An underlying library has a security vulnerability
https://www.npmjs.com/advisories/722

Note: this file should be refresh in general as a whole.

@gkohen
Update sane package to avoid a security warning
27aa0c7 
An underlying library has a security vulnerability 
https://www.npmjs.com/advisories/722

Note: this file should be refresh in general as a whole.
@facebook-github-bot
Copy link
Contributor

Thank you for your pull request and welcome to our community. We require contributors to sign our Contributor License Agreement, and we don't seem to have you on file. In order for us to review and merge your code, please sign up at https://code.facebook.com/cla. If you are contributing on behalf of someone else (eg your employer), the individual CLA may not be sufficient and your employer may need the corporate CLA signed.

If you have received this in error or have any questions, please contact us at [email protected]. Thanks!

@facebook-github-bot
Copy link
Contributor

Thank you for signing our Contributor License Agreement. We can now accept your code for this (and any) Facebook open source project. Thanks!

@thymikee
Copy link
Collaborator

thymikee commented Dec 8, 2018

Hey! Thanks for the PR but it's a duplicate of #7322.
Also, I can see that you're only updating yarn.lock which does not affect npm nor Yarn in userland.

@thymikee thymikee closed this Dec 8, 2018
@gkohen
Copy link
Author

gkohen commented Dec 10, 2018

Thanks @thymikee for pointing out the dup.
To understand your comment about yarn.lock I want to make sure I understand it correctly. Did you mean that no change below the top level of the file will be moot in userland is mentioned here?

@SimenB
Copy link
Member

SimenB commented Dec 10, 2018

Updating the lockfile in this repo won't make a difference for consumers of Jest as it's not distributed

@francocorreasosa francocorreasosa mentioned this pull request Feb 25, 2019
Merged
francocorreasosa pushed a commit to auth0/cosmos that referenced this pull request Feb 25, 2019
Update jest to fix security warning (#1525)
acf16f9 
Related to jestjs/jest#7484
landitus pushed a commit to auth0/cosmos that referenced this pull request Jan 17, 2020
@landitus
Update jest to fix security warning (#1525)
568ca9e 
Related to jestjs/jest#7484
@github-actions
Copy link

This pull request has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
Please note this issue tracker is not a help forum. We recommend using StackOverflow or our discord channel for questions.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators May 12, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
cla signed
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@gkohen @facebook-github-bot @thymikee @SimenB