Skip to content

Commit 807af11

Browse files
ppwang-sameta-codesync[bot]
ppwang-sa
authored and
meta-codesync[bot]
committed
Bump serialize-javascript from 6.0.2 to 7.0.5 in /client_js
Summary: Bumps serialize-javascript from 6.0.2 to 7.0.5. Release notes (sourced from serialize-javascript’s releases) - v7.0.5 Fixes Improve robustness and validation for array-like object serialization. Fix an issue where certain object structures could lead to excessive CPU usage. For more details, please see GHSA-qj8w-gfj5-8c6v. - v7.0.4 What’s Changed release: v7.0.4 by okuryu in yahoo/serialize-javascript#211 Full Changelog: yahoo/serialize-javascript@v7.0.3...v7.0.4 - v7.0.3 fix(CVE-2020-7660): fix for RegExp.flags and Date.prototype.toISOString (#207) 2e609d0 build(deps-dev): bump lodash from 4.17.21 to 4.17.23 (#206) 42b7cdb Compare: yahoo/serialize-javascript@v7.0.2...v7.0.3 - v7.0.2 What’s Changed ci: bump GitHub Actions to latest versions by okuryu in yahoo/serialize-javascript#203 ci: setup trusted publishing workflow by okuryu in yahoo/serialize-javascript#204 release: v7.0.2 by okuryu in yahoo/serialize-javascript#205 Full Changelog: yahoo/serialize-javascript@v7.0.1...v7.0.2 - v7.0.1 What’s Changed Add warning about using this package to send arbitrary data to worker threads by valadaptive in yahoo/serialize-javascript#200 security: sanitize function bodies by redonkulus in yahoo/serialize-javascript#199 docs: tweak README by okuryu in yahoo/serialize-javascript#201 release: v7.0.1 by okuryu in yahoo/serialize-javascript#202 New Contributors redonkulus made their first contribution in yahoo/serialize-javascript#199 Full Changelog: yahoo/serialize-javascript@v7.0.0...v7.0.1 - v7.0.0 Breaking Changes requires Node.js v20+ What’s Changed Bump mocha from 10.2.0 to 10.4.0 by dependabot[bot] in yahoo/serialize-javascript#178 Commits df3f1c1 release: v7.0.5 f147e90 Merge commit from fork eec32e0 release: v7.0.4 d505715 7.0.3 2e609d0 fix(CVE-2020-7660): fix for RegExp.flags and Date.prototype.toISOString (#207) 42b7cdb build(deps-dev): bump lodash from 4.17.21 to 4.17.23 (#206) 44f544b release: v7.0.2 (#205) bba0ddd ci: setup trusted publishing workflow (#204) 235f6ea ci: bump GitHub Actions to latest versions (#203) f7fff15 release: v7.0.1 (#202) Additional commits: yahoo/serialize-javascript@v6.0.2...v7.0.5 Differential Revision: D99491918 fbshipit-source-id: 91bc933bd8b3e3ca7e54bbae13fe4126c267f852
1 parent 02c4af8 commit 807af11

File tree

1 file changed

+2
-12
lines changed

1 file changed

+2
-12
lines changed

client_js/yarn.lock

Lines changed: 2 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -3165,11 +3165,6 @@ queue-microtask@^1.2.2:
31653165
version "1.2.3"
31663166
resolved "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz"
31673167

3168-
randombytes@^2.1.0:
3169-
version "2.1.0"
3170-
resolved "https://registry.npmjs.org/randombytes/-/randombytes-2.1.0.tgz"
3171-
dependencies:
3172-
safe-buffer "^5.1.0"
31733168

31743169
react-is@^18.0.0:
31753170
version "18.3.1"
@@ -3266,9 +3261,6 @@ run-parallel@^1.1.9:
32663261
dependencies:
32673262
queue-microtask "^1.2.2"
32683263

3269-
safe-buffer@^5.1.0:
3270-
version "5.2.1"
3271-
resolved "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.2.1.tgz"
32723264

32733265
"safer-buffer@>= 2.1.2 < 3.0.0":
32743266
version "2.1.2"
@@ -3298,10 +3290,8 @@ semver@^7.5.3, semver@^7.5.4:
32983290
resolved "https://registry.npmjs.org/semver/-/semver-7.7.4.tgz"
32993291

33003292
serialize-javascript@^7.0.3:
3301-
version "7.0.3"
3302-
resolved "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-7.0.3.tgz"
3303-
dependencies:
3304-
randombytes "^2.1.0"
3293+
version "7.0.5"
3294+
resolved "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-7.0.5.tgz"
33053295

33063296
shallow-clone@^3.0.0:
33073297
version "3.0.1"

0 commit comments

Comments
 (0)