From 96ea87e0f5fdbd5817b960a44174e593a6ff6bff Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 20 Mar 2021 06:21:50 +0000 Subject: [PATCH 1/5] fix: docs/Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-KRAMDOWN-1087436 --- docs/Gemfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/Gemfile b/docs/Gemfile index 182c6e9..b7d7381 100644 --- a/docs/Gemfile +++ b/docs/Gemfile @@ -20,7 +20,7 @@ gem "jekyll-theme-slate", "~> 0.1.1" # If you have any plugins, put them here! group :jekyll_plugins do - gem "jekyll-feed", "~> 0.13", ">= 0.13.0" + gem "jekyll-feed", "~> 0.15", ">= 0.15.1" end # Windows does not include zoneinfo files, so bundle the tzinfo-data gem From 016f6e9c68b2bdb0c8828a5c40116cbfc48812e7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 23 Mar 2021 23:38:02 +0000 Subject: [PATCH 2/5] fix: upgrade jquery from 3.5.1 to 3.6.0 Snyk has created this PR to upgrade jquery from 3.5.1 to 3.6.0. See this package in npm: See this project in Snyk: https://app.snyk.io/org/mrstallion/project/91a3cebd-53f0-40ff-988c-3b84a8b58406?utm_source=github&utm_medium=upgrade-pr --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index b73f3df..0663bad 100644 --- a/package.json +++ b/package.json @@ -53,7 +53,7 @@ }, "dependencies": { "@cliqz/adblocker-electron": "^1.20.0", - "jquery": "^3.5.1", + "jquery": "^3.6.0", "keytar": "^7.4.0", "node-fetch": "^2.6.1" }, diff --git a/yarn.lock b/yarn.lock index fec8fd9..6c275f8 100644 --- a/yarn.lock +++ b/yarn.lock @@ -4143,10 +4143,10 @@ jest-worker@^26.6.1: merge-stream "^2.0.0" supports-color "^7.0.0" -jquery@^3.5.1: - version "3.5.1" - resolved "https://registry.yarnpkg.com/jquery/-/jquery-3.5.1.tgz#d7b4d08e1bfdb86ad2f1a3d039ea17304717abb5" - integrity sha512-XwIBPqcMn57FxfT+Go5pzySnm4KWkT1Tv7gjrpT1srtf8Weynl6R273VJ5GjkRb51IzMp5nbaPjJXMWeju2MKg== +jquery@^3.6.0: + version "3.6.0" + resolved "https://registry.yarnpkg.com/jquery/-/jquery-3.6.0.tgz#c72a09f15c1bdce142f49dbf1170bdf8adac2470" + integrity sha512-JVzAR/AjBvVt2BmYhxRCSYysDsPcssdmTFnzyLEts9qNwmjmu4JTAMYubEfwVOSwpQ1I1sKKFcxhZCI2buerfw== js-base64@^2.1.8: version "2.6.4" From 7c77d2537196d1a8aa502834a1d556b9c32faa65 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 10 Apr 2021 06:21:58 +0000 Subject: [PATCH 3/5] fix: docs/Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-REXML-1244518 --- docs/Gemfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/Gemfile b/docs/Gemfile index 182c6e9..b7d7381 100644 --- a/docs/Gemfile +++ b/docs/Gemfile @@ -20,7 +20,7 @@ gem "jekyll-theme-slate", "~> 0.1.1" # If you have any plugins, put them here! group :jekyll_plugins do - gem "jekyll-feed", "~> 0.13", ">= 0.13.0" + gem "jekyll-feed", "~> 0.15", ">= 0.15.1" end # Windows does not include zoneinfo files, so bundle the tzinfo-data gem From 82502c6dcd307b902b3b106e7f2290aa723185a9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 15 Apr 2021 23:38:00 +0000 Subject: [PATCH 4/5] fix: upgrade keytar from 7.4.0 to 7.5.0 Snyk has created this PR to upgrade keytar from 7.4.0 to 7.5.0. See this package in npm: See this project in Snyk: https://app.snyk.io/org/mrstallion/project/91a3cebd-53f0-40ff-988c-3b84a8b58406?utm_source=github&utm_medium=upgrade-pr --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index 5dea41f..f2f8932 100644 --- a/package.json +++ b/package.json @@ -54,7 +54,7 @@ "dependencies": { "@cliqz/adblocker-electron": "^1.20.0", "jquery": "^3.5.1", - "keytar": "^7.4.0", + "keytar": "^7.5.0", "node-fetch": "^2.6.1" }, "optionalDependencies": { diff --git a/yarn.lock b/yarn.lock index fec8fd9..3e55f6a 100644 --- a/yarn.lock +++ b/yarn.lock @@ -4271,10 +4271,10 @@ junk@^3.1.0: resolved "https://registry.yarnpkg.com/junk/-/junk-3.1.0.tgz#31499098d902b7e98c5d9b9c80f43457a88abfa1" integrity sha512-pBxcB3LFc8QVgdggvZWyeys+hnrNWg4OcZIU/1X59k5jQdLBlCsYGRQaz234SqoRLTCgMH00fY0xRJH+F9METQ== -keytar@^7.4.0: - version "7.4.0" - resolved "https://registry.yarnpkg.com/keytar/-/keytar-7.4.0.tgz#0a508d64850ca05aa3ba4127818037d13ca3219f" - integrity sha512-nELmc35YjSE4ZNSFaID/743CgDt/MdV4JLX7rRewAh9mKvU72RtF3uJMY0MdMpwdDYZhmD8FSdRCD1J97lEyVg== +keytar@^7.5.0: + version "7.6.0" + resolved "https://registry.yarnpkg.com/keytar/-/keytar-7.6.0.tgz#498e796443cb543d31722099443f29d7b5c44100" + integrity sha512-H3cvrTzWb11+iv0NOAnoNAPgEapVZnYLVHZQyxmh7jdmVfR/c0jNNFEZ6AI38W/4DeTGTaY66ZX4Z1SbfKPvCQ== dependencies: node-addon-api "^3.0.0" prebuild-install "^6.0.0" From 5162f56c67617e184b18e004e6ff01627469ec4f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 15 Apr 2021 23:38:03 +0000 Subject: [PATCH 5/5] fix: upgrade @cliqz/adblocker-electron from 1.20.3 to 1.20.4 Snyk has created this PR to upgrade @cliqz/adblocker-electron from 1.20.3 to 1.20.4. See this package in npm: See this project in Snyk: https://app.snyk.io/org/mrstallion/project/91a3cebd-53f0-40ff-988c-3b84a8b58406?utm_source=github&utm_medium=upgrade-pr --- package.json | 2 +- yarn.lock | 52 ++++++++++++++++++++++++++-------------------------- 2 files changed, 27 insertions(+), 27 deletions(-) diff --git a/package.json b/package.json index 5dea41f..306f71c 100644 --- a/package.json +++ b/package.json @@ -52,7 +52,7 @@ "webpack": "^5.3.2" }, "dependencies": { - "@cliqz/adblocker-electron": "^1.20.0", + "@cliqz/adblocker-electron": "^1.20.4", "jquery": "^3.5.1", "keytar": "^7.4.0", "node-fetch": "^2.6.1" diff --git a/yarn.lock b/yarn.lock index fec8fd9..3822f4b 100644 --- a/yarn.lock +++ b/yarn.lock @@ -23,41 +23,41 @@ chalk "^2.0.0" js-tokens "^4.0.0" -"@cliqz/adblocker-content@^1.20.3": - version "1.20.3" - resolved "https://registry.yarnpkg.com/@cliqz/adblocker-content/-/adblocker-content-1.20.3.tgz#198c8719cd62ef3c67a5c98e7a54336b7812ed86" - integrity sha512-aCBTiIiNgVbmDIQyUcsn0j3n+umvs0DuVlL6dccPE3qfeFxT4whUvMwjxUS2/dIBfJK9A1LywmvVke2eSPw9wg== +"@cliqz/adblocker-content@^1.20.4": + version "1.20.4" + resolved "https://registry.yarnpkg.com/@cliqz/adblocker-content/-/adblocker-content-1.20.4.tgz#68c0c628acd6da49bb5a6ad9ee0cb540a8d50acd" + integrity sha512-Cp6M6MERCsLwklX6lAmrgOxom0pr4DjxmUGLcmM9MDACOIzk/m7ya1e82bXzEWAU1Jni2Bp91xUUWxg+DLWJgQ== dependencies: - "@cliqz/adblocker-extended-selectors" "^1.20.3" + "@cliqz/adblocker-extended-selectors" "^1.20.4" -"@cliqz/adblocker-electron-preload@^1.20.3": - version "1.20.3" - resolved "https://registry.yarnpkg.com/@cliqz/adblocker-electron-preload/-/adblocker-electron-preload-1.20.3.tgz#17dff446ad742cb6e68a4572e7a75cff1fa33f95" - integrity sha512-fWAFEGj+F0VOUKZd2FqWLuguXmGzkRQz5wTCqasvndX4HSe0P8Pd2666pWK9RJW1dLJE7U61mQfTbYqlUFVTMA== +"@cliqz/adblocker-electron-preload@^1.20.4": + version "1.20.4" + resolved "https://registry.yarnpkg.com/@cliqz/adblocker-electron-preload/-/adblocker-electron-preload-1.20.4.tgz#b7d6606dfc24e7b3f80109cc6820bd203faaf26e" + integrity sha512-tIEgFJJhEDTYrSUzAL+wbw+BBVwCtuFtckA/scka990DGlXsEmkJ7HxNXvUPwhOQiV4YUwN5bsqxCDA8VDTZNw== dependencies: - "@cliqz/adblocker-content" "^1.20.3" + "@cliqz/adblocker-content" "^1.20.4" -"@cliqz/adblocker-electron@^1.20.0": - version "1.20.3" - resolved "https://registry.yarnpkg.com/@cliqz/adblocker-electron/-/adblocker-electron-1.20.3.tgz#f2b4bf5dddf90f64251c46f89238526dc0037384" - integrity sha512-ZcEl3W7R/aoUA0IPIMtvdn7gVE6O9+rDQ9OllIH/s/gVeElXZsgPEtpPMSuoJWbi9d2mlr8yo3UFvkV3u7c4gw== +"@cliqz/adblocker-electron@^1.20.4": + version "1.20.4" + resolved "https://registry.yarnpkg.com/@cliqz/adblocker-electron/-/adblocker-electron-1.20.4.tgz#6d7de52cff013ef3cd0f4a7850ebfc31f6240a46" + integrity sha512-HaHexPnJL1BBvloXuqmSh8WtpPKYHyZ+o6f+9SciySN4dJAX9BIGTk9D/V6eJWLmy6+wY7/Bpcn2Q4nrYXsqBw== dependencies: - "@cliqz/adblocker" "^1.20.3" - "@cliqz/adblocker-electron-preload" "^1.20.3" + "@cliqz/adblocker" "^1.20.4" + "@cliqz/adblocker-electron-preload" "^1.20.4" tldts-experimental "^5.6.21" -"@cliqz/adblocker-extended-selectors@^1.20.3": - version "1.20.3" - resolved "https://registry.yarnpkg.com/@cliqz/adblocker-extended-selectors/-/adblocker-extended-selectors-1.20.3.tgz#a817915948ec4e64c8b878a80a71d911ea0412c8" - integrity sha512-Xsrqg4qgpNVx80UJrAz/nS8jcbgCTIGvir0MrjoXrw0GheqRxsgE540XXP9JA7QlifLNVEOO44DpHvhUmISkQw== +"@cliqz/adblocker-extended-selectors@^1.20.4": + version "1.20.4" + resolved "https://registry.yarnpkg.com/@cliqz/adblocker-extended-selectors/-/adblocker-extended-selectors-1.20.4.tgz#6f5ab8251a0d40cacf3703f5621025e0d85d6348" + integrity sha512-VBP8iv1IdYpwQ0hbbeiXCSW7ppzK05dbPM4DyeCb54mB0CjWj/pMQwEvjMZKLWTkEyPd26oMqnxNQz1UgGaZag== -"@cliqz/adblocker@^1.20.3": - version "1.20.3" - resolved "https://registry.yarnpkg.com/@cliqz/adblocker/-/adblocker-1.20.3.tgz#4e8d03ed03c476f7b4388d25f910b1b9e0b15cc9" - integrity sha512-Dqj8fJ399kFsFQ53uW0ajA5jH5VJ5ppawOjtoV2s+7NILj1ydvw40jTrr3l/ObMvxaAGaDUj2Euo4beg3/EtRQ== +"@cliqz/adblocker@^1.20.4": + version "1.20.4" + resolved "https://registry.yarnpkg.com/@cliqz/adblocker/-/adblocker-1.20.4.tgz#63f75456b6d63f66dc73b9ac2971ed073bf26722" + integrity sha512-ylwc4fScwgDjh9mKAvBQ+oCNyZWncrPakU17KbMtq+l82LkzJ0ND0wififpeq+nI9JBiQosW+eus5R08THpwCQ== dependencies: - "@cliqz/adblocker-content" "^1.20.3" - "@cliqz/adblocker-extended-selectors" "^1.20.3" + "@cliqz/adblocker-content" "^1.20.4" + "@cliqz/adblocker-extended-selectors" "^1.20.4" "@remusao/guess-url-type" "^1.1.2" "@remusao/small" "^1.1.2" "@remusao/smaz" "^1.7.1"