fix(deps): update dependency debug to ~2.6.9 [security] by renovate[bot] · Pull Request #26 · DarthRatz/Node-Learning

renovate · 2023-03-18T17:55:22Z

This PR contains the following updates:

Package	Change	Age	Confidence
debug	`~2.2.0` → `~2.6.9`

GitHub Vulnerability Alerts

CVE-2017-20165

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. The name of the patch is c38a0166c266a679c8de012d4eaccec3f944e685. It is recommended to upgrade the affected component. The identifier VDB-217665 was assigned to this vulnerability. The patch has been backported to the 2.6.x branch in version 2.6.9.

Release Notes

debug-js/debug (debug)

`v2.6.9`

Compare Source

Patches

Remove ReDoS regexp in %o formatter: #504

Credits

Huge thanks to @zhuangya for their help!

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Mar 27, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 802ffd7 to 134ac73 Compare March 27, 2023 17:14

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] May 29, 2023

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jun 2, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from b718b6d to c595a95 Compare June 2, 2023 02:22

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from c595a95 to 3cf46f8 Compare June 9, 2023 05:47

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jun 9, 2023

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jun 10, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 3cf46f8 to 9ba7dbc Compare June 10, 2023 11:49

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jun 13, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 9ba7dbc to 9024c77 Compare June 13, 2023 20:59

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jun 16, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 9024c77 to 36968d4 Compare June 16, 2023 02:50

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jun 18, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 36968d4 to 1bb1167 Compare June 18, 2023 11:50

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jun 22, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 1bb1167 to ab59577 Compare June 22, 2023 23:33

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jun 29, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from ab59577 to d2cf4cb Compare June 29, 2023 23:36

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jun 30, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from d2cf4cb to 0b9906e Compare June 30, 2023 17:52

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jul 7, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 0b9906e to 46f06db Compare July 7, 2023 23:42

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jul 8, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 46f06db to 0d46830 Compare July 8, 2023 05:25

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jul 10, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 0d46830 to 2060bb8 Compare July 10, 2023 05:54

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jul 11, 2023

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 2060bb8 to d23a5f8 Compare July 11, 2023 23:53

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jul 17, 2023

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Nov 20, 2025

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 8316cfb to 64b4314 Compare December 4, 2025 11:46

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Dec 4, 2025

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 64b4314 to 372120f Compare December 6, 2025 00:05

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Dec 6, 2025

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 372120f to 56a5858 Compare December 30, 2025 10:57

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Dec 30, 2025

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 56a5858 to e38b08c Compare January 2, 2026 07:37

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jan 2, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from e38b08c to 947b531 Compare January 9, 2026 03:41

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jan 9, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 947b531 to 6b0e056 Compare January 10, 2026 03:56

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jan 10, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 6b0e056 to c0a9484 Compare January 20, 2026 06:49

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Jan 20, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from c0a9484 to 425f52e Compare January 21, 2026 15:57

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Jan 21, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 425f52e to 435e64b Compare February 3, 2026 03:50

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Feb 3, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 435e64b to 51b5566 Compare February 4, 2026 07:56

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Feb 4, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 51b5566 to 39ec5f1 Compare February 13, 2026 08:06

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Feb 13, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 39ec5f1 to 7aaca69 Compare February 14, 2026 11:32

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Feb 14, 2026

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 7aaca69 to 5bf6848 Compare February 18, 2026 03:54

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.9 [security]~~ fix(deps): update dependency debug to ~2.6.0 [security] Feb 18, 2026

fix(deps): update dependency debug to ~2.6.9 [security]

0ea2b14

renovate bot force-pushed the renovate/npm-debug-vulnerability branch from 5bf6848 to 0ea2b14 Compare February 19, 2026 19:54

renovate bot changed the title ~~fix(deps): update dependency debug to ~2.6.0 [security]~~ fix(deps): update dependency debug to ~2.6.9 [security] Feb 19, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update dependency debug to ~2.6.9 [security]#26

fix(deps): update dependency debug to ~2.6.9 [security]#26
renovate[bot] wants to merge 1 commit intomasterfrom
renovate/npm-debug-vulnerability

renovate bot commented Mar 18, 2023 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate bot commented Mar 18, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

Release Notes

Patches

Credits

Configuration

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate bot commented Mar 18, 2023 •

edited

Loading