conventional-commits-parser
Advanced tools
Comparing version 3.2.1 to 3.2.2
@@ -40,2 +40,9 @@ # Change Log | ||
### [3.2.2](https://www.github.com/conventional-changelog/conventional-changelog/compare/conventional-commits-parser-v3.2.1...conventional-commits-parser-v3.2.2) (2021-09-09) | ||
### Bug Fixes | ||
* **conventional-commits-parser:** address CVE-2021-23425 ([#841](https://www.github.com/conventional-changelog/conventional-changelog/issues/841)) ([02b3d53](https://www.github.com/conventional-changelog/conventional-changelog/commit/02b3d53a0c142f0c28ee7d190d210c76a62887c2)) | ||
### [3.2.1](https://www.github.com/conventional-changelog/conventional-changelog/compare/conventional-commits-parser@3.2.0...v3.2.1) (2021-02-15) | ||
@@ -42,0 +49,0 @@ |
'use strict' | ||
const trimOffNewlines = require('trim-off-newlines') | ||
const _ = require('lodash') | ||
@@ -8,2 +7,6 @@ | ||
function trimOffNewlines (input) { | ||
return input.replace(/^(?:\r|\n)+|(?:\r|\n)+$/g, '') | ||
} | ||
function append (src, line) { | ||
@@ -10,0 +13,0 @@ if (src) { |
{ | ||
"name": "conventional-commits-parser", | ||
"version": "3.2.1", | ||
"version": "3.2.2", | ||
"description": "Parse raw conventional commits", | ||
@@ -36,9 +36,8 @@ "bugs": { | ||
"dependencies": { | ||
"is-text-path": "^1.0.1", | ||
"JSONStream": "^1.0.4", | ||
"is-text-path": "^1.0.1", | ||
"lodash": "^4.17.15", | ||
"meow": "^8.0.0", | ||
"split2": "^3.0.0", | ||
"through2": "^4.0.0", | ||
"trim-off-newlines": "^1.0.0" | ||
"through2": "^4.0.0" | ||
}, | ||
@@ -45,0 +44,0 @@ "scripts": { |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
57352
6
533
0
- Removedtrim-off-newlines@^1.0.0
- Removedtrim-off-newlines@1.0.3(transitive)