Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / ConnectionMaster/upload-release-asset issues and pull requests
#43 - Configure Mend Bolt for GitHub
Pull Request -
State: open - Opened by mend-bolt-for-github[bot] over 1 year ago
Labels: 🔍 Ready for Review
#42 - Configure Renovate - autoclosed
Pull Request -
State: closed - Opened by renovate[bot] almost 2 years ago
Labels: 🔍 Ready for Review
#41 - CVE-2023-28155 (Medium) detected in request-2.88.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability
#40 - CVE-2021-23440 (High) detected in set-value-2.0.1.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] almost 2 years ago
Labels: Mend: dependency security vulnerability
#39 - CVE-2021-23383 (High) detected in handlebars-4.7.6.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#38 - CVE-2021-23369 (High) detected in handlebars-4.7.6.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#37 - Bump json5 from 2.1.0 to 2.2.3
Pull Request -
State: open - Opened by dependabot[bot] about 2 years ago
Labels: @dependency-update, 🔍 Ready for Review
#36 - CVE-2022-46175 (High) detected in json5-2.1.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#35 - Bump qs from 6.5.2 to 6.5.3
Pull Request -
State: open - Opened by dependabot[bot] about 2 years ago
Labels: @dependency-update, 🔍 Ready for Review
#34 - Bump decode-uri-component from 0.2.0 to 0.2.2
Pull Request -
State: open - Opened by dependabot[bot] about 2 years ago
Labels: @dependency-update, 🔍 Ready for Review
#33 - CVE-2022-38900 (High) detected in decode-uri-component-0.2.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 2 years ago
Labels: Mend: dependency security vulnerability
#32 - Bump minimatch from 3.0.4 to 3.1.2
Pull Request -
State: open - Opened by dependabot[bot] over 2 years ago
Labels: @dependency-update, 🔍 Ready for Review
#31 - CVE-2022-37598 (High) detected in uglify-js-3.6.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#30 - CVE-2022-3517 (High) detected in minimatch-3.0.4.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#29 - WS-2020-0042 (High) detected in acorn-5.7.4.tgz - autoclosed
Issue -
State: closed - Opened by mend-bolt-for-github[bot] over 2 years ago
- 1 comment
Labels: Mend: dependency security vulnerability
#28 - CVE-2022-35954 (Medium) detected in core-1.0.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#27 - Bump @actions/core from 1.0.0 to 1.9.1
Pull Request -
State: open - Opened by dependabot[bot] over 2 years ago
Labels: @dependency-update, 🔍 Ready for Review
#26 - CVE-2021-44906 (High) detected in minimist-0.0.8.tgz, minimist-1.2.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] over 2 years ago
Labels: Mend: dependency security vulnerability
#25 - Bump ws from 5.2.2 to 5.2.3
Pull Request -
State: open - Opened by dependabot[bot] almost 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#24 - Bump node-fetch from 2.6.1 to 2.6.7
Pull Request -
State: open - Opened by dependabot[bot] almost 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#23 - Bump tar from 4.4.8 to 4.4.19
Pull Request -
State: open - Opened by dependabot[bot] almost 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#22 - Bump ajv from 6.10.2 to 6.12.6
Pull Request -
State: open - Opened by dependabot[bot] about 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#21 - CVE-2022-0235 (Medium) detected in node-fetch-2.6.1.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#20 - CVE-2020-7774 (High) detected in y18n-4.0.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#19 - CVE-2020-7598 (Medium) detected in minimist-0.0.8.tgz, minimist-1.2.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#18 - CVE-2020-7788 (High) detected in ini-1.3.5.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#17 - CVE-2020-7789 (Medium) detected in node-notifier-5.4.3.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#16 - CVE-2020-15366 (Medium) detected in ajv-6.10.2.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#15 - CVE-2019-20149 (High) detected in kind-of-6.0.2.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#14 - CVE-2020-15228 (Medium) detected in core-1.0.0.tgz
Issue -
State: open - Opened by mend-bolt-for-github[bot] about 3 years ago
Labels: Mend: dependency security vulnerability
#13 - Bump tmpl from 1.0.4 to 1.0.5
Pull Request -
State: open - Opened by dependabot[bot] over 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#12 - Bump path-parse from 1.0.6 to 1.0.7
Pull Request -
State: open - Opened by dependabot[bot] over 3 years ago
Labels: @dependency-update, 🔍 Ready for Review
#11 - Bump lodash from 4.17.19 to 4.17.21
Pull Request -
State: open - Opened by dependabot[bot] almost 4 years ago
Labels: @dependency-update
#10 - Bump hosted-git-info from 2.8.4 to 2.8.9
Pull Request -
State: open - Opened by dependabot[bot] almost 4 years ago
Labels: @dependency-update
#9 - Bump handlebars from 4.7.6 to 4.7.7
Pull Request -
State: open - Opened by dependabot[bot] almost 4 years ago
Labels: @dependency-update
#8 - Bump y18n from 4.0.0 to 4.0.1
Pull Request -
State: open - Opened by dependabot[bot] almost 4 years ago
Labels: @dependency-update
#7 - [pull] main from actions:main
Pull Request -
State: closed - Opened by pull[bot] almost 4 years ago
Labels: :arrow_heading_down: pull, ✨ Merged
#6 - Bump handlebars from 4.3.1 to 4.7.6
Pull Request -
State: closed - Opened by dependabot[bot] about 4 years ago
Labels: @dependency-update
#5 - Bump yargs-parser from 13.1.1 to 13.1.2
Pull Request -
State: closed - Opened by dependabot[bot] about 4 years ago
Labels: @dependency-update
#4 - Bump @actions/core from 1.0.0 to 1.2.6
Pull Request -
State: closed - Opened by dependabot[bot] about 4 years ago
- 1 comment
Labels: @dependency-update, 🔍 Ready for Review
#3 - Bump node-fetch from 2.6.0 to 2.6.1
Pull Request -
State: closed - Opened by dependabot[bot] about 4 years ago
Labels: @dependency-update
#2 - ZeoBot's Environment Prepared
Pull Request -
State: closed - Opened by zeobot[bot] about 4 years ago
- 1 comment
#1 - Configure WhiteSource Bolt for GitHub
Pull Request -
State: closed - Opened by mend-bolt-for-github[bot] about 4 years ago