Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency chromedriver to v119 [security] #1921

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency chromedriver to v119 [security] #1921

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 6, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
chromedriver ^87.0.0 -> ^119.0.0 age adoption passing confidence

Review

  • Updates have been tested and work
  • If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

GitHub Vulnerability Alerts

CVE-2023-26156

Versions of the package chromedriver before 119.0.1 are vulnerable to Command Injection when setting the chromedriver.path to an arbitrary system binary. This could lead to unauthorized access and potentially malicious actions on the host system.

Note:

An attacker must have access to the system running the vulnerable chromedriver library to exploit it. The success of exploitation also depends on the permissions and privileges of the process running chromedriver.

Release Notes

giggio/node-chromedriver (chromedriver)

v119.0.1

Compare Source

v119.0.0

Compare Source

v118.0.1

Compare Source

v118.0.0

Compare Source

v117.0.3

Compare Source

v117.0.2

Compare Source

v117.0.1

Compare Source

v117.0.0

Compare Source

v116.0.0

Compare Source

v115.0.1

Compare Source

v115.0.0

Compare Source

v114.0.3

Compare Source

v114.0.2

Compare Source

v114.0.1

Compare Source

v114.0.0

Compare Source

v113.0.0

Compare Source

v112.0.1

Compare Source

v112.0.0

Compare Source

v111.0.0

Compare Source

v110.0.0

Compare Source

v109.0.0

Compare Source

v108.0.0

Compare Source

v107.0.3

Compare Source

v107.0.2

Compare Source

v107.0.1

Compare Source

v107.0.0

Compare Source

v106.0.1

Compare Source

v106.0.0

Compare Source

v105.0.1

Compare Source

v105.0.0

Compare Source

v104.0.0

Compare Source

v103.0.0

Compare Source

v102.0.0

Compare Source

v101.0.0

Compare Source

v100.0.0

Compare Source

v99.0.0

Compare Source

v98.0.1

Compare Source

v98.0.0

Compare Source

v97.0.4

Compare Source

v97.0.3

Compare Source

v97.0.2

Compare Source

v97.0.1

Compare Source

v97.0.0

Compare Source

v96.0.0

Compare Source

v95.0.0

Compare Source

v94.0.0

Compare Source

v93.0.1

Compare Source

v93.0.0

Compare Source

v92.0.2

Compare Source

v92.0.1

Compare Source

v92.0.0

Compare Source

v91.0.1

Compare Source

v91.0.0

Compare Source

v90.0.1

Compare Source

v90.0.0

Compare Source

v89.0.0

Compare Source

v88.0.0

Compare Source

Configuration

📅 Schedule: Branch creation - "" in timezone America/Montreal, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 4 times, most recently from 3d7a4ff to 5a1e598 Compare August 12, 2024 19:03
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from 16b2bd2 to a691ea9 Compare August 22, 2024 20:06
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 7 times, most recently from b781dad to f9268cf Compare September 3, 2024 15:26
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from 6b6c93a to be82fc8 Compare September 10, 2024 18:32
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 8 times, most recently from 1400826 to cfc8982 Compare September 19, 2024 13:55
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 3 times, most recently from fa3b63b to 04e2262 Compare September 23, 2024 11:43
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 9 times, most recently from dff438b to 6915781 Compare November 27, 2024 15:04
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 9 times, most recently from d5d2cc4 to f193405 Compare December 6, 2024 14:18
@renovate renovate bot changed the title chore(deps): update dependency chromedriver to v119 [security] chore(deps): update dependency chromedriver to v119 [security] - autoclosed Dec 8, 2024
@renovate renovate bot closed this Dec 8, 2024
@renovate renovate bot deleted the renovate/npm-chromedriver-vulnerability branch December 8, 2024 18:52
@renovate renovate bot changed the title chore(deps): update dependency chromedriver to v119 [security] - autoclosed chore(deps): update dependency chromedriver to v119 [security] Dec 8, 2024
@renovate renovate bot reopened this Dec 8, 2024
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch 5 times, most recently from 2b9313c to 9134bc7 Compare December 13, 2024 18:21
@renovate renovate bot force-pushed the renovate/npm-chromedriver-vulnerability branch from 9134bc7 to 74a73b4 Compare December 18, 2024 18:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Dependencies Renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants