robojerk/codeql-action

Fix dependabot vulnerabilities

Browse source 
This adds some forced resolutions to ensure that vulnerable versions
of packages are not installed.
This commit is contained in:
Andrew Eisenberg 2021-07-14 14:35:34 -07:00
parent 14deaf67e9
commit ae97d8f96d
81 changed files with 727 additions and 7406 deletions
Download patch file Download diff file Expand all files Collapse all files

2
node_modules/normalize-url/license generated vendored
View file

@ -1,6 +1,6 @@
MIT License
Copyright (c) Sindre Sorhus <sindresorhus@gmail.com> (sindresorhus.com)
Copyright (c) Sindre Sorhus <sindresorhus@gmail.com> (https://sindresorhus.com)
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: