Nx
Enterprise
Nx
Overview
Sign in / Sign up
Open main menu
Nx
GitHub
Select a tab
Overview
Runs
Analytics
Nx
GitHub
Overview
Runs
Analytics
Loading workspace stats
Loading workspace insights...
Statistics interval
7 days
30 days
Latest CI Pipeline Executions
Filter range
Sort by
Sort by
Start time
Sort ascending
Sort descending
Filter
Filter exact branch match
Exact
Select status
Succeeded
master
83d2d3b9 feat(module-federation): bump @module-federation/node & @module-federation/enhanced to fix esbuild vulnerability (#31924) <!-- Please make sure you have read the submission guidelines before posting an PR --> <!-- https://github.com/nrwl/nx/blob/master/CONTRIBUTING.md#-submitting-a-pr --> <!-- Please make sure that your commit message follows our format --> <!-- Example: `fix(nx): must begin with lowercase` --> <!-- If this is a particularly complex change or feature addition, you can request a dedicated Nx release for this pull request branch. Mention someone from the Nx team or the `@nrwl/nx-pipelines-reviewers` and they will confirm if the PR warrants its own release for testing purposes, and generate it for you if appropriate. --> ## Current Behavior NX has a dependency to a [vulnerable version of esbuild](https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99) ## Expected Behavior Updating several `@module-federation` dependencies to update esbuild to v0.25.5 and fix the vulnerability ## Related Issue(s) <!-- Please link the issue being fixed so it gets closed when this is merged. --> Fixes #31923
2 months ago
by Julien-Marcou
Succeeded
master
83d2d3b9 feat(module-federation): bump @module-federation/node & @module-federation/enhanced to fix esbuild vulnerability (#31924) <!-- Please make sure you have read the submission guidelines before posting an PR --> <!-- https://github.com/nrwl/nx/blob/master/CONTRIBUTING.md#-submitting-a-pr --> <!-- Please make sure that your commit message follows our format --> <!-- Example: `fix(nx): must begin with lowercase` --> <!-- If this is a particularly complex change or feature addition, you can request a dedicated Nx release for this pull request branch. Mention someone from the Nx team or the `@nrwl/nx-pipelines-reviewers` and they will confirm if the PR warrants its own release for testing purposes, and generate it for you if appropriate. --> ## Current Behavior NX has a dependency to a [vulnerable version of esbuild](https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99) ## Expected Behavior Updating several `@module-federation` dependencies to update esbuild to v0.25.5 and fix the vulnerability ## Related Issue(s) <!-- Please link the issue being fixed so it gets closed when this is merged. --> Fixes #31923
2 months ago
by Julien-Marcou
Failed
master
83d2d3b9 feat(module-federation): bump @module-federation/node & @module-federation/enhanced to fix esbuild vulnerability (#31924) <!-- Please make sure you have read the submission guidelines before posting an PR --> <!-- https://github.com/nrwl/nx/blob/master/CONTRIBUTING.md#-submitting-a-pr --> <!-- Please make sure that your commit message follows our format --> <!-- Example: `fix(nx): must begin with lowercase` --> <!-- If this is a particularly complex change or feature addition, you can request a dedicated Nx release for this pull request branch. Mention someone from the Nx team or the `@nrwl/nx-pipelines-reviewers` and they will confirm if the PR warrants its own release for testing purposes, and generate it for you if appropriate. --> ## Current Behavior NX has a dependency to a [vulnerable version of esbuild](https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99) ## Expected Behavior Updating several `@module-federation` dependencies to update esbuild to v0.25.5 and fix the vulnerability ## Related Issue(s) <!-- Please link the issue being fixed so it gets closed when this is merged. --> Fixes #31923
2 months ago
by Julien-Marcou
Succeeded
31924
7b7d5b0a feat(module-federation): bump @module-federation/node & @module-federation/enhanced to fix esbuild vulnerability closed #31923
2 months ago
by Julien-Marcou
Canceled
31924
c708b716 feat(module-federation): bump @module-federation/node & @module-federation/enhanced to fix esbuild vulnerability closed #31923
2 months ago
by Julien-Marcou
Failed
master
014d774b feat(module-federation): bump @module-federation/enhanced version to 0.15.0 to fix vulnerability (#30806) ## Current Behavior `@module-federation/enhanced` v0.9.0 has a dependency to `@module-federation/dts-plugin` v0.9.0, which has a dependency to `koa` v2.15.4, which has a [security vulnerability ](https://github.com/koajs/koa/security/advisories/GHSA-x2rg-q646-7m2v) And because `@module-federation/enhanced` is pinned with `^0.9.0` it won't automatically update it to a version greater than `0.9.x` ## Expected Behavior Until `@module-federation/enhanced` releases a v1, it needs to be manually updated when we want to benefit from a newer "minor" version. Pinning `@module-federation/enhanced` to `^0.15.0` allows to benefit from the latest release and security fix. ## Related Issue(s) Fixes #30502 Fixes #30748 --------- Co-authored-by: Colum Ferry <cferry09@gmail.com>
3 months ago
by Julien-Marcou
Failed
30806
35674a6d feat(module-federation): bump @module-federation/enhanced to 0.15.0 to fix koa vulnerability closed #30502, #30748
3 months ago
by Julien-Marcou
Failed
master
35674a6d feat(module-federation): bump @module-federation/enhanced to 0.15.0 to fix koa vulnerability closed #30502, #30748
3 months ago
by Julien-Marcou
Failed
30806
ec831c15 feat(module-federation): bump @module-federation/enhanced to 0.15.0 to fix koa vulnerability closed #30502, #30748
3 months ago
by Julien-Marcou
Failed
30806
ec831c15 feat(module-federation): bump @module-federation/enhanced to 0.15.0 to fix koa vulnerability closed #30502, #30748
3 months ago
by Julien-Marcou
Failed
master
ec831c15 feat(module-federation): bump @module-federation/enhanced to 0.15.0 to fix koa vulnerability closed #30502, #30748
3 months ago
by Julien-Marcou
Previous page
Previous
Next
Next page
