[Snyk] Upgrade debug from 2.2.0 to 2.6.9

[snyk-bot]

Snyk has created this PR to upgrade debug from 2.2.0 to 2.6.9.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 23 versions ahead of your current version.
• The recommended version was released 4 years ago, on 2017-09-22.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	399/1000 Why? Has a fix available, CVSS 3.7	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: debug

• 2.6.9 - 2017-09-22
• 2.6.8 - 2017-05-18
• 2.6.7 - 2017-05-17
• 2.6.6 - 2017-04-27
• 2.6.5 - 2017-04-27
• 2.6.4 - 2017-04-20
• 2.6.3 - 2017-03-14
• 2.6.2 - 2017-03-10
• 2.6.1 - 2017-02-10
• 2.6.0 - 2016-12-29
• 2.5.2 - 2016-12-26
• 2.5.1 - 2016-12-21
• 2.5.0 - 2016-12-21
• 2.4.5 - 2016-12-18
• 2.4.4 - 2016-12-15
• 2.4.3 - 2016-12-14
• 2.4.2 - 2016-12-14
• 2.4.1 - 2016-12-14
• 2.4.0 - 2016-12-14
• 2.3.3 - 2016-11-19
• 2.3.2 - 2016-11-10
• 2.3.1 - 2016-11-10
• 2.3.0 - 2016-11-07
• 2.2.0 - 2015-05-10

from debug GitHub release notes

Commit messages

Package name: debug

• 13abeae Release 2.6.9
• f53962e remove ReDoS regexp in %o formatter (#504)
• 52e1f21 Release 2.6.8
• 2482e08 Check for undefined on browser globals (feat: add git metadata to monitor payload #462)
• 6bb07f7 release 2.6.7
• 15850cb Fix Regular Expression Denial of Service (ReDoS)
• 4a6c85c update "debug" to v1.0.0 (feat: upgrade go-plugin with more logs and error handling #454)
• b68dbf8 Fix typo (#455)
• 1351d2f Inline extend function in node implementation (fix: do not fail if csproj not found #452)
• c211947 update version for component
• 14df14c release 2.6.5
• cae07b7 cleanup browser tests and fix null reference check on window.documentElement.style.WebkitAppearance (#447)
• f311b10 release 2.6.4
• 1f01b70 Fix bug that would occure if process.env.DEBUG is a non-string value. (Feat/show available gradle subprojects #444)
• 2f3ebf4 Update CHANGELOG.md
• f5ae332 Update CHANGELOG.md
• 9742c5f chore(): ignore bower.json in npm installations. (feat: pass dockerfileLayers in metadata #437)
• 27d93a3 update "debug" to v0.7.3
• 9dc30f8 release 2.6.3
• 0fb8ea4 LocalStorage returns undefined for any key not present (test: move to windows testing on travis #431)
• ce4d93e changelog fix
• 017a9d6 release 2.6.2
• 23bc780 fix DEBUG_MAX_ARRAY_LENGTH
• 065cbfb Add backers and sponsors from Open Collective (Test/windows on travis #422)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs