Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: karma-runner/karma
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v6.3.11
Choose a base ref
...
head repository: karma-runner/karma
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v6.3.14
Choose a head ref
  • 9 commits
  • 8 files changed
  • 5 contributors

Commits on Jan 19, 2022

  1. docs: create security.md 

    Add security.md file.
    @katrina95 @mtrea
    katrina95 authored and mtrea committed Jan 19, 2022
    Configuration menu
    Copy the full SHA
    c985155 View commit details
    Browse the repository at this point in the history

Commits on Jan 24, 2022

  1. fix: remove depreciation warning from log4js

    @maxs-rose
    maxs-rose authored and Jonathan Ginsburg committed Jan 24, 2022
    Configuration menu
    Copy the full SHA
    41bed33 View commit details
    Browse the repository at this point in the history

  2. chore(release): 6.3.12 [skip ci] 

    ## [6.3.12](v6.3.11...v6.3.12) (2022-01-24)

### Bug Fixes

* remove depreciation warning from log4js ([41bed33](41bed33))
    @semantic-release-bot
    semantic-release-bot committed Jan 24, 2022
    Configuration menu
    Copy the full SHA
    36ad678 View commit details
    Browse the repository at this point in the history

Commits on Jan 31, 2022

  1. fix(deps): bump log4js to resolve security issue 

    Fixes #3751
    @devoto13
    devoto13 authored and Jonathan Ginsburg committed Jan 31, 2022
    Configuration menu
    Copy the full SHA
    5bf2df3 View commit details
    Browse the repository at this point in the history

  2. chore(release): 6.3.13 [skip ci] 

    ## [6.3.13](v6.3.12...v6.3.13) (2022-01-31)

### Bug Fixes

* **deps:** bump log4js to resolve security issue ([5bf2df3](5bf2df3)), closes [#3751](#3751)
    @semantic-release-bot
    semantic-release-bot committed Jan 31, 2022
    Configuration menu
    Copy the full SHA
    db53785 View commit details
    Browse the repository at this point in the history

Commits on Feb 1, 2022

  1. fix(security): remove XSS vulnerability in returnUrl query param 

    The `returnUrl` query parameter can be used to execute malicious code. For
example, visiting
`http://localhost:9876/?return_url=javascript:alert(document.domain)` will
display an alert.
    Jonathan Ginsburg committed Feb 1, 2022
    Configuration menu
    Copy the full SHA
    839578c View commit details
    Browse the repository at this point in the history

Commits on Feb 3, 2022

  1. fix: warn when singleRun and autoWatch are false 

    Setting `singleRun` and `autoWatch` to `false` will not immediately run
anything. Warn the user about this.
    Jonathan Ginsburg committed Feb 3, 2022
    Configuration menu
    Copy the full SHA
    69cfc76 View commit details
    Browse the repository at this point in the history

Commits on Feb 5, 2022

  1. fix: remove string template from client code 

    It is incompatible with IE.
    Jonathan Ginsburg committed Feb 5, 2022
    Configuration menu
    Copy the full SHA
    91d5acd View commit details
    Browse the repository at this point in the history

  2. chore(release): 6.3.14 [skip ci] 

    ## [6.3.14](v6.3.13...v6.3.14) (2022-02-05)

### Bug Fixes

* remove string template from client code ([91d5acd](91d5acd))
* warn when `singleRun` and `autoWatch` are `false` ([69cfc76](69cfc76))
* **security:** remove XSS vulnerability in `returnUrl` query param ([839578c](839578c))
    @semantic-release-bot
    semantic-release-bot committed Feb 5, 2022
    Configuration menu
    Copy the full SHA
    c97e562 View commit details
    Browse the repository at this point in the history
Loading