packages/nodejs-minimatch
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

!6 [sync] PR-2: Fix CVE-2022-3517

Browse Source 
From: @openeuler-sync-bot 
Reviewed-by: @gitee-cmd 
Signed-off-by: @gitee-cmd
This commit is contained in:
openeuler-ci-bot 2022-10-26 01:38:53 +00:00 committed by Gitee
commit 9acc422e58
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
2 changed files with 8551 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8544
CVE-2022-3517.patch Normal file
View File

File diff suppressed because it is too large Load Diff

9
nodejs-minimatch.spec
View File

@ -2,11 +2,13 @@
%global enable_tests 0
Name: nodejs-minimatch
Version: 3.0.4
Release: 1
Release: 2
Summary: JavaScript glob matcher
License: MIT
URL: https://github.com/isaacs/minimatch
Source0: https://github.com/isaacs/minimatch/archive/v%{version}/%{name}-%{version}.tar.gz
Patch1: CVE-2022-3517.patch
BuildArch: noarch
ExclusiveArch: %{nodejs_arches} noarch
BuildRequires: nodejs-packaging
@ -15,7 +17,7 @@ BuildRequires: npm(tap) npm(brace-expansion)
Converts glob expressions to JavaScript "RegExp" objects.
%prep
%autosetup -n minimatch-%{version}
%autosetup -n minimatch-%{version} -p1
%build
@ -40,5 +42,8 @@ cp -p package.json minimatch.js %{buildroot}%{nodejs_sitelib}/minimatch
%{nodejs_sitelib}/minimatch
%changelog
* Tue Oct 25 2022 jiangpeng <jiangpeng01@ncti-gba.cn> - 3.0.4-2
- Fix CVE-2022-3517
* Mon Aug 17 2020 wutao <wutao61@huawei.com> - 3.0.4-1
- Package init