From 12085b9cf0b10295ec124ad14ba5ca9b94bab8e9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jan=20Stan=C4=9Bk?= Date: Wed, 31 Aug 2022 16:08:42 +0200 Subject: [PATCH] Rebase to 2.0.19 Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469 --- .gitignore | 1 + nodejs-nodemon.spec | 22 +++++++++++++--------- sources | 2 +- 3 files changed, 15 insertions(+), 10 deletions(-) diff --git a/.gitignore b/.gitignore index b960b92..650538a 100644 --- a/.gitignore +++ b/.gitignore @@ -1 +1,2 @@ /nodemon-v2.0.3-bundled.tar.gz +/nodemon-v2.0.19-bundled.tar.gz diff --git a/nodejs-nodemon.spec b/nodejs-nodemon.spec index 9505ce4..e0f24aa 100644 --- a/nodejs-nodemon.spec +++ b/nodejs-nodemon.spec @@ -5,8 +5,8 @@ %global enable_tests 0 Name: nodejs-%{npm_name} -Version: 2.0.3 -Release: 6%{?dist} +Version: 2.0.19 +Release: 1%{?dist} Summary: Simple monitor script for use during development of a node.js app License: MIT URL: https://github.com/remy/nodemon @@ -24,18 +24,18 @@ Simple monitor script for use during development of a node.js app. For use during development of a node.js based application. -nodemon will watch the files in the directory in which nodemon -was started, and if any files change, nodemon will automatically +nodemon will watch the files in the directory in which nodemon +was started, and if any files change, nodemon will automatically restart your node application. -nodemon does not require any changes to your code or method of -development. nodemon simply wraps your node application and keeps -an eye on any files that have changed. Remember that nodemon is a -replacement wrapper for node, think of it as replacing the word "node" +nodemon does not require any changes to your code or method of +development. nodemon simply wraps your node application and keeps +an eye on any files that have changed. Remember that nodemon is a +replacement wrapper for node, think of it as replacing the word "node" on the command line when you run your script. %prep -%setup -q -n %{npm_name}-%{version} +%autosetup -n %{npm_name}-%{version} %build @@ -64,6 +64,10 @@ npm run test %{_bindir}/nodemon %changelog +* Wed Aug 31 2022 Jan Staněk - 2.0.3-6 +- Rebase to 2.0.19 + Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469 + * Mon Aug 09 2021 Mohan Boddu - 2.0.3-6 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 diff --git a/sources b/sources index 6838f58..c62f5b9 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (nodemon-v2.0.3-bundled.tar.gz) = 2314e795ddea7eeda858a6179943f4b500791bb9ef2954de1a81056bf0fca416243af08c84058ffb0748237259c3e47cc785898adffa653393aacf7a5156739e +SHA512 (nodemon-v2.0.19-bundled.tar.gz) = 0563a927bf29b7f20dcb741fb1aa4b62bccb498b1908d9ab66d9747eb56e608346a12dd674782798d491fb1b1e90581ee3290f932c352664cc223788de62f6b0