Rebase to 2.0.19

Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469
2022-08-31 16:08:42 +02:00 · 2022-08-31 16:08:42 +02:00 · 12085b9cf0
commit 12085b9cf0
parent 73cba02c46
3 changed files with 15 additions and 10 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1 +1,2 @@
 /nodemon-v2.0.3-bundled.tar.gz
+/nodemon-v2.0.19-bundled.tar.gz
--- a/nodejs-nodemon.spec
+++ b/nodejs-nodemon.spec
@ -5,8 +5,8 @@
 %global enable_tests 0

 Name:          nodejs-%{npm_name}
-Version:       2.0.3
-Release:       6%{?dist}
+Version:       2.0.19
+Release:       1%{?dist}
 Summary:       Simple monitor script for use during development of a node.js app
 License:       MIT
 URL:           https://github.com/remy/nodemon
@ -35,7 +35,7 @@ replacement wrapper for node, think of it as replacing the word "node"
 on the command line when you run your script.

 %prep
-%setup -q -n %{npm_name}-%{version}
+%autosetup -n %{npm_name}-%{version}

 %build

@ -64,6 +64,10 @@ npm run test
 %{_bindir}/nodemon

 %changelog
+* Wed Aug 31 2022 Jan Staněk <jstanek@redhat.com> - 2.0.3-6
+- Rebase to 2.0.19
+  Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469
+
 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.0.3-6
 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
  Related: rhbz#1991688
--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (nodemon-v2.0.3-bundled.tar.gz) = 2314e795ddea7eeda858a6179943f4b500791bb9ef2954de1a81056bf0fca416243af08c84058ffb0748237259c3e47cc785898adffa653393aacf7a5156739e
+SHA512 (nodemon-v2.0.19-bundled.tar.gz) = 0563a927bf29b7f20dcb741fb1aa4b62bccb498b1908d9ab66d9747eb56e608346a12dd674782798d491fb1b1e90581ee3290f932c352664cc223788de62f6b0