import nodejs-nodemon-2.0.20-2.el9_1

2023-03-28 11:27:34 +00:00 · 2023-03-28 11:27:34 +00:00 · ad9dcb5875
parent c763298d42
commit ad9dcb5875
3 changed files with 24 additions and 11 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1 +1 @@
-SOURCES/nodemon-v2.0.3-bundled.tar.gz
+SOURCES/nodemon-v2.0.20-bundled.tar.gz
--- a/.nodejs-nodemon.metadata
+++ b/.nodejs-nodemon.metadata
@ -1 +1 @@
-0a3a06781d104ab1082519452e2e15572b669788 SOURCES/nodemon-v2.0.3-bundled.tar.gz
+c7b270296bf6f24f7611d0c41b3a3381f972abc8 SOURCES/nodemon-v2.0.20-bundled.tar.gz
--- a/SPECS/nodejs-nodemon.spec
+++ b/SPECS/nodejs-nodemon.spec
@ -5,8 +5,8 @@
 %global enable_tests 0

 Name:          nodejs-%{npm_name}
-Version:       2.0.3
-Release:       6%{?dist}
+Version:       2.0.20
+Release:       2%{?dist}
 Summary:       Simple monitor script for use during development of a node.js app
 License:       MIT
 URL:           https://github.com/remy/nodemon
@ -24,18 +24,18 @@ Simple monitor script for use during development of a node.js app.

 For use during development of a node.js based application.

-nodemon will watch the files in the directory in which nodemon 
-was started, and if any files change, nodemon will automatically 
+nodemon will watch the files in the directory in which nodemon
+was started, and if any files change, nodemon will automatically
 restart your node application.

-nodemon does not require any changes to your code or method of 
-development. nodemon simply wraps your node application and keeps 
-an eye on any files that have changed. Remember that nodemon is a 
-replacement wrapper for node, think of it as replacing the word "node" 
+nodemon does not require any changes to your code or method of
+development. nodemon simply wraps your node application and keeps
+an eye on any files that have changed. Remember that nodemon is a
+replacement wrapper for node, think of it as replacing the word "node"
 on the command line when you run your script.

 %prep
-%setup -q -n %{npm_name}-%{version}
+%autosetup -n %{npm_name}-%{version}

 %build

@ -64,6 +64,19 @@ npm run test
 %{_bindir}/nodemon

 %changelog
+* Thu Dec 08 2022 Zuzana Svetlikova <zsvetlik@redhat.com> - 2.0.20-2
+- Record CVE fixed in the current or previous upstream versions
+- Resolves: CVE-2021-44906
+
+* Fri Nov 18 2022 Jan Staněk <jstanek@redhat.com> - 2.0.20-1
+- Rebase to 2.0.20
+  Resolves: CVE-2022-3517
+
+* Wed Aug 31 2022 Jan Staněk <jstanek@redhat.com> - 2.0.19-1
+- Rebase to 2.0.19
+  Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469
+  Resolves: CVE-2020-7788
+
 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.0.3-6
 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
  Related: rhbz#1991688