Skip to content

[Snyk] Upgrade markdownlint-cli from 0.33.0 to 0.45.0 #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Anurag-Sin wants to merge 1 commit into
base: 3.5.14-atlan
Choose a base branch
from
Open

[Snyk] Upgrade markdownlint-cli from 0.33.0 to 0.45.0 #44

Anurag-Sin wants to merge 1 commit into from

Conversation

@Anurag-Sin
Copy link

@Anurag-Sin Anurag-Sin commented Jun 28, 2025

snyk-top-banner

Snyk has created this PR to upgrade markdownlint-cli from 0.33.0 to 0.45.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 12 versions ahead of your current version.

  • The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908		 159 Proof of Concept
high severity Infinite loop
SNYK-JS-MARKDOWNIT-6483324		 159 Proof of Concept
Release notes
Package name: markdownlint-cli
  • 0.45.0 - 2025-05-18
    • Update markdownlint dependency to 0.38.0
      • Add MD059/descriptive-link-text
      • Improve MD025/MD027/MD036/MD038/MD041/MD043/MD045/MD051/MD052
      • Remove support for end-of-life Node version 18
    • Update all dependencies via Dependabot
  • 0.44.0 - 2025-01-25
    • Update markdownlint dependency to 0.37.4
      • Convert module to ECMAScript (breaking change)
      • Stop using require, convert to import
      • Improve MD032
    • Update all dependencies via Dependabot
  • 0.43.0 - 2024-11-23
    • Update markdownlint dependency to 0.36.1
      • Improve MD051
      • Make micromark parser available to custom rules
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.42.0 - 2024-09-24
    • Update markdownlint dependency to 0.35.0
      • Add MD058/blanks-around-tables
      • Use micromark in MD001/MD003/MD009/MD010/MD013/MD014/MD019/MD021/MD023/MD024/MD025/MD039/MD042/MD043
      • Improve MD018/MD020/MD031/MD034/MD044
      • markdown-it parser no longer invoked by default
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.41.0 - 2024-05-26
    • Change TOML parser to smol-toml which supports v1.0.0 of the specification
    • Update all dependencies via Dependabot
  • 0.40.0 - 2024-04-30
    • Update markdownlint dependency to 0.34.0
      • Use micromark in MD027/MD028/MD036/MD040/MD041/MD046/MD048
      • Improve MD013/MD034/MD049/MD050/MD051
    • Add support for TOML configuration files via --config
    • Add --configPointer argument for nested configuration
    • Update --ignore for directories to ignore all files within
    • Update all dependencies via Dependabot
  • 0.39.0 - 2024-01-28
    • Update markdownlint dependency to 0.33.0
      • Add MD055/table-pipe-style, MD056/table-column-count
      • Improve MD005/MD007/MD024/MD026/MD038
      • Incorporate micromark-extension-directive
      • Improve JSON schema, document validation
    • Handle trailing commas in JSONC configuration
    • Update all dependencies via Dependabot
  • 0.38.0 - 2023-12-09
    • Update markdownlint dependency to 0.32.1
      • Remove deprecated MD002/MD006
      • Remove rule aliases for "header"
      • Add MD054/link-image-style
      • Use micromark in MD005/MD007/MD030
      • Improve MD022/MD026/MD034/MD037/MD038/MD045/MD051
    • Remove support for end-of-life Node version 16
    • Update all dependencies via Dependabot
  • 0.37.0 - 2023-09-22
    • Update markdownlint dependency to 0.31.1
      • Improve MD032/MD034/MD037/MD043/MD044/MD051/MD052
      • Improve performance
    • Update all dependencies via Dependabot
  • 0.36.0 - 2023-09-03
    • Update markdownlint dependency to 0.30.0
      • Use micromark in MD022/MD026/MD032/MD037/MD045/MD051
      • Incorporate micromark-extension-math for math syntax
      • Allow custom rules to override information URL
    • Update all dependencies via Dependabot
  • 0.35.0 - 2023-06-17
  • 0.34.0 - 2023-04-30
  • 0.33.0 - 2023-01-07
from markdownlint-cli GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade markdownlint-cli from 0.33.0 to 0.45.0
a94f80f 
Snyk has created this PR to upgrade markdownlint-cli from 0.33.0 to 0.45.0.

See this package in npm:
markdownlint-cli

See this project in Snyk:
https://app.us.snyk.io/org/bu-apps/project/00b69e62-0374-402a-b109-adffe1ed130a?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Anurag-Sin @snyk-bot