Update dependency karma to v6 [SECURITY] #115

renovate · 2022-03-07T10:25:15Z

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
karma (source)	`^3.0.0` → `^6.3.16`

GitHub Vulnerability Alerts

CVE-2022-0437

karma prior to version 6.3.14 contains a cross-site scripting vulnerability.

CVE-2021-23495

Karma before 6.3.16 is vulnerable to Open Redirect due to missing validation of the return_url query parameter.

Release Notes

karma-runner/karma (karma)

`v6.3.16`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.15`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.14`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.13`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.12`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.11`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

`v6.3.10`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) ([f4aeac3](https://github.com/karma-runner/karma/commit/f4aeac313ec07d6

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate bot changed the title ~~Pin dependency karma to v [SECURITY]~~ Pin dependency karma to v3.1.4 [SECURITY] Sep 25, 2022

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from 062555a to 9f3756f Compare November 20, 2022 10:19

renovate bot changed the title ~~Pin dependency karma to v3.1.4 [SECURITY]~~ Update dependency karma to v6 [SECURITY] Nov 20, 2022

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from 9f3756f to f20841a Compare March 24, 2023 01:43

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from f20841a to b6b295d Compare May 29, 2023 17:48

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 3 times, most recently from c8438c3 to 92705ff Compare June 16, 2023 02:59

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from fef5d7f to 109ddea Compare June 23, 2023 05:04

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 4 times, most recently from ce32fc6 to a26aa9e Compare June 30, 2023 08:54

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 4 times, most recently from 7cf32d5 to 294a630 Compare July 11, 2023 23:46

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 4 times, most recently from 1aea304 to 22dcff1 Compare July 20, 2023 02:57

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 4 times, most recently from 3d0e5f3 to 442c514 Compare August 3, 2023 02:30

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 086e50d to eff6c74 Compare August 12, 2023 05:24

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 5212ac5 to 3d275c9 Compare August 23, 2023 18:00

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from b3c14f6 to a1b1ba2 Compare June 14, 2025 15:54

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from a1b1ba2 to 7b741db Compare July 27, 2025 12:07

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from e750e25 to 6d94c32 Compare August 16, 2025 15:47

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from e8eff59 to 32487b9 Compare August 24, 2025 20:06

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 85e14b8 to 93b1bf3 Compare September 2, 2025 05:56

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 15c0dd2 to 5069c92 Compare September 10, 2025 08:06

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from a997656 to 76d0e93 Compare September 27, 2025 04:00

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 59d4a82 to 2b5f7ab Compare October 11, 2025 07:26

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 811edc7 to 9611090 Compare October 26, 2025 20:05

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 4 times, most recently from c8896d7 to baab0a1 Compare November 20, 2025 12:07

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from c2bffdd to 0abe205 Compare December 5, 2025 07:44

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from 1a89a72 to 1059aca Compare December 19, 2025 00:03

renovate bot force-pushed the renovate/npm-karma-vulnerability branch 2 times, most recently from d8a5411 to 2bb95e1 Compare January 2, 2026 07:11

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from 2bb95e1 to d649391 Compare January 9, 2026 11:34

Update dependency karma to v6 [SECURITY]

65a6835

renovate bot force-pushed the renovate/npm-karma-vulnerability branch from d649391 to 65a6835 Compare January 10, 2026 04:13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update dependency karma to v6 [SECURITY] #115

Update dependency karma to v6 [SECURITY] #115

renovate bot commented Mar 7, 2022 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Update dependency karma to v6 [SECURITY] #115

Are you sure you want to change the base?

Update dependency karma to v6 [SECURITY] #115

Conversation

renovate bot commented Mar 7, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

CVE-2022-0437

CVE-2021-23495

Release Notes

v6.3.16

Features

6.3.20 (2022-05-13)

Bug Fixes

6.3.19 (2022-04-19)

Bug Fixes

6.3.18 (2022-04-13)

Bug Fixes

6.3.17 (2022-02-28)

Bug Fixes

6.3.16 (2022-02-10)

Bug Fixes

6.3.15 (2022-02-05)

Bug Fixes

6.3.14 (2022-02-05)

Bug Fixes

6.3.13 (2022-01-31)

Bug Fixes

6.3.12 (2022-01-24)

Bug Fixes

6.3.11 (2022-01-13)

Bug Fixes

6.3.10 (2022-01-08)

Bug Fixes

6.3.9 (2021-11-16)

Bug Fixes

6.3.8 (2021-11-07)

Bug Fixes

6.3.7 (2021-11-01)

Bug Fixes

6.3.6 (2021-10-25)

Bug Fixes

6.3.5 (2021-10-20)

Bug Fixes

6.3.4 (2021-06-14)

Bug Fixes

6.3.3 (2021-06-01)

Bug Fixes

6.3.2 (2021-03-29)

Bug Fixes

6.3.1 (2021-03-24)

Bug Fixes

v6.3.15

Features

6.3.20 (2022-05-13)

Bug Fixes

6.3.19 (2022-04-19)

Bug Fixes

6.3.18 (2022-04-13)

Bug Fixes

6.3.17 (2022-02-28)

Bug Fixes

6.3.16 (2022-02-10)

Bug Fixes

6.3.15 (2022-02-05)

Bug Fixes

6.3.14 (2022-02-05)

Bug Fixes

6.3.13 (2022-01-31)

Bug Fixes

6.3.12 (2022-01-24)

Bug Fixes

6.3.11 (2022-01-13)

Bug Fixes

6.3.10 (2022-01-08)

Bug Fixes

6.3.9 (2021-11-16)

Bug Fixes

6.3.8 (2021-11-07)

Bug Fixes

renovate bot commented Mar 7, 2022 •

edited

Loading

`v6.3.16`

`v6.3.15`

`v6.3.14`

`v6.3.13`