Bumps js-yaml from 3.12.1 to 3.13.1.
Sourced from js-yaml's changelog.
3.13.1 / 2019-04-05
Fix possible code execution in (already unsafe) .load(), #480.
3.13.0 / 2019-03-20
Security fix: safeLoad() can hang when arrays with nested refs
used as key. Now throws exception for nested arrays. #475.
3.12.2 / 2019-02-26
Fix noArrayIndent option for root level, #468.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
You can trigger Dependabot actions by commenting on this PR:
@dependabot squash and merge
@dependabot cancel merge
@dependabot ignore this [patch|minor|major] version
@dependabot ignore this dependency
@dependabot use these labels
@dependabot use these reviewers
@dependabot use these assignees
@dependabot use this milestone
You can disable automated security fix PRs for this repo from the Security Alerts page.
No due date set.
This pull request currently doesn't have any dependencies.
Deleting a branch is permanent. It CANNOT be undone. Continue?