[Snyk] Upgrade hexo-cli from 4.3.0 to 4.3.1

[snyk-bot]

Snyk has created this PR to upgrade hexo-cli from 4.3.0 to 4.3.1.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

✨ Snyk has automatically assigned this pull request, set who gets assigned.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.
• The recommended version was released 21 days ago, on 2023-05-12.

Release notes

Package name: hexo-cli

• 4.3.1 - 2023-05-12
  Read more
• 4.3.0 - 2021-06-18
  

  Feature

  • feat(version): show distro version @ curbengh (#239)

  Refactor

  • refactor & style: let command default to be 'help' @ cokemine (#277)

  CI/CD

  • Update actions/setup-node action to v2 @ stevenjoezhang (#274)

  Misc

  • Publish assets @ stevenjoezhang (#266)

  Dependencies

  • chore: bump eslint from 7.7.0 to 7.28.0 @ dependabot (#243, #237, #275, #296, #310)
  • chore(deps): bump hexo-util from 2.2.0 to 2.5.0 @ dependabot-preview (#234, #238, #299)
  • chore(deps): [security] bump highlight.js from 10.1.1 to 10.5.0 @ dependabot-preview (#262, #268)
  • chore(deps-dev): bump mocha from 8.1.1 to 8.2.0 @ dependabot-preview (#258, #288, #253)
  • chore: bump glob-parent from 5.1.1 to 5.1.2 @ dependabot (#312)
  • chore: bump sinon from 9.0.2 to 11.1.1 @ dependabot (#235, #251, #257, #272, #293, #306)
  • Upgrade to GitHub-native Dependabot @ dependabot-preview (#297)
  • chore(deps): bump chalk from 4.1.0 to 4.1.1 @ dependabot-preview (#295)
  • chore(deps-dev): bump chai from 4.2.0 to 4.3.4 @ dependabot-preview (#276, #289)
  • chore(deps): bump resolve from 1.17.0 to 1.20.0 @ dependabot-preview (#279)
  • chore(deps): [security] bump y18n from 4.0.0 to 4.0.1 @ dependabot-preview (#292)
  • chore(deps): [security] bump prismjs from 1.20.0 to 1.23.0 @ dependabot-preview (#232, #283)
  • chore(deps-dev): bump hexo-renderer-marked from 3.3.0 to 4.0.0 @ dependabot-preview (#247, #278)

from hexo-cli GitHub release notes

Commit messages

Package name: hexo-cli

• bdd3987 release: v4.3.1 (#429)
• f169eae chore: ignroe `dependabot` for `npm` (#481)
• ee1535a fix TS2322 and update @ typescript-eslint/* (#479)
• 40cdf2a chore: bump @ typescript-eslint/parser from 5.41.0 to 5.59.2 (#478)
• ccbdf4b chore: bump @ typescript-eslint/eslint-plugin from 5.41.0 to 5.56.0 (#476)
• 685871c chore: bump sinon from 14.0.0 to 15.0.1 (#440)
• 8b85496 chore: bump minimist from 1.2.6 to 1.2.7 (#413)
• ded831e fix: path and slug should be string (#432)
• 5c5fc8f update main in package.json (#427)
• 12166d7 chore: bump hexo-log from 3.2.0 to 4.0.1 (#423)
• 8c5d506 refactor: migrate typescript (#418)
• 6d722a2 chore: bump hexo-fs from 4.0.0 to 4.1.0 (#421)
• a14ac8a chore: bump abbrev from 1.1.1 to 2.0.0 (#419)
• 5a1f98b chore: bump hexo-renderer-marked from 5.0.0 to 6.0.0 (#410)
• f5c1d00 chore: bump assets from `f194702` to `04d6eb7` (#416)
• 41b3911 chore: bump assets from `50f99d6` to `f194702` (#412)
• b222ae2 chore: bump hexo-fs from 3.1.0 to 4.0.0 (#408)
• bdc71bc chore: bump chai from 4.3.4 to 4.3.6 (#378)
• 83731cd chore: require node14+ (#404)
• ea4f312 test: delete unnecessary `chai-as-promised` (#406)
• 354772c chore: bump assets from `764892a` to `50f99d6` (#403)
• 921f176 chore: bump hexo-log from 3.1.0 to 3.2.0 (#400)
• 00fffbb chore: bump resolve from 1.22.0 to 1.22.1 (#396)
• 31de443 chore: bump hexo-log from 3.0.0 to 3.1.0 (#395)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs