@@ -20,6 +20,71 @@ updates:
2020 - dependency-name : " react-dom"
2121 update-types :
2222 - " version-update:semver-major"
23+ # Compromised versions from https://www.stepsecurity.io/blog/multiple-redhat-cloud-services-npm-packages-compromised
24+ - dependency-name : " @redhat-cloud-services/types"
25+ versions : ["3.6.1", "3.6.2", "3.6.4"]
26+ - dependency-name : " @redhat-cloud-services/frontend-components-utilities"
27+ versions : ["7.4.1", "7.4.2", "7.4.4"]
28+ - dependency-name : " @redhat-cloud-services/frontend-components"
29+ versions : ["7.7.2", "7.7.3", "7.7.5"]
30+ - dependency-name : " @redhat-cloud-services/rbac-client"
31+ versions : ["9.0.3", "9.0.4", "9.0.6"]
32+ - dependency-name : " @redhat-cloud-services/javascript-clients-shared"
33+ versions : ["2.0.8", "2.0.9", "2.0.11"]
34+ - dependency-name : " @redhat-cloud-services/frontend-components-config-utilities"
35+ versions : ["4.11.2", "4.11.3", "4.11.5"]
36+ - dependency-name : " @redhat-cloud-services/frontend-components-notifications"
37+ versions : ["6.9.2", "6.9.3", "6.9.5"]
38+ - dependency-name : " @redhat-cloud-services/tsc-transform-imports"
39+ versions : ["1.2.2", "1.2.4", "1.2.6"]
40+ - dependency-name : " @redhat-cloud-services/frontend-components-config"
41+ versions : ["6.11.3", "6.11.4", "6.11.6"]
42+ - dependency-name : " @redhat-cloud-services/eslint-config-redhat-cloud-services"
43+ versions : ["3.2.1", "3.2.2", "3.2.4"]
44+ - dependency-name : " @redhat-cloud-services/host-inventory-client"
45+ versions : ["5.0.3", "5.0.4", "5.0.6"]
46+ - dependency-name : " @redhat-cloud-services/rule-components"
47+ versions : ["4.7.2", "4.7.3", "4.7.5"]
48+ - dependency-name : " @redhat-cloud-services/frontend-components-remediations"
49+ versions : ["4.9.2", "4.9.3", "4.9.5"]
50+ - dependency-name : " @redhat-cloud-services/frontend-components-translations"
51+ versions : ["4.4.1", "4.4.2", "4.4.4"]
52+ - dependency-name : " @redhat-cloud-services/vulnerabilities-client"
53+ versions : ["2.1.9", "2.1.11"]
54+ - dependency-name : " @redhat-cloud-services/frontend-components-advisor-components"
55+ versions : ["3.8.2", "3.8.4", "3.8.6"]
56+ - dependency-name : " @redhat-cloud-services/entitlements-client"
57+ versions : ["4.0.11", "4.0.12", "4.0.14"]
58+ - dependency-name : " @redhat-cloud-services/chrome"
59+ versions : ["2.3.1", "2.3.2", "2.3.4"]
60+ - dependency-name : " @redhat-cloud-services/notifications-client"
61+ versions : ["6.1.4", "6.1.5", "6.1.7"]
62+ - dependency-name : " @redhat-cloud-services/compliance-client"
63+ versions : ["4.0.3", "4.0.4", "4.0.6"]
64+ - dependency-name : " @redhat-cloud-services/sources-client"
65+ versions : ["3.0.10", "3.0.11", "3.0.13"]
66+ - dependency-name : " @redhat-cloud-services/integrations-client"
67+ versions : ["6.0.4", "6.0.5", "6.0.7"]
68+ - dependency-name : " @redhat-cloud-services/frontend-components-testing"
69+ versions : ["1.2.1", "1.2.2", "1.2.4"]
70+ - dependency-name : " @redhat-cloud-services/remediations-client"
71+ versions : ["4.0.4", "4.0.5", "4.0.7"]
72+ - dependency-name : " @redhat-cloud-services/insights-client"
73+ versions : ["4.0.4", "4.0.5", "4.0.7"]
74+ - dependency-name : " @redhat-cloud-services/topological-inventory-client"
75+ versions : ["3.0.10", "3.0.11", "3.0.13"]
76+ - dependency-name : " @redhat-cloud-services/config-manager-client"
77+ versions : ["5.0.4", "5.0.5", "5.0.7"]
78+ - dependency-name : " @redhat-cloud-services/hcc-pf-mcp"
79+ versions : ["0.6.1", "0.6.2", "0.6.4"]
80+ - dependency-name : " @redhat-cloud-services/quickstarts-client"
81+ versions : ["4.0.11", "4.0.12", "4.0.14"]
82+ - dependency-name : " @redhat-cloud-services/patch-client"
83+ versions : ["4.0.4", "4.0.5", "4.0.7"]
84+ - dependency-name : " @redhat-cloud-services/hcc-feo-mcp"
85+ versions : ["0.3.1", "0.3.2", "0.3.4"]
86+ - dependency-name : " @redhat-cloud-services/hcc-kessel-mcp"
87+ versions : ["0.3.1", "0.3.2", "0.3.4"]
2388 groups :
2489 minor-and-patch :
2590 patterns :
0 commit comments