node-json5 (0.5.1-3ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Prototype pollution in object returned by JSON5.parse
    - debian/patches/cve-2022-46175.diff: use Object.defineProperty instead of
      direct property assignment to stop __proto__ from being treated specially
      in lib/json5.js; unit test in test/testproto.js.
    - CVE-2022-46175

 -- Luci Stanescu <luci.stanescu@canonical.com>  Thu, 25 Apr 2024 18:19:31 +0300

node-json5 (0.5.1-3) unstable; urgency=medium

  * Team upload
  * Improve test
  * Add fix for mocha ≥ 6 (fixes debci)

 -- Xavier Guimard <yadd@debian.org>  Mon, 03 Feb 2020 14:00:56 +0100

node-json5 (0.5.1-2) unstable; urgency=medium

  * Team upload
  * Bump debhelper compatibility level to 12
  * Declare compliance with policy 4.5.0
  * Add "Rules-Requires-Root: no"
  * Add debian/gbp.conf
  * Add upstream/metadata
  * Use pkg-js-tools auto test & install
  * Add patch description
  * Update VCS fields to salsa
  * Disable one error test that fails with Node.js ≥ 12
  * Update homepage

 -- Xavier Guimard <yadd@debian.org>  Wed, 22 Jan 2020 22:30:20 +0100

node-json5 (0.5.1-1) unstable; urgency=medium

  * Team upload
  * New upstream release
  * Modernize packaging (change section, bump standards, bump compat)
  * Enable tests (disable failing tests)

 -- Pirate Praveen <praveen@debian.org>  Fri, 09 Feb 2018 19:51:52 +0530

node-json5 (0.5.0-1) unstable; urgency=medium

  * Initial release

 -- Thorsten Alteholz <debian@alteholz.de>  Sat, 12 Nov 2016 15:05:31 +0100
