From c06f690dd6b419e450f208e00ad54728497fb3e3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 21 Jun 2023 14:09:56 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 --- package-lock.json | 46 +++++++++++++++++++++++++++++----------------- package.json | 2 +- 2 files changed, 30 insertions(+), 18 deletions(-) diff --git a/package-lock.json b/package-lock.json index f8b870f..941ddca 100644 --- a/package-lock.json +++ b/package-lock.json @@ -841,7 +841,7 @@ "generaterr": { "version": "1.5.0", "resolved": "https://registry.npmjs.org/generaterr/-/generaterr-1.5.0.tgz", - "integrity": "sha1-sM62zFFk3yoGEzjMNAqGFTlcUvw=" + "integrity": "sha512-JgcGRv2yUKeboLvvNrq9Bm90P4iJBu7/vd5wSLYqMG5GJ6SxZT46LAAkMfNhQ+EK3jzC+cRBm7P8aUWYyphgcQ==" }, "get-stdin": { "version": "6.0.0", @@ -1065,6 +1065,14 @@ "resolved": "https://registry.npmjs.org/lodash.get/-/lodash.get-4.4.2.tgz", "integrity": "sha1-LRd/ZS+jHpObRDjVNBSZ36OCXpk=" }, + "lru-cache": { + "version": "6.0.0", + "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-6.0.0.tgz", + "integrity": "sha512-Jo6dJ04CmSjuznwJSS3pUeWmd/H0ffTlkXXgwZi+eq1UCmqQwCh+eLsYOYCwY991i2Fah4h1BEMCx4qThGbsiA==", + "requires": { + "yallist": "^4.0.0" + } + }, "media-typer": { "version": "0.3.0", "resolved": "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz", @@ -1326,23 +1334,22 @@ } }, "passport-local-mongoose": { - "version": "5.0.1", - "resolved": "https://registry.npmjs.org/passport-local-mongoose/-/passport-local-mongoose-5.0.1.tgz", - "integrity": "sha512-VUY5DgBdpjt1tjunJJ1EXV5b2nhMDkXJuhTjyiK660IgIp7kONMyWEe9tGHf8I9tZudXuTF+47JNQLIzU+Hjbw==", + "version": "6.0.0", + "resolved": "https://registry.npmjs.org/passport-local-mongoose/-/passport-local-mongoose-6.0.0.tgz", + "integrity": "sha512-sD/SBBKdDcbKp3+yG0mmj8YOlYbMXKBx5QLJGitmuLZGL23i1S3gS3hxXkTdpYXBcJy7ZuMDc/lY9TW7umkfZA==", "requires": { - "debug": "3.1.0", - "generaterr": "1.5.0", - "passport-local": "1.0.0", - "scmp": "2.0.0", - "semver": "5.5.0" + "generaterr": "^1.5.0", + "passport-local": "^1.0.0", + "scmp": "^2.1.0", + "semver": "^7.1.1" }, "dependencies": { - "debug": { - "version": "3.1.0", - "resolved": "https://registry.npmjs.org/debug/-/debug-3.1.0.tgz", - "integrity": "sha512-OX8XqP7/1a9cqkxYw2yXss15f26NKWBpDXQd0/uK/KPqdQhxbPa994hnzjcE2VqQpDslf55723cKPUOGSmMY3g==", + "semver": { + "version": "7.5.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.2.tgz", + "integrity": "sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==", "requires": { - "ms": "2.0.0" + "lru-cache": "^6.0.0" } } } @@ -1575,9 +1582,9 @@ } }, "scmp": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/scmp/-/scmp-2.0.0.tgz", - "integrity": "sha1-JHEQ7yLM+JexOj8KvdtSeCOTzWo=" + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/scmp/-/scmp-2.1.0.tgz", + "integrity": "sha512-o/mRQGk9Rcer/jEEw/yw4mwo3EU/NvYvp577/Btqrym9Qy5/MdWGBqipbALgd2lrdWTJ5/gqDusxfnQBxOxT2Q==" }, "semver": { "version": "5.5.0", @@ -1839,6 +1846,11 @@ "requires": { "mkdirp": "0.5.1" } + }, + "yallist": { + "version": "4.0.0", + "resolved": "https://registry.npmjs.org/yallist/-/yallist-4.0.0.tgz", + "integrity": "sha512-3wdGidZyq5PB084XLES5TpOSRA3wjXAlIWMhum2kRcv/41Sn2emQ0dycQW4uZXLejwKvg6EsvbdlVL+FYEct7A==" } } } diff --git a/package.json b/package.json index 0816eba..43584b5 100644 --- a/package.json +++ b/package.json @@ -17,7 +17,7 @@ "nodemailer": "^4.1.1", "passport": "^0.4.0", "passport-local": "^1.0.0", - "passport-local-mongoose": "^5.0.1" + "passport-local-mongoose": "^6.0.0" }, "devDependencies": { "eslint": "^5.7.0",