From 09e537ccde16e345746eb7429504a7d925dfea5a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 24 Feb 2022 11:10:17 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2330875 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2331908 --- package-lock.json | 31 +++++++++++++++++++++++-------- package.json | 2 +- 2 files changed, 24 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index d6df1443..3831b394 100644 --- a/package-lock.json +++ b/package-lock.json @@ -29,7 +29,7 @@ "jquery": "3.6.0", "ngx-infinite-scroll": "^10.0.1", "ngx-toastr": "14.1.4", - "node-forge": "^0.10.0", + "node-forge": "^1.0.0", "popper.js": "1.16.1", "qrious": "4.0.2", "rxjs": "^7.4.0", @@ -133,6 +133,14 @@ "typescript": "4.3.5" } }, + "jslib/common/node_modules/node-forge": { + "version": "0.10.0", + "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz", + "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==", + "engines": { + "node": ">= 6.0.0" + } + }, "node_modules/@ampproject/remapping": { "version": "2.1.2", "resolved": "https://registry.npmjs.org/@ampproject/remapping/-/remapping-2.1.2.tgz", @@ -5987,11 +5995,11 @@ } }, "node_modules/node-forge": { - "version": "0.10.0", - "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz", - "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==", + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.0.0.tgz", + "integrity": "sha512-ShkiiAlzSsgH1IwGlA0jybk9vQTIOLyJ9nBd0JTuP+nzADJFLY0NoDijM2zvD/JaezooGu3G2p2FNxOAK6459g==", "engines": { - "node": ">= 6.0.0" + "node": ">= 6.13.0" } }, "node_modules/node-releases": { @@ -9237,6 +9245,13 @@ "tldjs": "^2.3.1", "typescript": "4.3.5", "zxcvbn": "^4.4.2" + }, + "dependencies": { + "node-forge": { + "version": "0.10.0", + "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz", + "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==" + } } }, "@braintree/asset-loader": { @@ -13301,9 +13316,9 @@ } }, "node-forge": { - "version": "0.10.0", - "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz", - "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==" + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.0.0.tgz", + "integrity": "sha512-ShkiiAlzSsgH1IwGlA0jybk9vQTIOLyJ9nBd0JTuP+nzADJFLY0NoDijM2zvD/JaezooGu3G2p2FNxOAK6459g==" }, "node-releases": { "version": "2.0.2", diff --git a/package.json b/package.json index 3379b507..8f48abb4 100644 --- a/package.json +++ b/package.json @@ -93,7 +93,7 @@ "jquery": "3.6.0", "ngx-infinite-scroll": "^10.0.1", "ngx-toastr": "14.1.4", - "node-forge": "^0.10.0", + "node-forge": "^1.0.0", "popper.js": "1.16.1", "qrious": "4.0.2", "rxjs": "^7.4.0",