Commit d68d7b87 authored 3 years ago by Alexander Vorwerk

Update some npm dependencies to secure versions

All these updates should be backwards-compatible.

* postcss: 7.0.35 -> 7.0.3
  * Fixing CVE-2021-23368 and CVE-2021-23382
* axios: 0.21.1 -> 0.21.4
  * Fixing CVE-2021-3749
* color-string: 1.5.4 -> 1.9.0
  * Fixing CVE-2021-29060
* dns-packet: 1.3.1 -> 1.3.4
  * Fixing CVE-2021-23386
* ansi-regex: 5.0.0 -> 5.0.1
  * Fixing CVE-2021-3807
* follow-redirects: 1.13.0 -> 1.14.9
  * Fixing CVE-2022-0155 and CVE-2022-0536
* json-schema: 0.2.3 -> 0.4.0
  * Fixing CVE-2021-3918
* jszip: 3.6.0 -> 3.7.1
  * Fixing CVE-2021-23413
* nanoid: 3.1.23 -> 3.3.1
  * Fixing CVE-2021-23566
* nth-check: 2.0.0 -> 2.0.1
  * Fixing CVE-2021-3803
* path-parse: 1.0.6 -> 1.0.7
  * Fixing CVE-2021-23343
* ssri: 8.0.0 -> 8.0.1
  * Fixing CVE-2021-27290
* tar: 6.0.5 -> 6.1.11
  * Fixing CVE-2021-32803, CVE-2021-32804, CVE-2021-37701
    and CVE-2021-37712
* url-parse: 1.4.7 -> 1.5.10
  * Fixing CVE-2021-3664, CVE-2021-27515, CVE-2022-0512,
    CVE-2022-0639, CVE-2022-0686 and CVE-2022-0691
* ws: 6.0.0 -> 6.2.1
  * Fixing CVE-2021-32640
* y18n: 4.0.0 -> 4.0.3
  * Fixing CVE-2020-7774

parent 483d035e

No related branches found

No related tags found

No related merge requests found

Pipeline #2405 failed 3 years ago

Show whitespace changes

Inline Side-by-side

Showing with 648 additions and 1256 deletions

Please register or to comment