From f4ed7c3e6ba422fcb7a9a0b5e0dea9a311567419 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 28 May 2022 05:28:19 +0000 Subject: [PATCH] fix: upgrade ssh2 from 0.6.1 to 0.8.9 Snyk has created this PR to upgrade ssh2 from 0.6.1 to 0.8.9. See this package in npm: https://www.npmjs.com/package/ssh2 See this project in Snyk: https://app.snyk.io/org/assertis/project/e57cbdbb-a24b-4980-90fd-c174f51be78a?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 75 +++++++++++++++++++++++++++++++++++++++-------- package.json | 2 +- 2 files changed, 64 insertions(+), 13 deletions(-) diff --git a/package-lock.json b/package-lock.json index 97840229..2e17f1e8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "@assertis/dtd2mysql", - "version": "6.14.8", + "version": "6.15.0", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "@assertis/dtd2mysql", - "version": "6.14.8", + "version": "6.15.0", "license": "GPL-3.0", "dependencies": { "adm-zip": "^0.4.11", @@ -20,7 +20,7 @@ "moment": "^2.23.0", "mysql2": "^1.6.1", "proxy-agent": "^3.0.3", - "ssh2": "^0.6.1", + "ssh2": "^0.8.9", "ssh2-streams": "^0.2.1", "stream-to-promise": "^2.2.0", "xml-flow": "^1.0.2" @@ -222,6 +222,14 @@ "resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.0.tgz", "integrity": "sha512-ccav/yGvoa80BQDljCxsmmQ3Xvx60/UpBIij5QN21W3wBi/hhIC9OoO+KLpu9IJTS9j4DRVJ3aDDF9cMSoa2lw==" }, + "node_modules/bcrypt-pbkdf": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/bcrypt-pbkdf/-/bcrypt-pbkdf-1.0.2.tgz", + "integrity": "sha512-qeFIXtP4MSoi6NLqO12WfqARWWuCKi2Rn/9hJLEmtB5yTNr9DqFWkJRCf2qShWzPeAMRnOgCrq0sg/KLv5ES9w==", + "dependencies": { + "tweetnacl": "^0.14.3" + } + }, "node_modules/brace-expansion": { "version": "1.1.11", "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz", @@ -1233,14 +1241,14 @@ } }, "node_modules/ssh2": { - "version": "0.6.1", - "resolved": "https://registry.npmjs.org/ssh2/-/ssh2-0.6.1.tgz", - "integrity": "sha512-fNvocq+xetsaAZtBG/9Vhh0GDjw1jQeW7Uq/DPh4fVrJd0XxSfXAqBjOGVk4o2jyWHvyC6HiaPFpfHlR12coDw==", + "version": "0.8.9", + "resolved": "https://registry.npmjs.org/ssh2/-/ssh2-0.8.9.tgz", + "integrity": "sha512-GmoNPxWDMkVpMFa9LVVzQZHF6EW3WKmBwL+4/GeILf2hFmix5Isxm7Amamo8o7bHiU0tC+wXsGcUXOxp8ChPaw==", "dependencies": { - "ssh2-streams": "~0.2.0" + "ssh2-streams": "~0.4.10" }, "engines": { - "node": ">=4.5.0" + "node": ">=5.2.0" } }, "node_modules/ssh2-streams": { @@ -1256,6 +1264,19 @@ "node": ">=4.5.0" } }, + "node_modules/ssh2/node_modules/ssh2-streams": { + "version": "0.4.10", + "resolved": "https://registry.npmjs.org/ssh2-streams/-/ssh2-streams-0.4.10.tgz", + "integrity": "sha512-8pnlMjvnIZJvmTzUIIA5nT4jr2ZWNNVHwyXfMGdRJbug9TpI3kd99ffglgfSWqujVv/0gxwMsDn9j9RVst8yhQ==", + "dependencies": { + "asn1": "~0.2.0", + "bcrypt-pbkdf": "^1.0.2", + "streamsearch": "~0.1.2" + }, + "engines": { + "node": ">=5.2.0" + } + }, "node_modules/statuses": { "version": "1.5.0", "resolved": "https://registry.npmjs.org/statuses/-/statuses-1.5.0.tgz", @@ -1352,6 +1373,11 @@ "integrity": "sha1-o1AIsg9BOD7sH7kU9M1d95omQoQ=", "dev": true }, + "node_modules/tweetnacl": { + "version": "0.14.5", + "resolved": "https://registry.npmjs.org/tweetnacl/-/tweetnacl-0.14.5.tgz", + "integrity": "sha1-WuaBd/GS1EViadEIr6k/+HQ/T2Q=" + }, "node_modules/type-check": { "version": "0.3.2", "resolved": "https://registry.npmjs.org/type-check/-/type-check-0.3.2.tgz", @@ -1649,6 +1675,14 @@ "resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.0.tgz", "integrity": "sha512-ccav/yGvoa80BQDljCxsmmQ3Xvx60/UpBIij5QN21W3wBi/hhIC9OoO+KLpu9IJTS9j4DRVJ3aDDF9cMSoa2lw==" }, + "bcrypt-pbkdf": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/bcrypt-pbkdf/-/bcrypt-pbkdf-1.0.2.tgz", + "integrity": "sha512-qeFIXtP4MSoi6NLqO12WfqARWWuCKi2Rn/9hJLEmtB5yTNr9DqFWkJRCf2qShWzPeAMRnOgCrq0sg/KLv5ES9w==", + "requires": { + "tweetnacl": "^0.14.3" + } + }, "brace-expansion": { "version": "1.1.11", "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz", @@ -2503,11 +2537,23 @@ "integrity": "sha1-R1OT/56RR5rqYtyvDKPRSYOn+0A=" }, "ssh2": { - "version": "0.6.1", - "resolved": "https://registry.npmjs.org/ssh2/-/ssh2-0.6.1.tgz", - "integrity": "sha512-fNvocq+xetsaAZtBG/9Vhh0GDjw1jQeW7Uq/DPh4fVrJd0XxSfXAqBjOGVk4o2jyWHvyC6HiaPFpfHlR12coDw==", + "version": "0.8.9", + "resolved": "https://registry.npmjs.org/ssh2/-/ssh2-0.8.9.tgz", + "integrity": "sha512-GmoNPxWDMkVpMFa9LVVzQZHF6EW3WKmBwL+4/GeILf2hFmix5Isxm7Amamo8o7bHiU0tC+wXsGcUXOxp8ChPaw==", "requires": { - "ssh2-streams": "~0.2.0" + "ssh2-streams": "~0.4.10" + }, + "dependencies": { + "ssh2-streams": { + "version": "0.4.10", + "resolved": "https://registry.npmjs.org/ssh2-streams/-/ssh2-streams-0.4.10.tgz", + "integrity": "sha512-8pnlMjvnIZJvmTzUIIA5nT4jr2ZWNNVHwyXfMGdRJbug9TpI3kd99ffglgfSWqujVv/0gxwMsDn9j9RVst8yhQ==", + "requires": { + "asn1": "~0.2.0", + "bcrypt-pbkdf": "^1.0.2", + "streamsearch": "~0.1.2" + } + } } }, "ssh2-streams": { @@ -2603,6 +2649,11 @@ } } }, + "tweetnacl": { + "version": "0.14.5", + "resolved": "https://registry.npmjs.org/tweetnacl/-/tweetnacl-0.14.5.tgz", + "integrity": "sha1-WuaBd/GS1EViadEIr6k/+HQ/T2Q=" + }, "type-check": { "version": "0.3.2", "resolved": "https://registry.npmjs.org/type-check/-/type-check-0.3.2.tgz", diff --git a/package.json b/package.json index 97cbbdf4..a39855c2 100644 --- a/package.json +++ b/package.json @@ -55,7 +55,7 @@ "moment": "^2.23.0", "mysql2": "^1.6.1", "proxy-agent": "^3.0.3", - "ssh2": "^0.6.1", + "ssh2": "^0.8.9", "ssh2-streams": "^0.2.1", "stream-to-promise": "^2.2.0", "xml-flow": "^1.0.2"