From 92d4ea5d1deacd0b331a36e281c0ab6847c93544 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 20 Jun 2023 17:59:13 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 --- package-lock.json | 12 +++++++----- package.json | 2 +- 2 files changed, 8 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index aa1502f06db1..61cbf257b5e8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -76,7 +76,7 @@ "revalidator": "^0.3.1", "rss-parser": "^3.12.0", "scroll-anchoring": "^0.1.0", - "semver": "^7.3.7", + "semver": "^7.5.2", "slash": "^4.0.0", "strip-html-comments": "^1.0.0", "styled-components": "^5.3.5", @@ -18132,8 +18132,9 @@ } }, "node_modules/semver": { - "version": "7.3.7", - "integrity": "sha512-QlYTucUYOews+WeEujDoEGziz4K6c47V/Bd+LjSSYcA94p+DmINdf7ncaUinThfvZyu13lN9OY1XDxt8C0Tw0g==", + "version": "7.5.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.2.tgz", + "integrity": "sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==", "dependencies": { "lru-cache": "^6.0.0" }, @@ -34048,8 +34049,9 @@ } }, "semver": { - "version": "7.3.7", - "integrity": "sha512-QlYTucUYOews+WeEujDoEGziz4K6c47V/Bd+LjSSYcA94p+DmINdf7ncaUinThfvZyu13lN9OY1XDxt8C0Tw0g==", + "version": "7.5.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.2.tgz", + "integrity": "sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==", "requires": { "lru-cache": "^6.0.0" } diff --git a/package.json b/package.json index 268df1320638..6d72bfc13642 100644 --- a/package.json +++ b/package.json @@ -78,7 +78,7 @@ "revalidator": "^0.3.1", "rss-parser": "^3.12.0", "scroll-anchoring": "^0.1.0", - "semver": "^7.3.7", + "semver": "^7.5.2", "slash": "^4.0.0", "strip-html-comments": "^1.0.0", "styled-components": "^5.3.5",