From 18dbb5c36911c4420c76aaab38237e8b37e519a5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 25 Oct 2023 15:00:47 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 39779a9..0a6ab17 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3825,9 +3825,9 @@ } }, "crypto-js": { - "version": "4.0.0", - "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.0.0.tgz", - "integrity": "sha512-bzHZN8Pn+gS7DQA6n+iUmBfl0hO5DJq++QP3U6uTucDtk/0iGpXd/Gg7CGR0p8tJhofJyaKoWBuJI4eAO00BBg==" + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.2.0.tgz", + "integrity": "sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==" }, "css": { "version": "2.2.4", diff --git a/package.json b/package.json index 7c0fca8..a5eaca7 100644 --- a/package.json +++ b/package.json @@ -25,7 +25,7 @@ "@toverux/ngx-sweetalert2": "^4.0.0", "@types/crypto-js": "^3.1.47", "core-js": "^3.6.5", - "crypto-js": "^4.0.0", + "crypto-js": "^4.2.0", "ig-truncate": "github:igreulich/angular-truncate", "moment": "^2.27.0", "ng2-tooltip-directive": "^2.9.22",