From e4d961821d319cbc2453cebdf7b627b05dd4c21c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 28 Nov 2023 14:20:32 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASHSET-1320032 --- package-lock.json | 164 +++++++++++++++++++++++++++------------------- package.json | 2 +- 2 files changed, 97 insertions(+), 69 deletions(-) diff --git a/package-lock.json b/package-lock.json index b65b7ee..ab4e230 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,6 +1,6 @@ { "name": "@eyedea-sockets/csv", - "version": "0.0.9", + "version": "0.0.11", "lockfileVersion": 1, "requires": true, "dependencies": { @@ -761,12 +761,12 @@ } }, "@eyedea/syncano": { - "version": "0.2.0", - "resolved": "https://registry.npmjs.org/@eyedea/syncano/-/syncano-0.2.0.tgz", - "integrity": "sha1-Cqk9WDrokr1d42jLQtJLs4iCcNg=", + "version": "0.4.4", + "resolved": "https://registry.npmjs.org/@eyedea/syncano/-/syncano-0.4.4.tgz", + "integrity": "sha512-IVRew63LrCE9eNnNwZNDHUnR5IKegjz/TMdKVb/U66zesc/Bp20kD8cF9yh7U9h3BM0K11r4jCbAjuPTbf/AHw==", "requires": { - "@syncano/core": "^0.13.0-alpha.e00ac5d0", - "@syncano/validate": "^0.12.1" + "@syncano/core": "0.16.0-alpha.01b78f3f", + "@syncano/validate": "0.15.0" } }, "@sinonjs/formatio": { @@ -779,22 +779,49 @@ } }, "@syncano/core": { - "version": "0.13.0-alpha.e00ac5d0", - "resolved": "https://registry.npmjs.org/@syncano/core/-/core-0.13.0-alpha.e00ac5d0.tgz", - "integrity": "sha512-bcPV64lWIsh+Az6e+oK2J/GRZaSQdDjmdtkG7IDrLfgm1/DqzbbfX/e49jYko3SPXmqhMh+E4aq24HtLBPc69g==", - "requires": { - "debug": "^3.1.0", - "form-data": "^2.3.1", - "lodash.get": "^4.4.2", + "version": "0.16.0-alpha.01b78f3f", + "resolved": "https://registry.npmjs.org/@syncano/core/-/core-0.16.0-alpha.01b78f3f.tgz", + "integrity": "sha512-5mOoNnX3WtgEPB8HOKqrY9iG6pKxs30dKpWK8e1I2eAaOopnY2bMJyZdfDxZV5o7f/Oz4blMECadNYAeY8fAXA==", + "requires": { + "@types/form-data": "^2.2.1", + "debug": "^4.1.0", + "form-data": "^2.3.3", + "lodash.get": "4.4.2", "lodash.merge": "^4.6.1", - "lodash.set": "^4.3.2", - "node-fetch": "2.0.0-alpha.9" + "lodash.set": "4.3.2", + "mkdirp": "^0.5.1", + "node-fetch": "2.3.0" + }, + "dependencies": { + "debug": { + "version": "4.3.4", + "resolved": "https://registry.npmjs.org/debug/-/debug-4.3.4.tgz", + "integrity": "sha512-PRWFHuSU3eDtQJPvnNY7Jcket1j0t5OuOsFzPPzsekD52Zl8qUfFIPEiswXqIvHWGVHOgX+7G/vCNNhehwxfkQ==", + "requires": { + "ms": "2.1.2" + } + }, + "form-data": { + "version": "2.5.1", + "resolved": "https://registry.npmjs.org/form-data/-/form-data-2.5.1.tgz", + "integrity": "sha512-m21N3WOmEEURgk6B9GLOE4RuWOFf28Lhh9qGYeNlGq4VDXUlJy2th2slBNU8Gp8EzloYZOibZJ7t5ecIrFSjVA==", + "requires": { + "asynckit": "^0.4.0", + "combined-stream": "^1.0.6", + "mime-types": "^2.1.12" + } + }, + "ms": { + "version": "2.1.2", + "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.2.tgz", + "integrity": "sha512-sGkPx+VjMtmA6MX27oA4FBFELFCZZ4S4XqeGOXCv68tT+jb3vk/RyaKWP0PTKyWtmLSM0b+adUTEvbs1PEaH2w==" + } } }, "@syncano/schema": { - "version": "0.12.1", - "resolved": "https://registry.npmjs.org/@syncano/schema/-/schema-0.12.1.tgz", - "integrity": "sha512-jCHjNzpCPWFgqRAOEocIRGa33HQSJajFYIRl6m5xg4kJBgNYJ7d1S3FtRsGnp/7G2KRu3M0MB6PunNlhra4i4Q==" + "version": "0.15.0", + "resolved": "https://registry.npmjs.org/@syncano/schema/-/schema-0.15.0.tgz", + "integrity": "sha512-UEnqdnNkVYUgTKyqw/tH/zTDNB+nWv64mL4dxtVQs+xaOKaaD8n+2YbeOj0NGXrD0wh3gNAKkiD6LDR/7qu9nw==" }, "@syncano/test": { "version": "0.13.0-alpha.4d352111", @@ -834,18 +861,26 @@ } }, "@syncano/validate": { - "version": "0.12.1", - "resolved": "https://registry.npmjs.org/@syncano/validate/-/validate-0.12.1.tgz", - "integrity": "sha512-5WzH5s/N1c71r9ZaAyo6HGShJ/vyK5r8jSZz0Fc/fRDJpcgvN5JdFhRglCSW8V+/WiehRoiPNva07QOCiqs5oA==", + "version": "0.15.0", + "resolved": "https://registry.npmjs.org/@syncano/validate/-/validate-0.15.0.tgz", + "integrity": "sha512-U5HawFO+cjqmLhCkFRYQH4mMhhFGBQrDmX2o7zOi0CozHdNpi03xIIg/aRiHJpPhyGXUUwEUzbtgVUoB0uxSLA==", "requires": { - "@syncano/schema": "0.12.1", - "ajv": "^6.2.0", - "ajv-error-messages": "^1.0.0", + "@syncano/schema": "0.15.0", + "ajv": "^6.5.5", + "ajv-error-messages": "^1.0.2", "ajv-errors": "^1.0.0", - "ajv-keywords": "^3.1.0", + "ajv-keywords": "^3.2.0", "lodash.isempty": "^4.4.0" } }, + "@types/form-data": { + "version": "2.5.0", + "resolved": "https://registry.npmjs.org/@types/form-data/-/form-data-2.5.0.tgz", + "integrity": "sha512-23/wYiuckYYtFpL+4RPWiWmRQH2BjFuqCUi2+N3amB1a1Drv+i/byTrGvlLwRVLFNAZbwpbQ7JvTK+VCAPMbcg==", + "requires": { + "form-data": "*" + } + }, "@types/node": { "version": "10.9.4", "resolved": "https://registry.npmjs.org/@types/node/-/node-10.9.4.tgz", @@ -874,11 +909,11 @@ } }, "ajv": { - "version": "6.5.3", - "resolved": "https://registry.npmjs.org/ajv/-/ajv-6.5.3.tgz", - "integrity": "sha512-LqZ9wY+fx3UMiiPd741yB2pj3hhil+hQc8taf4o2QGRFpWgZ2V5C8HA165DY9sS3fJwsk7uT7ZlFEyC3Ig3lLg==", + "version": "6.12.6", + "resolved": "https://registry.npmjs.org/ajv/-/ajv-6.12.6.tgz", + "integrity": "sha512-j3fVLgvTo527anyYyJOGTYJbG+vnnQYvE0m5mmkc1TK+nxAppkCLMIL0aZ4dblVCNoGShhm+kzE4ZUykBoMg4g==", "requires": { - "fast-deep-equal": "^2.0.1", + "fast-deep-equal": "^3.1.1", "fast-json-stable-stringify": "^2.0.0", "json-schema-traverse": "^0.4.1", "uri-js": "^4.2.2" @@ -1926,6 +1961,7 @@ "version": "3.1.0", "resolved": "https://registry.npmjs.org/debug/-/debug-3.1.0.tgz", "integrity": "sha512-OX8XqP7/1a9cqkxYw2yXss15f26NKWBpDXQd0/uK/KPqdQhxbPa994hnzjcE2VqQpDslf55723cKPUOGSmMY3g==", + "dev": true, "requires": { "ms": "2.0.0" } @@ -2433,9 +2469,9 @@ "dev": true }, "fast-deep-equal": { - "version": "2.0.1", - "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-2.0.1.tgz", - "integrity": "sha1-ewUhjd+WZ79/Nwv3/bLLFf3Qqkk=" + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz", + "integrity": "sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==" }, "fast-json-stable-stringify": { "version": "2.0.0", @@ -3053,24 +3089,24 @@ "dev": true, "optional": true }, - "string-width": { - "version": "1.0.2", + "string_decoder": { + "version": "1.1.1", "bundled": true, "dev": true, "optional": true, "requires": { - "code-point-at": "^1.0.0", - "is-fullwidth-code-point": "^1.0.0", - "strip-ansi": "^3.0.0" + "safe-buffer": "~5.1.0" } }, - "string_decoder": { - "version": "1.1.1", + "string-width": { + "version": "1.0.2", "bundled": true, "dev": true, "optional": true, "requires": { - "safe-buffer": "~5.1.0" + "code-point-at": "^1.0.0", + "is-fullwidth-code-point": "^1.0.0", + "strip-ansi": "^3.0.0" } }, "strip-ansi": { @@ -5063,15 +5099,13 @@ "dev": true }, "json2csv": { - "version": "4.2.1", - "resolved": "https://registry.npmjs.org/json2csv/-/json2csv-4.2.1.tgz", - "integrity": "sha512-sCdK+ybXmfbn9rl0s8Qh4xDM7vrVzCwGftUL41o6iVsl0J3tU3PYaDgGutEmcD746n2z2bmjMFb69UsL3DSmxg==", + "version": "4.3.5", + "resolved": "https://registry.npmjs.org/json2csv/-/json2csv-4.3.5.tgz", + "integrity": "sha512-p7h3IFPDIWzXEGnBFa7ksXtDaT5wGC0vZOh0CGgmNkQxOtI4O9AZOQ/XfV9JiWERbh5jubqc3nzXziZ4S763jw==", "requires": { "commander": "^2.15.1", "jsonparse": "^1.3.1", - "lodash.clonedeep": "^4.5.0", - "lodash.get": "^4.4.2", - "lodash.set": "^4.3.2" + "lodash.get": "^4.4.2" } }, "json5": { @@ -5196,11 +5230,6 @@ "integrity": "sha512-UejweD1pDoXu+AD825lWwp4ZGtSwgnpZxb3JDViD7StjQz+Nb/6l093lx4OQ0foGWNRoc19mWy7BzL+UAK2iVg==", "dev": true }, - "lodash.clonedeep": { - "version": "4.5.0", - "resolved": "https://registry.npmjs.org/lodash.clonedeep/-/lodash.clonedeep-4.5.0.tgz", - "integrity": "sha1-4j8/nE+Pvd6HJSnBBxhXoIblzO8=" - }, "lodash.debounce": { "version": "4.0.8", "resolved": "https://registry.npmjs.org/lodash.debounce/-/lodash.debounce-4.0.8.tgz", @@ -5226,7 +5255,7 @@ "lodash.set": { "version": "4.3.2", "resolved": "https://registry.npmjs.org/lodash.set/-/lodash.set-4.3.2.tgz", - "integrity": "sha1-2HV7HagH3eJIFrDWqEvqGnYjCyM=" + "integrity": "sha512-4hNPN5jlm/N/HLMCO43v8BXKq9Z7QdAGc/VGrRD61w8gN9g/6jF9A4L1pbUgBLCffi0w9VsXfTOij5x8iTyFvg==" }, "lodash.sortby": { "version": "4.7.0", @@ -5390,8 +5419,7 @@ "minimist": { "version": "0.0.8", "resolved": "https://registry.npmjs.org/minimist/-/minimist-0.0.8.tgz", - "integrity": "sha1-hX/Kv8M5fSYluCKCYuhqp6ARsF0=", - "dev": true + "integrity": "sha1-hX/Kv8M5fSYluCKCYuhqp6ARsF0=" }, "mixin-deep": { "version": "1.3.1", @@ -5418,7 +5446,6 @@ "version": "0.5.1", "resolved": "http://registry.npmjs.org/mkdirp/-/mkdirp-0.5.1.tgz", "integrity": "sha1-MAV0OOrGz3+MR2fzhkjWaX11yQM=", - "dev": true, "requires": { "minimist": "0.0.8" } @@ -5432,7 +5459,8 @@ "ms": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", - "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g=" + "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g=", + "dev": true }, "nan": { "version": "2.11.0", @@ -5486,9 +5514,9 @@ } }, "node-fetch": { - "version": "2.0.0-alpha.9", - "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.0.0-alpha.9.tgz", - "integrity": "sha512-I7wP1QkmBNX1mt4BS5zyLRTegl5Ii+MSalpfFefn+EZFrGVsdfCvLTKt9eHkNlU4phKgp3tqLWW8VXDcCm9m9w==" + "version": "2.3.0", + "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.3.0.tgz", + "integrity": "sha512-MOd8pV3fxENbryESLgVIeaGKrdl+uaYhCSSVkjeOb/31/njTpcis5aWfdqgNlHIrKOLRbMnfPINPOML2CIFeXA==" }, "node-int64": { "version": "0.4.0", @@ -6764,6 +6792,15 @@ "duplexer": "~0.1.1" } }, + "string_decoder": { + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz", + "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==", + "dev": true, + "requires": { + "safe-buffer": "~5.1.0" + } + }, "string-length": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/string-length/-/string-length-2.0.0.tgz", @@ -6829,15 +6866,6 @@ "function-bind": "^1.0.2" } }, - "string_decoder": { - "version": "1.1.1", - "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz", - "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==", - "dev": true, - "requires": { - "safe-buffer": "~5.1.0" - } - }, "strip-ansi": { "version": "3.0.1", "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-3.0.1.tgz", diff --git a/package.json b/package.json index 1dbf269..1cbb56a 100644 --- a/package.json +++ b/package.json @@ -18,7 +18,7 @@ }, "dependencies": { "@eyedea/syncano": "0.4.4", - "json2csv": "^4.4.1" + "json2csv": "^4.3.5" }, "scripts": { "build": "npm run build:src && npm run build:env",