From 970edd31a8caa36235fad860b3b0ee8995042d7a Mon Sep 17 00:00:00 2001 From: Michael FIG Date: Mon, 16 Dec 2019 17:45:36 -0600 Subject: [PATCH] fix(security): update serialize-javascript dependency (#340) --- packages/agoric-cli/template/ui/package.json | 3 +++ packages/agoric-cli/template/ui/yarn.lock | 13 ++++--------- 2 files changed, 7 insertions(+), 9 deletions(-) diff --git a/packages/agoric-cli/template/ui/package.json b/packages/agoric-cli/template/ui/package.json index 829c63753a9..274ef3f3184 100644 --- a/packages/agoric-cli/template/ui/package.json +++ b/packages/agoric-cli/template/ui/package.json @@ -24,6 +24,9 @@ "last 1 safari version" ] }, + "resolutions": { + "**/**/serialize-javascript": "^2.1.2" + }, "dependencies": { "@material-ui/core": "^4.2.1", "@material-ui/icons": "^4.5.1", diff --git a/packages/agoric-cli/template/ui/yarn.lock b/packages/agoric-cli/template/ui/yarn.lock index d94262b69bf..89510edb915 100644 --- a/packages/agoric-cli/template/ui/yarn.lock +++ b/packages/agoric-cli/template/ui/yarn.lock @@ -9230,15 +9230,10 @@ send@0.17.1: range-parser "~1.2.1" statuses "~1.5.0" -serialize-javascript@^1.7.0: - version "1.9.1" - resolved "https://registry.yarnpkg.com/serialize-javascript/-/serialize-javascript-1.9.1.tgz#cfc200aef77b600c47da9bb8149c943e798c2fdb" - integrity sha512-0Vb/54WJ6k5v8sSWN09S0ora+Hnr+cX40r9F170nT+mSkaxltoE/7R3OrIdBSUv1OoiobH1QoWQbCnAO+e8J1A== - -serialize-javascript@^2.1.0: - version "2.1.1" - resolved "https://registry.yarnpkg.com/serialize-javascript/-/serialize-javascript-2.1.1.tgz#952907a04a3e3a75af7f73d92d15e233862048b2" - integrity sha512-MPLPRpD4FNqWq9tTIjYG5LesFouDhdyH0EPY3gVK4DRD5+g4aDqdNSzLIwceulo3Yj+PL1bPh6laE5+H6LTcrQ== +serialize-javascript@^1.7.0, serialize-javascript@^2.1.0, serialize-javascript@^2.1.2: + version "2.1.2" + resolved "https://registry.yarnpkg.com/serialize-javascript/-/serialize-javascript-2.1.2.tgz#ecec53b0e0317bdc95ef76ab7074b7384785fa61" + integrity sha512-rs9OggEUF0V4jUSecXazOYsLfu7OGK2qIn3c7IPBiffz32XniEp/TX9Xmc9LQfK2nQ2QKHvZ2oygKUGU0lG4jQ== serve-index@^1.9.1: version "1.9.1"