From 846b5708dd0e7c5d3f67ccb883a252a6839d4fa2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 14 May 2024 20:54:13 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119 --- package-lock.json | 34 +++++++++++++++++----------------- package.json | 2 +- 2 files changed, 18 insertions(+), 18 deletions(-) diff --git a/package-lock.json b/package-lock.json index d85fe63d1c7..a323867754c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -69,7 +69,7 @@ "notevil": "^1.3.3", "on-finished": "^2.3.0", "otplib": "^12.0.1", - "pdfkit": "^0.11.0", + "pdfkit": "^0.12.2", "portscanner": "^2.2.0", "prom-client": "^12.0.0", "pug": "^3.0.0", @@ -4773,9 +4773,9 @@ } }, "node_modules/crypto-js": { - "version": "3.3.0", - "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.3.0.tgz", - "integrity": "sha512-DIT51nX0dCfKltpRiXV+/TVZq+Qq2NgF4644+K7Ttnla7zEzqc+kjJyiB96BHNyUTBxyjzRcZYpUdZa+QAqi6Q==" + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.2.0.tgz", + "integrity": "sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==" }, "node_modules/cssom": { "version": "0.4.4", @@ -15057,12 +15057,12 @@ } }, "node_modules/pdfkit": { - "version": "0.11.0", - "resolved": "https://registry.npmjs.org/pdfkit/-/pdfkit-0.11.0.tgz", - "integrity": "sha512-1s9gaumXkYxcVF1iRtSmLiISF2r4nHtsTgpwXiK8Swe+xwk/1pm8FJjYqN7L3x13NsWnGyUFntWcO8vfqq+wwA==", + "version": "0.12.2", + "resolved": "https://registry.npmjs.org/pdfkit/-/pdfkit-0.12.2.tgz", + "integrity": "sha512-phFSGUL+JhGnH9XgpF2+TCzQycW3xlw6EYc91Oqdq3YbnGSlfxwTFk7vClcUI+Y49MOVJzXz89Is17Vb+hQTsA==", "dependencies": { - "crypto-js": "^3.1.9-1", - "fontkit": "^1.8.0", + "crypto-js": "^4.0.0", + "fontkit": "^1.8.1", "linebreak": "^1.0.2", "png-js": "^1.0.0" } @@ -24109,9 +24109,9 @@ } }, "crypto-js": { - "version": "3.3.0", - "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.3.0.tgz", - "integrity": "sha512-DIT51nX0dCfKltpRiXV+/TVZq+Qq2NgF4644+K7Ttnla7zEzqc+kjJyiB96BHNyUTBxyjzRcZYpUdZa+QAqi6Q==" + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.2.0.tgz", + "integrity": "sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==" }, "cssom": { "version": "0.4.4", @@ -32047,12 +32047,12 @@ "dev": true }, "pdfkit": { - "version": "0.11.0", - "resolved": "https://registry.npmjs.org/pdfkit/-/pdfkit-0.11.0.tgz", - "integrity": "sha512-1s9gaumXkYxcVF1iRtSmLiISF2r4nHtsTgpwXiK8Swe+xwk/1pm8FJjYqN7L3x13NsWnGyUFntWcO8vfqq+wwA==", + "version": "0.12.2", + "resolved": "https://registry.npmjs.org/pdfkit/-/pdfkit-0.12.2.tgz", + "integrity": "sha512-phFSGUL+JhGnH9XgpF2+TCzQycW3xlw6EYc91Oqdq3YbnGSlfxwTFk7vClcUI+Y49MOVJzXz89Is17Vb+hQTsA==", "requires": { - "crypto-js": "^3.1.9-1", - "fontkit": "^1.8.0", + "crypto-js": "^4.0.0", + "fontkit": "^1.8.1", "linebreak": "^1.0.2", "png-js": "^1.0.0" } diff --git a/package.json b/package.json index 92237be9f0d..7ff30feaa2d 100644 --- a/package.json +++ b/package.json @@ -143,7 +143,7 @@ "notevil": "^1.3.3", "on-finished": "^2.3.0", "otplib": "^12.0.1", - "pdfkit": "^0.11.0", + "pdfkit": "^0.12.2", "portscanner": "^2.2.0", "prom-client": "^12.0.0", "pug": "^3.0.0",