Skip to content

Commit

Permalink
fix(security): update handlebars, js-yaml, and marked
Browse files Browse the repository at this point in the history
  • Loading branch information
Benjamin Reed committed Jun 7, 2019
1 parent bfe6d6b commit f5f4ad2
Show file tree
Hide file tree
Showing 2 changed files with 20 additions and 16 deletions.
6 changes: 4 additions & 2 deletions package.json
Original file line number Diff line number Diff line change
Expand Up @@ -94,18 +94,20 @@
"xmldom": "^0.1.27"
},
"resolutions": {
"@types/marked": "^0.6.5",
"atob": "^2.1.2",
"babel-plugin-istanbul": "^4.1.6",
"babel-traverse": "^6.26.0",
"exec-sh": "^0.3.2",
"chokidar": "^2.1.4",
"deep-extend": "^0.6.0",
"follow-redirects": "^1.7.0",
"handlebars": "^4.1.1",
"handlebars": "^4.1.2",
"istanbul-lib-source-maps": "^1.2.6",
"jest-config": "^23.6.0",
"js-yaml": "^3.13.0",
"js-yaml": "^3.13.1",
"lodash": "^4.17.11",
"marked": "^0.6.2",
"micromatch": "^3.1.10",
"request": "^2.88.0",
"sane": "^2.5.2",
Expand Down
30 changes: 16 additions & 14 deletions yarn.lock
Original file line number Diff line number Diff line change
Expand Up @@ -58,9 +58,10 @@
version "4.14.104"
resolved "https://registry.yarnpkg.com/@types/lodash/-/lodash-4.14.104.tgz#53ee2357fa2e6e68379341d92eb2ecea4b11bb80"

"@types/marked@0.3.0":
version "0.3.0"
resolved "https://registry.yarnpkg.com/@types/marked/-/marked-0.3.0.tgz#583c223dd33385a1dda01aaf77b0cd0411c4b524"
"@types/marked@0.3.0", "@types/marked@^0.6.5":
version "0.6.5"
resolved "https://registry.yarnpkg.com/@types/marked/-/marked-0.6.5.tgz#3cf2a56ef615dad24aaf99784ef90a9eba4e29d8"
integrity sha512-6kBKf64aVfx93UJrcyEZ+OBM5nGv4RLsI6sR1Ar34bpgvGVRoyTgpxn4ZmtxOM5aDTAaaznYuYUH8bUX3Nk3YA==

"@types/minimatch@*":
version "2.0.29"
Expand Down Expand Up @@ -3053,10 +3054,10 @@ gulplog@^1.0.0:
dependencies:
glogg "^1.0.0"

handlebars@^4.0.2, handlebars@^4.0.3, handlebars@^4.0.6, handlebars@^4.1.1:
version "4.1.1"
resolved "https://registry.yarnpkg.com/handlebars/-/handlebars-4.1.1.tgz#6e4e41c18ebe7719ae4d38e5aca3d32fa3dd23d3"
integrity sha512-3Zhi6C0euYZL5sM0Zcy7lInLXKQ+YLcF/olbN010mzGQ4XVm50JeyBnMqofHh696GrciGruC7kCcApPDJvVgwA==
handlebars@^4.0.2, handlebars@^4.0.3, handlebars@^4.0.6, handlebars@^4.1.2:
version "4.1.2"
resolved "https://registry.yarnpkg.com/handlebars/-/handlebars-4.1.2.tgz#b6b37c1ced0306b221e094fc7aca3ec23b131b67"
integrity sha512-nvfrjqvt9xQ8Z/w0ijewdD/vvWDTOweBUm96NTr66Wfvo1mJenBLwcYmPs3TIBP5ruzYGD7Hx/DaM9RmhroGPw==
dependencies:
neo-async "^2.6.0"
optimist "^0.6.1"
Expand Down Expand Up @@ -4098,10 +4099,10 @@ js-tokens@^3.0.0, js-tokens@^3.0.2:
version "3.0.2"
resolved "https://registry.yarnpkg.com/js-tokens/-/js-tokens-3.0.2.tgz#9866df395102130e38f7f996bceb65443209c25b"

js-yaml@^3.13.0, js-yaml@^3.7.0, js-yaml@^3.9.0:
version "3.13.0"
resolved "https://registry.yarnpkg.com/js-yaml/-/js-yaml-3.13.0.tgz#38ee7178ac0eea2c97ff6d96fff4b18c7d8cf98e"
integrity sha512-pZZoSxcCYco+DIKBTimr67J6Hy+EYGZDY/HCWC+iAEA9h1ByhMXAIVUXMcMFpOCxQ/xjXmPI2MkDL5HRm5eFrQ==
js-yaml@^3.13.1, js-yaml@^3.7.0, js-yaml@^3.9.0:
version "3.13.1"
resolved "https://registry.yarnpkg.com/js-yaml/-/js-yaml-3.13.1.tgz#aff151b30bfdfa8e49e05da22e7415e9dfa37847"
integrity sha512-YfbcO7jXDdyj0DGxYVSlSeQNHbD7XPWvrVWeVUujrQEoZzWJIRrCPoyk6kL6IAjAG2IolMK4T0hNUe0HOUs5Jw==
dependencies:
argparse "^1.0.7"
esprima "^4.0.0"
Expand Down Expand Up @@ -4627,9 +4628,10 @@ map-visit@^1.0.0:
dependencies:
object-visit "^1.0.0"

marked@^0.3.12:
version "0.3.17"
resolved "https://registry.yarnpkg.com/marked/-/marked-0.3.17.tgz#607f06668b3c6b1246b28f13da76116ac1aa2d2b"
marked@^0.3.12, marked@^0.6.2:
version "0.6.2"
resolved "https://registry.yarnpkg.com/marked/-/marked-0.6.2.tgz#c574be8b545a8b48641456ca1dbe0e37b6dccc1a"
integrity sha512-LqxwVH3P/rqKX4EKGz7+c2G9r98WeM/SW34ybhgNGhUQNKtf1GmmSkJ6cDGJ/t6tiyae49qRkpyTw2B9HOrgUA==

mem-fs-editor@^3.0.0:
version "3.0.2"
Expand Down

0 comments on commit f5f4ad2

Please sign in to comment.