From 5c904b39bbb4968ad95811aa48b8d23cfcc26f33 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 11 Feb 2024 23:27:07 +0000 Subject: [PATCH] fix: deps/npm/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 --- deps/npm/package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/deps/npm/package.json b/deps/npm/package.json index 5c79d1566c3517..524d1966bc6958 100644 --- a/deps/npm/package.json +++ b/deps/npm/package.json @@ -73,7 +73,7 @@ "json-parse-better-errors": "^1.0.2", "lazy-property": "~1.0.0", "libcipm": "^2.0.2", - "libnpmhook": "^4.0.1", + "libnpmhook": "^10.0.0", "libnpx": "^10.2.0", "lock-verify": "^2.0.2", "lockfile": "^1.0.4", @@ -97,15 +97,15 @@ "npm-package-arg": "^6.1.0", "npm-packlist": "^1.1.11", "npm-pick-manifest": "^2.1.0", - "npm-profile": "^3.0.2", + "npm-profile": "^4.0.0", "npm-registry-client": "^8.6.0", - "npm-registry-fetch": "^1.1.0", + "npm-registry-fetch": "^15.0.0", "npm-user-validate": "~1.0.0", "npmlog": "~4.1.2", "once": "~1.4.0", "opener": "^1.5.0", "osenv": "^0.1.5", - "pacote": "^8.1.6", + "pacote": "^10.0.0", "path-is-inside": "~1.0.2", "promise-inflight": "~1.0.1", "qrcode-terminal": "^0.12.0",