From e198e4443933499f35ff93deae398dd12fe47274 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 11 Jan 2024 18:54:52 +0000 Subject: [PATCH] fix: upgrade @auth/mongodb-adapter from 2.0.4 to 2.0.10 Snyk has created this PR to upgrade @auth/mongodb-adapter from 2.0.4 to 2.0.10. See this package in npm: https://www.npmjs.com/package/@auth/mongodb-adapter See this project in Snyk: https://app.snyk.io/org/lryanle/project/5b60c99c-75ea-4ce3-8b20-9bfefab000f5?utm_source=github&utm_medium=referral&page=upgrade-pr --- frontend/package-lock.json | 91 ++++++++++++++++++++++++-------------- frontend/package.json | 2 +- 2 files changed, 59 insertions(+), 34 deletions(-) diff --git a/frontend/package-lock.json b/frontend/package-lock.json index 1f85b79..980414c 100644 --- a/frontend/package-lock.json +++ b/frontend/package-lock.json @@ -10,7 +10,7 @@ "hasInstallScript": true, "license": "MIT", "dependencies": { - "@auth/mongodb-adapter": "^2.0.4", + "@auth/mongodb-adapter": "^2.0.10", "@faker-js/faker": "^8.2.0", "@headlessui/react": "^1.7.17", "@heroicons/react": "^2.0.18", @@ -124,14 +124,15 @@ } }, "node_modules/@auth/core": { - "version": "0.18.1", - "resolved": "https://registry.npmjs.org/@auth/core/-/core-0.18.1.tgz", - "integrity": "sha512-L4MehYt/A7e5djsEid3jTSkRZ8sysxbirhmCXqSCPimGoFUtMCwTZrpzTALTSRwXGw/mps5fYlHROo3UQk9B3w==", + "version": "0.19.0", + "resolved": "https://registry.npmjs.org/@auth/core/-/core-0.19.0.tgz", + "integrity": "sha512-BkFg2SoNftMN6A2Sn2g1lLFLTO74qMtFKsZmSCEF9d1csqSaEXIv50k6OrfniODWi5tZP8bcfSxGodv75khlOA==", "dependencies": { "@panva/hkdf": "^1.1.1", - "cookie": "0.5.0", - "jose": "^5.1.0", - "oauth4webapi": "^2.3.0", + "@types/cookie": "0.6.0", + "cookie": "0.6.0", + "jose": "^5.1.3", + "oauth4webapi": "^2.4.0", "preact": "10.11.3", "preact-render-to-string": "5.2.3" }, @@ -144,20 +145,28 @@ } } }, + "node_modules/@auth/core/node_modules/cookie": { + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==", + "engines": { + "node": ">= 0.6" + } + }, "node_modules/@auth/core/node_modules/jose": { - "version": "5.1.3", - "resolved": "https://registry.npmjs.org/jose/-/jose-5.1.3.tgz", - "integrity": "sha512-GPExOkcMsCLBTi1YetY2LmkoY559fss0+0KVa6kOfb2YFe84nAM7Nm/XzuZozah4iHgmBGrCOHL5/cy670SBRw==", + "version": "5.2.0", + "resolved": "https://registry.npmjs.org/jose/-/jose-5.2.0.tgz", + "integrity": "sha512-oW3PCnvyrcm1HMvGTzqjxxfnEs9EoFOFWi2HsEGhlFVOXxTE3K9GKWVMFoFw06yPUqwpvEWic1BmtUZBI/tIjw==", "funding": { "url": "https://github.com/sponsors/panva" } }, "node_modules/@auth/mongodb-adapter": { - "version": "2.0.4", - "resolved": "https://registry.npmjs.org/@auth/mongodb-adapter/-/mongodb-adapter-2.0.4.tgz", - "integrity": "sha512-bfxS+7zXzbCH52BPTXiTa8DJEDs3aMfQcBpXLB9z60DLvms3qjAJcTT/d4QTWcd+//zcgy2ojQtY70KvQQpqrA==", + "version": "2.0.10", + "resolved": "https://registry.npmjs.org/@auth/mongodb-adapter/-/mongodb-adapter-2.0.10.tgz", + "integrity": "sha512-Kw85zl9rtDrxFTNjfvnuLOWcaKWnvmtFQmp+triyo/WxgzdV/LEU0s4SBh5K/CMSCilbjHsC5Cj/wd1FytPc3g==", "dependencies": { - "@auth/core": "0.18.1" + "@auth/core": "0.19.0" }, "peerDependencies": { "mongodb": "^6" @@ -1989,6 +1998,11 @@ "@types/estree": "*" } }, + "node_modules/@types/cookie": { + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-4Kh9a6B2bQciAhf7FSuMRRkUWecJgJu9nPnx3yzpsfXX/c50REIqpHY4C82bXP90qrLtXtkDxTZosYO3UpOwlA==" + }, "node_modules/@types/d3-array": { "version": "3.2.1", "resolved": "https://registry.npmjs.org/@types/d3-array/-/d3-array-3.2.1.tgz", @@ -12486,9 +12500,9 @@ "integrity": "sha512-a5ERWK1kh38ExDEfoO6qUHJb32rd7aYmPHuyCu3Fta/cnICvYmgd2uhuKXvPD+PXB+gCEYYEaQdIRAjCOwAKNA==" }, "node_modules/oauth4webapi": { - "version": "2.4.0", - "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-2.4.0.tgz", - "integrity": "sha512-ZWl8ov8HeGVyc9Icl1cag76HvIcDAp23eIIT+UVGir+dEu8BMgMlvZeZwqLVd0P8DqaumH4N+QLQXN69G1QjSA==", + "version": "2.5.0", + "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-2.5.0.tgz", + "integrity": "sha512-72EWwDzXY3oiadPsWn89EvavYFyiZgsD/tf7nKKmZwFaUg70k2S4bsYFrwbnaaQah8ZlOkCah63tLhD8AvbHcA==", "funding": { "url": "https://github.com/sponsors/panva" } @@ -16642,31 +16656,37 @@ "integrity": "sha512-UrcABB+4bUrFABwbluTIBErXwvbsU/V7TZWfmbgJfbkwiBuziS9gxdODUyuiecfdGQ85jglMW6juS3+z5TsKLw==" }, "@auth/core": { - "version": "0.18.1", - "resolved": "https://registry.npmjs.org/@auth/core/-/core-0.18.1.tgz", - "integrity": "sha512-L4MehYt/A7e5djsEid3jTSkRZ8sysxbirhmCXqSCPimGoFUtMCwTZrpzTALTSRwXGw/mps5fYlHROo3UQk9B3w==", + "version": "0.19.0", + "resolved": "https://registry.npmjs.org/@auth/core/-/core-0.19.0.tgz", + "integrity": "sha512-BkFg2SoNftMN6A2Sn2g1lLFLTO74qMtFKsZmSCEF9d1csqSaEXIv50k6OrfniODWi5tZP8bcfSxGodv75khlOA==", "requires": { "@panva/hkdf": "^1.1.1", - "cookie": "0.5.0", - "jose": "^5.1.0", - "oauth4webapi": "^2.3.0", + "@types/cookie": "0.6.0", + "cookie": "0.6.0", + "jose": "^5.1.3", + "oauth4webapi": "^2.4.0", "preact": "10.11.3", "preact-render-to-string": "5.2.3" }, "dependencies": { + "cookie": { + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==" + }, "jose": { - "version": "5.1.3", - "resolved": "https://registry.npmjs.org/jose/-/jose-5.1.3.tgz", - "integrity": "sha512-GPExOkcMsCLBTi1YetY2LmkoY559fss0+0KVa6kOfb2YFe84nAM7Nm/XzuZozah4iHgmBGrCOHL5/cy670SBRw==" + "version": "5.2.0", + "resolved": "https://registry.npmjs.org/jose/-/jose-5.2.0.tgz", + "integrity": "sha512-oW3PCnvyrcm1HMvGTzqjxxfnEs9EoFOFWi2HsEGhlFVOXxTE3K9GKWVMFoFw06yPUqwpvEWic1BmtUZBI/tIjw==" } } }, "@auth/mongodb-adapter": { - "version": "2.0.4", - "resolved": "https://registry.npmjs.org/@auth/mongodb-adapter/-/mongodb-adapter-2.0.4.tgz", - "integrity": "sha512-bfxS+7zXzbCH52BPTXiTa8DJEDs3aMfQcBpXLB9z60DLvms3qjAJcTT/d4QTWcd+//zcgy2ojQtY70KvQQpqrA==", + "version": "2.0.10", + "resolved": "https://registry.npmjs.org/@auth/mongodb-adapter/-/mongodb-adapter-2.0.10.tgz", + "integrity": "sha512-Kw85zl9rtDrxFTNjfvnuLOWcaKWnvmtFQmp+triyo/WxgzdV/LEU0s4SBh5K/CMSCilbjHsC5Cj/wd1FytPc3g==", "requires": { - "@auth/core": "0.18.1" + "@auth/core": "0.19.0" } }, "@babel/runtime": { @@ -17750,6 +17770,11 @@ "@types/estree": "*" } }, + "@types/cookie": { + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-4Kh9a6B2bQciAhf7FSuMRRkUWecJgJu9nPnx3yzpsfXX/c50REIqpHY4C82bXP90qrLtXtkDxTZosYO3UpOwlA==" + }, "@types/d3-array": { "version": "3.2.1", "resolved": "https://registry.npmjs.org/@types/d3-array/-/d3-array-3.2.1.tgz", @@ -24709,9 +24734,9 @@ "integrity": "sha512-a5ERWK1kh38ExDEfoO6qUHJb32rd7aYmPHuyCu3Fta/cnICvYmgd2uhuKXvPD+PXB+gCEYYEaQdIRAjCOwAKNA==" }, "oauth4webapi": { - "version": "2.4.0", - "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-2.4.0.tgz", - "integrity": "sha512-ZWl8ov8HeGVyc9Icl1cag76HvIcDAp23eIIT+UVGir+dEu8BMgMlvZeZwqLVd0P8DqaumH4N+QLQXN69G1QjSA==" + "version": "2.5.0", + "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-2.5.0.tgz", + "integrity": "sha512-72EWwDzXY3oiadPsWn89EvavYFyiZgsD/tf7nKKmZwFaUg70k2S4bsYFrwbnaaQah8ZlOkCah63tLhD8AvbHcA==" }, "object-assign": { "version": "4.1.1", diff --git a/frontend/package.json b/frontend/package.json index 955b9c3..7968efe 100644 --- a/frontend/package.json +++ b/frontend/package.json @@ -17,7 +17,7 @@ "postinstall": "prisma generate" }, "dependencies": { - "@auth/mongodb-adapter": "^2.0.4", + "@auth/mongodb-adapter": "^2.0.10", "@faker-js/faker": "^8.2.0", "@headlessui/react": "^1.7.17", "@heroicons/react": "^2.0.18",