From 619c93c0c78c2cf17b035d507f260878ce95c856 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 28 Nov 2023 21:53:51 +0000 Subject: [PATCH] fix: deps/npm/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-REQUEST-3361831 - https://snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873 --- deps/npm/package.json | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/deps/npm/package.json b/deps/npm/package.json index d417e19677e6ab..e01fe3dde8f5e6 100644 --- a/deps/npm/package.json +++ b/deps/npm/package.json @@ -53,11 +53,11 @@ "./package.json": "./package.json" }, "dependencies": { - "@npmcli/arborist": "^2.7.1", + "@npmcli/arborist": "^3.0.0", "@npmcli/ci-detect": "^1.2.0", "@npmcli/config": "^2.2.0", "@npmcli/package-json": "^1.0.1", - "@npmcli/run-script": "^1.8.5", + "@npmcli/run-script": "^2.0.0", "abbrev": "~1.1.1", "ansicolors": "~0.3.2", "ansistyles": "~0.1.3", @@ -78,23 +78,23 @@ "json-parse-even-better-errors": "^2.3.1", "leven": "^3.1.0", "libnpmaccess": "^4.0.2", - "libnpmdiff": "^2.0.4", - "libnpmexec": "^2.0.0", - "libnpmfund": "^1.1.0", + "libnpmdiff": "^3.0.0", + "libnpmexec": "^3.0.0", + "libnpmfund": "^2.0.0", "libnpmhook": "^6.0.2", "libnpmorg": "^2.0.2", - "libnpmpack": "^2.0.1", + "libnpmpack": "^3.0.0", "libnpmpublish": "^4.0.1", "libnpmsearch": "^3.1.1", "libnpmteam": "^2.0.3", - "libnpmversion": "^1.2.1", + "libnpmversion": "^2.0.1", "make-fetch-happen": "^9.0.4", "minipass": "^3.1.3", "minipass-pipeline": "^1.2.4", "mkdirp": "^1.0.4", "mkdirp-infer-owner": "^2.0.0", "ms": "^2.1.2", - "node-gyp": "^7.1.2", + "node-gyp": "^8.0.0", "nopt": "^5.0.0", "npm-audit-report": "^2.1.5", "npm-package-arg": "^8.1.5", @@ -104,7 +104,7 @@ "npm-user-validate": "^1.0.1", "npmlog": "^5.0.0", "opener": "^1.5.2", - "pacote": "^11.3.5", + "pacote": "^12.0.0", "parse-conflict-json": "^1.1.1", "qrcode-terminal": "^0.12.0", "read": "~1.0.7",