fix: package.json, yarn.lock & .snyk to reduce vulnerabilities
The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746
This commit is contained in:
@@ -1,5 +1,5 @@
|
||||
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
|
||||
version: v1.14.1
|
||||
version: v1.15.0
|
||||
ignore: {}
|
||||
# patches apply the minimum changes required to fix a vulnerability
|
||||
patch:
|
||||
@@ -213,3 +213,5 @@ patch:
|
||||
patched: '2020-05-01T01:01:38.423Z'
|
||||
- nuxt > @nuxt/builder > @nuxt/webpack > @nuxt/babel-preset-app > @babel/preset-env > @babel/plugin-transform-exponentiation-operator > @babel/helper-builder-binary-assignment-operator-visitor > @babel/helper-explode-assignable-expression > @babel/traverse > @babel/helper-function-name > @babel/template > @babel/types > lodash:
|
||||
patched: '2020-05-01T01:01:38.423Z'
|
||||
- nuxt > @nuxt/telemetry > inquirer > lodash:
|
||||
patched: '2020-06-21T15:59:31.404Z'
|
||||
|
||||
+1
-1
@@ -31,7 +31,7 @@
|
||||
"nuxt-composition-api": "^0.9.3",
|
||||
"nuxt-i18n": "^6.0.1",
|
||||
"sass-loader": "^7.0.3",
|
||||
"snyk": "^1.316.1",
|
||||
"snyk": "^1.346.0",
|
||||
"vue": "^2.6.10",
|
||||
"vue-numeral-filter": "^1.1.1",
|
||||
"vuetify": "^2.1.9"
|
||||
|
||||
@@ -2995,14 +2995,6 @@ apollo-link-http@^1.5.15, apollo-link-http@^1.5.5:
|
||||
apollo-link-http-common "^0.2.16"
|
||||
tslib "^1.9.3"
|
||||
|
||||
apollo-link-ws@^1.0.20:
|
||||
version "1.0.20"
|
||||
resolved "https://registry.yarnpkg.com/apollo-link-ws/-/apollo-link-ws-1.0.20.tgz#dfad44121f8445c6d7b7f8101a1b24813ba008ed"
|
||||
integrity sha512-mjSFPlQxmoLArpHBeUb2Xj+2HDYeTaJqFGOqQ+I8NVJxgL9lJe84PDWcPah/yMLv3rB7QgBDSuZ0xoRFBPlySw==
|
||||
dependencies:
|
||||
apollo-link "^1.2.14"
|
||||
tslib "^1.9.3"
|
||||
|
||||
apollo-link@^1.0.0, apollo-link@^1.2.12, apollo-link@^1.2.14, apollo-link@^1.2.3:
|
||||
version "1.2.14"
|
||||
resolved "https://registry.yarnpkg.com/apollo-link/-/apollo-link-1.2.14.tgz#3feda4b47f9ebba7f4160bef8b977ba725b684d9"
|
||||
@@ -12141,7 +12133,7 @@ snyk-try-require@1.3.1, snyk-try-require@^1.1.1, snyk-try-require@^1.3.1:
|
||||
lru-cache "^4.0.0"
|
||||
then-fs "^2.0.0"
|
||||
|
||||
snyk@^1.316.1:
|
||||
snyk@1.346.0, snyk@^1.346.0:
|
||||
version "1.346.0"
|
||||
resolved "https://registry.yarnpkg.com/snyk/-/snyk-1.346.0.tgz#c94646a7ca109a329095419542df92d10df9709f"
|
||||
integrity sha512-uwJDC0CRefppngm1J1M+Sja5CVfdmzLYkxGYp3ZYXrzvd912pgzrdYm8ciUL5a8x1/C+2L0iZ09W68daSuObhA==
|
||||
@@ -12634,7 +12626,7 @@ stylehacks@^4.0.0:
|
||||
postcss "^7.0.0"
|
||||
postcss-selector-parser "^3.0.0"
|
||||
|
||||
subscriptions-transport-ws@0.9.16, subscriptions-transport-ws@^0.9.16:
|
||||
subscriptions-transport-ws@0.9.16:
|
||||
version "0.9.16"
|
||||
resolved "https://registry.yarnpkg.com/subscriptions-transport-ws/-/subscriptions-transport-ws-0.9.16.tgz#90a422f0771d9c32069294c08608af2d47f596ec"
|
||||
integrity sha512-pQdoU7nC+EpStXnCfh/+ho0zE0Z+ma+i7xvj7bkXKb1dvYHSZxgRPaU6spRP+Bjzow67c/rRDoix5RT0uU9omw==
|
||||
|
||||
Reference in New Issue
Block a user