From 0d0f72ce455c843e16a26175b4a4d0bbec39cf60 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 Nov 2023 14:27:11 +0000 Subject: [PATCH 1/3] fix: upgrade @crowdin/crowdin-api-client from 1.25.1 to 1.26.0 Snyk has created this PR to upgrade @crowdin/crowdin-api-client from 1.25.1 to 1.26.0. See this package in npm: See this project in Snyk: https://app.snyk.io/org/cboard/project/d8988709-12b3-418a-b44c-fca27f9b400c?utm_source=github&utm_medium=referral&page=upgrade-pr --- package.json | 2 +- yarn.lock | 11 ++++------- 2 files changed, 5 insertions(+), 8 deletions(-) diff --git a/package.json b/package.json index 438a73311..5cbbb8be0 100644 --- a/package.json +++ b/package.json @@ -18,7 +18,7 @@ "license": "GPL-3.0-only", "dependencies": { "@cospired/i18n-iso-languages": "^2.2.0", - "@crowdin/crowdin-api-client": "^1.25.0", + "@crowdin/crowdin-api-client": "^1.26.0", "@ctrl/react-adsense": "^1.7.0", "@material-ui/core": "^4.12.4", "@material-ui/icons": "^4.11.3", diff --git a/yarn.lock b/yarn.lock index 55264041b..a32c8a5a0 100644 --- a/yarn.lock +++ b/yarn.lock @@ -2029,10 +2029,10 @@ resolved "https://registry.yarnpkg.com/@cospired/i18n-iso-languages/-/i18n-iso-languages-2.2.0.tgz#9236865c76291a9947bfd6ab8a285417cbd63369" integrity sha512-hywY9u9apWGeLxQuRcXw7IW0XkMdXum/hr3TpmHY2fAbXMTFlhhkPCdsQeHzjxMQwTnMgXaZ4j4WOCwKtlDRCQ== -"@crowdin/crowdin-api-client@^1.25.0": - version "1.25.1" - resolved "https://registry.yarnpkg.com/@crowdin/crowdin-api-client/-/crowdin-api-client-1.25.1.tgz#d1eddb0e4642135cdbc2f2698b0472bb6806b14f" - integrity sha512-/ogvjJMkir9v3eYW8GpdH7KU2P3VLovQU/TXg7at7ozP9JYbUf8Jd7V035mWnSy2lymdtCqP/R8f5NZwR/lkFQ== +"@crowdin/crowdin-api-client@^1.26.0": + version "1.28.0" + resolved "https://registry.yarnpkg.com/@crowdin/crowdin-api-client/-/crowdin-api-client-1.28.0.tgz#6447aab1e1e859ec6231966ee686f7b9f6ae0571" + integrity sha512-6TCZ8oQBTQAWGCPIfa5Z+4149CeObqSOaGoo4hBTzayq6tZ25BdNElKbYn35VXyrmxaSrHCEJURfIlKLvzWr2g== dependencies: axios "^1" @@ -13337,9 +13337,6 @@ socks@^2.7.1: version "2.7.1" resolved "https://registry.yarnpkg.com/socks/-/socks-2.7.1.tgz#d8e651247178fde79c0663043e07240196857d55" integrity sha512-7maUZy1N7uo6+WVEX6psASxtNlKaNVMlGQKkG/63nEDdLOWNbiUMoLK7X4uYoLhQstau72mLgfEWcXcwsaHbYQ== - dependencies: - ip "^2.0.0" - smart-buffer "^4.2.0" sort-keys@^1.0.0: version "1.1.2" From c45bce376f753989b0fbe088fe92a1ce59aad37a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 29 Nov 2023 14:31:30 +0000 Subject: [PATCH 2/3] fix: upgrade mongoose from 6.12.2 to 6.12.3 Snyk has created this PR to upgrade mongoose from 6.12.2 to 6.12.3. See this package in npm: See this project in Snyk: https://app.snyk.io/org/cboard/project/d8988709-12b3-418a-b44c-fca27f9b400c?utm_source=github&utm_medium=referral&page=upgrade-pr --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index 438a73311..5b9ecd7db 100644 --- a/package.json +++ b/package.json @@ -54,7 +54,7 @@ "microsoft-cognitiveservices-speech-sdk": "^1.32.0", "mime-types": "^2.1.35", "moment": "2.29.4", - "mongoose": "^6.12.1", + "mongoose": "^6.12.3", "ogv": "^1.8.9", "pdfmake": "^0.2.7", "prop-types": "^15.8.1", diff --git a/yarn.lock b/yarn.lock index 55264041b..08926953c 100644 --- a/yarn.lock +++ b/yarn.lock @@ -9908,10 +9908,10 @@ mongodb@4.17.1: "@aws-sdk/credential-providers" "^3.186.0" "@mongodb-js/saslprep" "^1.1.0" -mongoose@^6.12.1: - version "6.12.2" - resolved "https://registry.yarnpkg.com/mongoose/-/mongoose-6.12.2.tgz#01deed09f25a55e92597080eac9dfecbfc4ec8eb" - integrity sha512-3XXhSAB4PcJBd0sfqyi+LdVb3brVoIFh5kB/gpnrKcD54tmWdEI4Y8xjiiBx773U9IV3Mv4GxFVCy9/lvXMMyg== +mongoose@^6.12.3: + version "6.12.3" + resolved "https://registry.yarnpkg.com/mongoose/-/mongoose-6.12.3.tgz#bc921ca2fd6d4c1a48dbf7bc88cf3eef1d3c4926" + integrity sha512-MNJymaaXali7w7rHBxVUoQ3HzHHMk/7I/+yeeoSa4rUzdjZwIWQznBNvVgc0A8ghuJwsuIkb5LyLV6gSjGjWyQ== dependencies: bson "^4.7.2" kareem "2.5.1" From df09a412467b78c3d7ec2be7c715940e71a847c4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 Dec 2023 14:28:01 +0000 Subject: [PATCH 3/3] fix: upgrade pdfmake from 0.2.7 to 0.2.8 Snyk has created this PR to upgrade pdfmake from 0.2.7 to 0.2.8. See this package in npm: See this project in Snyk: https://app.snyk.io/org/cboard/project/d8988709-12b3-418a-b44c-fca27f9b400c?utm_source=github&utm_medium=referral&page=upgrade-pr --- package.json | 2 +- yarn.lock | 22 +++++++++++----------- 2 files changed, 12 insertions(+), 12 deletions(-) diff --git a/package.json b/package.json index 438a73311..3fe53cc4a 100644 --- a/package.json +++ b/package.json @@ -56,7 +56,7 @@ "moment": "2.29.4", "mongoose": "^6.12.1", "ogv": "^1.8.9", - "pdfmake": "^0.2.7", + "pdfmake": "^0.2.8", "prop-types": "^15.8.1", "query-string": "^6.14.1", "ramda": "^0.29.1", diff --git a/yarn.lock b/yarn.lock index 55264041b..80ba957ae 100644 --- a/yarn.lock +++ b/yarn.lock @@ -2083,14 +2083,14 @@ brfs "^2.0.2" unicode-trie "^2.0.0" -"@foliojs-fork/pdfkit@^0.13.0": - version "0.13.0" - resolved "https://registry.yarnpkg.com/@foliojs-fork/pdfkit/-/pdfkit-0.13.0.tgz#54f5368d8cf74d8edc81a175ccda1fd9655f2db9" - integrity sha512-YXeG1fml9k97YNC9K8e292Pj2JzGt9uOIiBFuQFxHsdQ45BlxW+JU3RQK6JAvXU7kjhjP8rCcYvpk36JLD33sQ== +"@foliojs-fork/pdfkit@^0.14.0": + version "0.14.0" + resolved "https://registry.yarnpkg.com/@foliojs-fork/pdfkit/-/pdfkit-0.14.0.tgz#ed1868050edd2904284655f8dcddd56b49576c98" + integrity sha512-nMOiQAv6id89MT3tVTCgc7HxD5ZMANwio2o5yvs5sexQkC0KI3BLaLakpsrHmFfeGFAhqPmZATZGbJGXTUebpg== dependencies: "@foliojs-fork/fontkit" "^1.9.1" "@foliojs-fork/linebreak" "^1.1.1" - crypto-js "^4.0.0" + crypto-js "^4.2.0" png-js "^1.0.0" "@foliojs-fork/restructure@^2.0.2": @@ -4996,7 +4996,7 @@ crypto-browserify@^3.11.0: randombytes "^2.0.0" randomfill "^1.0.3" -crypto-js@^4.0.0: +crypto-js@^4.2.0: version "4.2.0" resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-4.2.0.tgz#4d931639ecdfd12ff80e8186dba6af2c2e856631" integrity sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q== @@ -10740,13 +10740,13 @@ pbkdf2@^3.0.3: safe-buffer "^5.0.1" sha.js "^2.4.8" -pdfmake@^0.2.7: - version "0.2.7" - resolved "https://registry.yarnpkg.com/pdfmake/-/pdfmake-0.2.7.tgz#a7a46532ffde032674929988393c20b075cf65e3" - integrity sha512-ClLpgx30H5G3EDvRW1MrA1Xih6YxEaSgIVFrOyBMgAAt62V+hxsyWAi6JNP7u1Fc5JKYAbpb4RRVw8Rhvmz5cQ== +pdfmake@^0.2.8: + version "0.2.8" + resolved "https://registry.yarnpkg.com/pdfmake/-/pdfmake-0.2.8.tgz#42263262e464d5d52e748317478dae9926387a61" + integrity sha512-lI+amfIaUL8CrPhndxFdhIgMj9JB49Sj4DARltKC1gLm/5NsPohZqfB+D+II8HymtPB6eugUFD5oBxmzO57qHA== dependencies: "@foliojs-fork/linebreak" "^1.1.1" - "@foliojs-fork/pdfkit" "^0.13.0" + "@foliojs-fork/pdfkit" "^0.14.0" iconv-lite "^0.6.3" xmldoc "^1.1.2"