From c8eb9d89e0f8b5ba22ac913e9709bbd0b09912e4 Mon Sep 17 00:00:00 2001
From: Ubuntu <ubuntu@ip-172-31-11-134.ec2.internal>
Date: Wed, 31 Jul 2024 13:02:52 +0000
Subject: [PATCH] upgraded hike version to fix cve of lodash

Signed-off-by: Ubuntu <ubuntu@ip-172-31-11-134.ec2.internal>
---
 src/supermarket/package-lock.json | 41 +++++++------------------------
 src/supermarket/package.json      |  5 ++++
 2 files changed, 14 insertions(+), 32 deletions(-)

diff --git a/src/supermarket/package-lock.json b/src/supermarket/package-lock.json
index bd4333932..5d27f04ca 100644
--- a/src/supermarket/package-lock.json
+++ b/src/supermarket/package-lock.json
@@ -1068,23 +1068,11 @@
       }
     },
     "node_modules/hike": {
-      "version": "0.1.4",
-      "resolved": "https://registry.npmjs.org/hike/-/hike-0.1.4.tgz",
-      "integrity": "sha512-IS3Nfjxt4uxkmLKLMne7MzHIfZ2Fac9WKHIQXpNegh4hHT4gdI0j7GfxTX+y/PN3Md2zB/Z3w4DhXNv7+5Cfaw==",
-      "dev": true,
-      "dependencies": {
-        "lodash": "~ 2.4.1"
-      }
-    },
-    "node_modules/hike/node_modules/lodash": {
-      "version": "2.4.2",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-2.4.2.tgz",
-      "integrity": "sha512-Kak1hi6/hYHGVPmdyiZijoQyz5x2iGVzs6w9GYB/HiXEtylY7tIoYEROMjvM1d9nXJqPOrG2MNPMn01bJ+S0Rw==",
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/hike/-/hike-1.0.2.tgz",
+      "integrity": "sha512-NZfNjV0LRwqSu5og1BTzY9OjQkYAcqaIZ1R+iRnOaI842yStQn1oF7D8fd1FuvrElOx2usvSBvVLsEzyBhBvVQ==",
       "dev": true,
-      "engines": [
-        "node",
-        "rhino"
-      ]
+      "license": "MIT"
     },
     "node_modules/http-errors": {
       "version": "1.8.1",
@@ -3605,21 +3593,10 @@
       "dev": true
     },
     "hike": {
-      "version": "0.1.4",
-      "resolved": "https://registry.npmjs.org/hike/-/hike-0.1.4.tgz",
-      "integrity": "sha512-IS3Nfjxt4uxkmLKLMne7MzHIfZ2Fac9WKHIQXpNegh4hHT4gdI0j7GfxTX+y/PN3Md2zB/Z3w4DhXNv7+5Cfaw==",
-      "dev": true,
-      "requires": {
-        "lodash": "~ 2.4.1"
-      },
-      "dependencies": {
-        "lodash": {
-          "version": "2.4.2",
-          "resolved": "https://registry.npmjs.org/lodash/-/lodash-2.4.2.tgz",
-          "integrity": "sha512-Kak1hi6/hYHGVPmdyiZijoQyz5x2iGVzs6w9GYB/HiXEtylY7tIoYEROMjvM1d9nXJqPOrG2MNPMn01bJ+S0Rw==",
-          "dev": true
-        }
-      }
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/hike/-/hike-1.0.2.tgz",
+      "integrity": "sha512-NZfNjV0LRwqSu5og1BTzY9OjQkYAcqaIZ1R+iRnOaI842yStQn1oF7D8fd1FuvrElOx2usvSBvVLsEzyBhBvVQ==",
+      "dev": true
     },
     "http-errors": {
       "version": "1.8.1",
@@ -4529,7 +4506,7 @@
       "integrity": "sha1-f0KNjk2z6KgwuS0VF8/oCaRI3UE=",
       "dev": true,
       "requires": {
-        "hike": "0.1.x"
+        "hike": "1.0.x"
       }
     },
     "sshpk": {
diff --git a/src/supermarket/package.json b/src/supermarket/package.json
index 30cadfed8..b2c033943 100644
--- a/src/supermarket/package.json
+++ b/src/supermarket/package.json
@@ -11,5 +11,10 @@
     "mocha": "^9.2.2",
     "phantomjs-prebuilt": "^2.1.16",
     "sprockets-chain": "0.0.16"
+  },
+  "overrides": {
+    "sprockets-chain@0.0.16": {
+      "hike": "1.0.x"
+    }
   }
 }