From 1b1cc0092db8201c90ab4e02be5b0adc343c9b15 Mon Sep 17 00:00:00 2001 From: Jon Ursenbach Date: Mon, 27 Mar 2023 10:28:00 -0700 Subject: [PATCH] fix: memory leak in large file handling within openapi-parser (#784) --- package-lock.json | 56 +++++++++++++++++++++++------------------------ package.json | 4 ++-- 2 files changed, 30 insertions(+), 30 deletions(-) diff --git a/package-lock.json b/package-lock.json index d9a70b8d2..44942395b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -24,7 +24,7 @@ "mime-types": "^2.1.35", "node-fetch": "^2.6.1", "oas": "^20.2.0", - "oas-normalize": "^8.3.4", + "oas-normalize": "^8.4.0", "open": "^8.2.1", "ora": "^5.4.1", "parse-link-header": "^2.0.0", @@ -45,7 +45,7 @@ "@commitlint/config-conventional": "^17.4.2", "@readme/better-ajv-errors": "^1.5.0", "@readme/eslint-config": "^10.3.1", - "@readme/oas-examples": "^5.3.0", + "@readme/oas-examples": "^5.10.0", "@types/command-line-args": "^5.2.0", "@types/command-line-usage": "^5.0.2", "@types/config": "^3.3.0", @@ -1708,12 +1708,12 @@ } }, "node_modules/@readme/better-ajv-errors": { - "version": "1.5.0", - "resolved": "https://registry.npmjs.org/@readme/better-ajv-errors/-/better-ajv-errors-1.5.0.tgz", - "integrity": "sha512-dJLAlfN5ahAb6J5t+zCv0YeJsf4mrRHllwBb6pIYZa4yfFKs3lOSAN+i+ChebbpnqCkw7IrwzPz9vzk8p5mCEw==", + "version": "1.6.0", + "resolved": "https://registry.npmjs.org/@readme/better-ajv-errors/-/better-ajv-errors-1.6.0.tgz", + "integrity": "sha512-9gO9rld84Jgu13kcbKRU+WHseNhaVt76wYMeRDGsUGYxwJtI3RmEJ9LY9dZCYQGI8eUZLuxb5qDja0nqklpFjQ==", "dependencies": { "@babel/code-frame": "^7.16.0", - "@babel/runtime": "^7.17.8", + "@babel/runtime": "^7.21.0", "@humanwhocodes/momoa": "^2.0.3", "chalk": "^4.1.2", "json-to-ast": "^2.0.3", @@ -1782,16 +1782,16 @@ "dev": true }, "node_modules/@readme/openapi-parser": { - "version": "2.4.0", - "resolved": "https://registry.npmjs.org/@readme/openapi-parser/-/openapi-parser-2.4.0.tgz", - "integrity": "sha512-KZMzLYsruShysgLgGaLNQFkinTdQu+rmVjrshhYlviHvvU6k28KYu0aOJciIQSBY0u38QHYFi74gsxU0IsmO1Q==", + "version": "2.5.0", + "resolved": "https://registry.npmjs.org/@readme/openapi-parser/-/openapi-parser-2.5.0.tgz", + "integrity": "sha512-IbymbOqRuUzoIgxfAAR7XJt2FWl6n2yqN09fF5adacGm7W03siA3bj1Emql0X9D2T+RpBYz3x9zDsMhuoMP62A==", "dependencies": { "@apidevtools/openapi-schemas": "^2.1.0", "@apidevtools/swagger-methods": "^3.0.2", "@jsdevtools/ono": "^7.1.3", - "@readme/better-ajv-errors": "^1.5.0", + "@readme/better-ajv-errors": "^1.6.0", "@readme/json-schema-ref-parser": "^1.2.0", - "ajv": "^8.11.0", + "ajv": "^8.12.0", "ajv-draft-04": "^1.0.0", "call-me-maybe": "^1.0.1" }, @@ -7620,11 +7620,11 @@ } }, "node_modules/oas-normalize": { - "version": "8.3.4", - "resolved": "https://registry.npmjs.org/oas-normalize/-/oas-normalize-8.3.4.tgz", - "integrity": "sha512-aPc2Y+zBD5Sv/CGuv/g0FWCsq1Ze2Rle+Se4G/JbytzBDCoo0m/Krk6gEt+o5dDw7mwbsVtnumhBmOhTWj/a8g==", + "version": "8.4.0", + "resolved": "https://registry.npmjs.org/oas-normalize/-/oas-normalize-8.4.0.tgz", + "integrity": "sha512-ulFDPcnyrYR34RtprcTZ3dq6eek7wc0fwPmMDhgW82471VW32TRzv9AcO9+bC0Th0KMupkJeTV0fXm+uwgERhg==", "dependencies": { - "@readme/openapi-parser": "^2.4.0", + "@readme/openapi-parser": "^2.5.0", "@readme/postman-to-openapi": "^4.0.0", "js-yaml": "^4.1.0", "node-fetch": "^2.6.1", @@ -11412,12 +11412,12 @@ } }, "@readme/better-ajv-errors": { - "version": "1.5.0", - "resolved": "https://registry.npmjs.org/@readme/better-ajv-errors/-/better-ajv-errors-1.5.0.tgz", - "integrity": "sha512-dJLAlfN5ahAb6J5t+zCv0YeJsf4mrRHllwBb6pIYZa4yfFKs3lOSAN+i+ChebbpnqCkw7IrwzPz9vzk8p5mCEw==", + "version": "1.6.0", + "resolved": "https://registry.npmjs.org/@readme/better-ajv-errors/-/better-ajv-errors-1.6.0.tgz", + "integrity": "sha512-9gO9rld84Jgu13kcbKRU+WHseNhaVt76wYMeRDGsUGYxwJtI3RmEJ9LY9dZCYQGI8eUZLuxb5qDja0nqklpFjQ==", "requires": { "@babel/code-frame": "^7.16.0", - "@babel/runtime": "^7.17.8", + "@babel/runtime": "^7.21.0", "@humanwhocodes/momoa": "^2.0.3", "chalk": "^4.1.2", "json-to-ast": "^2.0.3", @@ -11473,16 +11473,16 @@ "dev": true }, "@readme/openapi-parser": { - "version": "2.4.0", - "resolved": "https://registry.npmjs.org/@readme/openapi-parser/-/openapi-parser-2.4.0.tgz", - "integrity": "sha512-KZMzLYsruShysgLgGaLNQFkinTdQu+rmVjrshhYlviHvvU6k28KYu0aOJciIQSBY0u38QHYFi74gsxU0IsmO1Q==", + "version": "2.5.0", + "resolved": "https://registry.npmjs.org/@readme/openapi-parser/-/openapi-parser-2.5.0.tgz", + "integrity": "sha512-IbymbOqRuUzoIgxfAAR7XJt2FWl6n2yqN09fF5adacGm7W03siA3bj1Emql0X9D2T+RpBYz3x9zDsMhuoMP62A==", "requires": { "@apidevtools/openapi-schemas": "^2.1.0", "@apidevtools/swagger-methods": "^3.0.2", "@jsdevtools/ono": "^7.1.3", - "@readme/better-ajv-errors": "^1.5.0", + "@readme/better-ajv-errors": "^1.6.0", "@readme/json-schema-ref-parser": "^1.2.0", - "ajv": "^8.11.0", + "ajv": "^8.12.0", "ajv-draft-04": "^1.0.0", "call-me-maybe": "^1.0.1" } @@ -15801,11 +15801,11 @@ } }, "oas-normalize": { - "version": "8.3.4", - "resolved": "https://registry.npmjs.org/oas-normalize/-/oas-normalize-8.3.4.tgz", - "integrity": "sha512-aPc2Y+zBD5Sv/CGuv/g0FWCsq1Ze2Rle+Se4G/JbytzBDCoo0m/Krk6gEt+o5dDw7mwbsVtnumhBmOhTWj/a8g==", + "version": "8.4.0", + "resolved": "https://registry.npmjs.org/oas-normalize/-/oas-normalize-8.4.0.tgz", + "integrity": "sha512-ulFDPcnyrYR34RtprcTZ3dq6eek7wc0fwPmMDhgW82471VW32TRzv9AcO9+bC0Th0KMupkJeTV0fXm+uwgERhg==", "requires": { - "@readme/openapi-parser": "^2.4.0", + "@readme/openapi-parser": "^2.5.0", "@readme/postman-to-openapi": "^4.0.0", "js-yaml": "^4.1.0", "node-fetch": "^2.6.1", diff --git a/package.json b/package.json index 8764166e4..4c1f08d10 100644 --- a/package.json +++ b/package.json @@ -50,7 +50,7 @@ "mime-types": "^2.1.35", "node-fetch": "^2.6.1", "oas": "^20.2.0", - "oas-normalize": "^8.3.4", + "oas-normalize": "^8.4.0", "open": "^8.2.1", "ora": "^5.4.1", "parse-link-header": "^2.0.0", @@ -68,7 +68,7 @@ "@commitlint/config-conventional": "^17.4.2", "@readme/better-ajv-errors": "^1.5.0", "@readme/eslint-config": "^10.3.1", - "@readme/oas-examples": "^5.3.0", + "@readme/oas-examples": "^5.10.0", "@types/command-line-args": "^5.2.0", "@types/command-line-usage": "^5.0.2", "@types/config": "^3.3.0",