From 016f06504cd2b2e9b2e94e191fcb49a60d4f2937 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 1 Aug 2024 09:10:02 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BOOTSTRAP-7444593 --- package-lock.json | 39 +++++++++++---------------------------- package.json | 2 +- 2 files changed, 12 insertions(+), 29 deletions(-) diff --git a/package-lock.json b/package-lock.json index 9a32c0d..e39d7db 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "bravue", - "version": "0.15.1", + "version": "0.16.0", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "bravue", - "version": "0.15.1", + "version": "0.16.0", "dependencies": { "@coreui/vue": "^4.4.0", "@fortawesome/fontawesome-svg-core": "^1.2.36", @@ -15,7 +15,7 @@ "@fortawesome/vue-fontawesome": "^3.0.0-4", "@vue/cli": "^5.0.0-rc.0", "axios": "^0.23.0", - "bootstrap": "^4.6.0", + "bootstrap": "^5.0.0", "colors": "1.4.0", "core-js": "^3.6.5", "d3": "^7.1.1", @@ -5018,16 +5018,16 @@ "dev": true }, "node_modules/bootstrap": { - "version": "4.6.1", - "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-4.6.1.tgz", - "integrity": "sha512-0dj+VgI9Ecom+rvvpNZ4MUZJz8dcX7WCX+eTID9+/8HgOkv3dsRzi8BGeZJCQU6flWQVYxwTQnEZFrmJSEO7og==", + "version": "5.0.0", + "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-5.0.0.tgz", + "integrity": "sha512-tmhPET9B9qCl8dCofvHeiIhi49iBt0EehmIsziZib65k1erBW1rHhj2s/2JsuQh5Pq+xz2E9bEbzp9B7xHG+VA==", + "license": "MIT", "funding": { "type": "opencollective", "url": "https://opencollective.com/bootstrap" }, "peerDependencies": { - "jquery": "1.9.1 - 3", - "popper.js": "^1.16.1" + "@popperjs/core": "^2.9.2" } }, "node_modules/boxen": { @@ -13281,17 +13281,6 @@ "node": ">=10" } }, - "node_modules/popper.js": { - "version": "1.16.1", - "resolved": "https://registry.npmjs.org/popper.js/-/popper.js-1.16.1.tgz", - "integrity": "sha512-Wb4p1J4zyFTbM+u6WuO4XstYx4Ky9Cewe4DWrel7B0w6VVICvPwdOpotjzcf6eD8TsckVnIMNONQyPIUFOUbCQ==", - "deprecated": "You can find the new Popper v2 at @popperjs/core, this package is dedicated to the legacy v1", - "peer": true, - "funding": { - "type": "opencollective", - "url": "https://opencollective.com/popperjs" - } - }, "node_modules/portfinder": { "version": "1.0.28", "resolved": "https://registry.npmjs.org/portfinder/-/portfinder-1.0.28.tgz", @@ -21928,9 +21917,9 @@ "dev": true }, "bootstrap": { - "version": "4.6.1", - "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-4.6.1.tgz", - "integrity": "sha512-0dj+VgI9Ecom+rvvpNZ4MUZJz8dcX7WCX+eTID9+/8HgOkv3dsRzi8BGeZJCQU6flWQVYxwTQnEZFrmJSEO7og==", + "version": "5.0.0", + "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-5.0.0.tgz", + "integrity": "sha512-tmhPET9B9qCl8dCofvHeiIhi49iBt0EehmIsziZib65k1erBW1rHhj2s/2JsuQh5Pq+xz2E9bEbzp9B7xHG+VA==", "requires": {} }, "boxen": { @@ -28092,12 +28081,6 @@ "find-up": "^5.0.0" } }, - "popper.js": { - "version": "1.16.1", - "resolved": "https://registry.npmjs.org/popper.js/-/popper.js-1.16.1.tgz", - "integrity": "sha512-Wb4p1J4zyFTbM+u6WuO4XstYx4Ky9Cewe4DWrel7B0w6VVICvPwdOpotjzcf6eD8TsckVnIMNONQyPIUFOUbCQ==", - "peer": true - }, "portfinder": { "version": "1.0.28", "resolved": "https://registry.npmjs.org/portfinder/-/portfinder-1.0.28.tgz", diff --git a/package.json b/package.json index 7274a43..d1a9637 100644 --- a/package.json +++ b/package.json @@ -20,7 +20,7 @@ "@fortawesome/vue-fontawesome": "^3.0.0-4", "@vue/cli": "^5.0.0-rc.0", "axios": "^0.23.0", - "bootstrap": "^4.6.0", + "bootstrap": "^5.0.0", "colors": "1.4.0", "core-js": "^3.6.5", "d3": "^7.1.1",