From 848cd4f208482b643aa5b8bd025184b76ddfda35 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 27 Nov 2024 06:53:02 +0000 Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6671926 --- package.json | 2 +- yarn.lock | 18 +++++++++++------- 2 files changed, 12 insertions(+), 8 deletions(-) diff --git a/package.json b/package.json index fa57551..ff28bfa 100644 --- a/package.json +++ b/package.json @@ -34,7 +34,7 @@ "heroku-postbuild": "yarn build" }, "dependencies": { - "@nestjs/common": "~7.6.18", + "@nestjs/common": "~9.0.0", "@nestjs/config": "~0.6.3", "@nestjs/core": "~7.6.18", "@nestjs/jwt": "~7.2.0", diff --git a/yarn.lock b/yarn.lock index 70befac..256c41b 100644 --- a/yarn.lock +++ b/yarn.lock @@ -750,14 +750,13 @@ webpack "5.28.0" webpack-node-externals "2.5.2" -"@nestjs/common@~7.6.18": - version "7.6.18" - resolved "https://registry.yarnpkg.com/@nestjs/common/-/common-7.6.18.tgz#d89e6d248985eec13af60507a8725cb2142d660a" - integrity sha512-BUJQHNhWzwWOkS4Ryndzd4HTeRObcAWV2Fh+ermyo3q3xYQQzNoEWclJVL/wZec8AONELwIJ+PSpWI53VP0leg== +"@nestjs/common@~9.0.0": + version "9.0.11" + resolved "https://registry.yarnpkg.com/@nestjs/common/-/common-9.0.11.tgz#5747cfbb5d94d909bc2894bf2a5bec83fca809c5" + integrity sha512-oYLIcOal3QOwcqt6goXovRNg8ZkalyOMjH0oYYzfJLrait6P7c6nAeWHu4qFDThY7GoZHEanLgji1qlqVEW09g== dependencies: - axios "0.21.1" iterare "1.2.1" - tslib "2.2.0" + tslib "2.4.0" uuid "8.3.2" "@nestjs/config@~0.6.3": @@ -1785,7 +1784,7 @@ avvio@^7.1.2: fastq "^1.6.1" queue-microtask "^1.1.2" -axios@0.21.1, axios@~0.21.1: +axios@~0.21.1: version "0.21.1" resolved "https://registry.yarnpkg.com/axios/-/axios-0.21.1.tgz#22563481962f4d6bde9a76d516ef0e5d3c09b2b8" integrity sha512-dKQiRHxGD9PPRIUNIWvZhPTPpl1rf/OxTYKsqKUDjBwYylTvV7SjSHJb9ratfyzM6wCdLCOYLzs73qpg5c4iGA== @@ -7069,6 +7068,11 @@ tslib@2.3.1: resolved "https://registry.yarnpkg.com/tslib/-/tslib-2.3.1.tgz#e8a335add5ceae51aa261d32a490158ef042ef01" integrity sha512-77EbyPPpMz+FRFRuAFlWMtmgUWGe9UOG2Z25NqCwiIjRhOf5iKGuzSe5P2w1laq+FkRy4p+PCuVkJSGkzTEKVw== +tslib@2.4.0: + version "2.4.0" + resolved "https://registry.yarnpkg.com/tslib/-/tslib-2.4.0.tgz#7cecaa7f073ce680a05847aa77be941098f36dc3" + integrity sha512-d6xOpEDfsi2CZVlPQzGeux8XMwLT9hssAsaPYExaQMuYskwb+x1x7J371tWlbBdWHroy99KnVB6qIkUbs5X3UQ== + tslib@^1.8.1, tslib@^1.9.0: version "1.14.1" resolved "https://registry.yarnpkg.com/tslib/-/tslib-1.14.1.tgz#cf2d38bdc34a134bcaf1091c41f6619e2f672d00"