From e80402d536060ec8ffa51f0055f7a33a12c4d487 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 23 Sep 2024 09:04:47 +0000 Subject: [PATCH] fix: upgrade multiple dependencies with Snyk Snyk has created this PR to upgrade: - nanoid from 3.3.4 to 3.3.7. See this package in yarn: - node-fetch from 2.6.12 to 2.7.0. See this package in yarn: See this project in Snyk: https://app.snyk.io/org/steelarc/project/e1665f8d-6d79-496e-a748-50f719088ff3?utm_source=github-enterprise&utm_medium=referral&page=upgrade-pr --- package.json | 4 ++-- yarn.lock | 19 ++++++++++++------- 2 files changed, 14 insertions(+), 9 deletions(-) diff --git a/package.json b/package.json index 7cd36a5..d36540a 100644 --- a/package.json +++ b/package.json @@ -96,8 +96,8 @@ "depcheck/@babel/parser": "7.16.4" }, "dependencies": { - "nanoid": "^3.3.4", - "node-fetch": "2.6.12", + "nanoid": "^3.3.7", + "node-fetch": "2.7.0", "seedrandom": "^3.0.5" }, "devDependencies": { diff --git a/yarn.lock b/yarn.lock index c9802ed..752f2bf 100644 --- a/yarn.lock +++ b/yarn.lock @@ -11616,6 +11616,11 @@ nanoid@^3.3.4: resolved "https://registry.yarnpkg.com/nanoid/-/nanoid-3.3.4.tgz#730b67e3cd09e2deacf03c027c81c9d9dbc5e8ab" integrity sha512-MqBkQh/OHTS2egovRtLk45wEyNXwF+cokD+1YPf9u5VfJiRdAiRwB2froX5Co9Rh20xs4siNPm8naNotSD6RBw== +nanoid@^3.3.7: + version "3.3.7" + resolved "https://registry.yarnpkg.com/nanoid/-/nanoid-3.3.7.tgz#d0c301a691bc8d54efa0a2226ccf3fe2fd656bd8" + integrity sha512-eSRppjcPIatRIMC1U6UngP8XFcz8MQWGQdt1MTBQ7NaAmvXDfvNxbvWV3x2y6CdEUciCSsDHDQZbhYaB8QEo2g== + nanomatch@^1.2.9: version "1.2.13" resolved "https://registry.yarnpkg.com/nanomatch/-/nanomatch-1.2.13.tgz#b87a8aa4fc0de8fe6be88895b38983ff265bd119" @@ -11705,13 +11710,6 @@ node-abi@^2.7.0: dependencies: semver "^5.4.1" -node-fetch@2.6.12: - version "2.6.12" - resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.6.12.tgz#02eb8e22074018e3d5a83016649d04df0e348fba" - integrity sha512-C/fGU2E8ToujUivIO0H+tpQ6HWo4eEmchoPIoXtxCrVghxdKq+QOHqEZW7tuP3KlV3bC8FRMO5nMCC7Zm1VP6g== - dependencies: - whatwg-url "^5.0.0" - node-fetch@2.6.7: version "2.6.7" resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.6.7.tgz#24de9fba827e3b4ae44dc8b20256a379160052ad" @@ -11719,6 +11717,13 @@ node-fetch@2.6.7: dependencies: whatwg-url "^5.0.0" +node-fetch@2.7.0: + version "2.7.0" + resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.7.0.tgz#d0f0fa6e3e2dc1d27efcd8ad99d550bda94d187d" + integrity sha512-c4FRfUm/dbcWZ7U+1Wq0AwCyFL+3nt2bEw05wfxSz+DWpWsitgmSgYmy2dQdWyKC1694ELPqMs/YzUSNozLt8A== + dependencies: + whatwg-url "^5.0.0" + node-forge@^0.10.0: version "0.10.0" resolved "https://registry.yarnpkg.com/node-forge/-/node-forge-0.10.0.tgz#32dea2afb3e9926f02ee5ce8794902691a676bf3"