From 004acada9b37fd1fca39ced70c397275b8c7c755 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 15 Oct 2024 05:37:10 +0000 Subject: [PATCH] fix: src/frontend/package.json & src/frontend/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 --- src/frontend/package-lock.json | 63 ++++++++++++++-------------------- src/frontend/package.json | 2 +- 2 files changed, 27 insertions(+), 38 deletions(-) diff --git a/src/frontend/package-lock.json b/src/frontend/package-lock.json index 8f17bba..d8ee6c1 100644 --- a/src/frontend/package-lock.json +++ b/src/frontend/package-lock.json @@ -28,7 +28,7 @@ "@opentelemetry/sdk-trace-base": "1.15.0", "@opentelemetry/sdk-trace-node": "1.15.0", "@opentelemetry/sdk-trace-web": "1.15.0", - "cookies-next": "^2.1.1", + "cookies-next": "^4.3.0", "currency-symbol-map": "5.1.0", "dotenv": "16.0.3", "dotenv-expand": "10.0.0", @@ -2347,9 +2347,10 @@ "integrity": "sha512-v6LCdKfK6BwcqMo+wYW05rLS12S0ZO0Fl4w1h4aaZMD7bqT3gVUns6FvLJKGZHQmYn3SX55JWGpziwJRwVgutA==" }, "node_modules/@types/cookie": { - "version": "0.4.1", - "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz", - "integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q==" + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-4Kh9a6B2bQciAhf7FSuMRRkUWecJgJu9nPnx3yzpsfXX/c50REIqpHY4C82bXP90qrLtXtkDxTZosYO3UpOwlA==", + "license": "MIT" }, "node_modules/@types/cookies": { "version": "0.7.7", @@ -3546,28 +3547,24 @@ "license": "MIT" }, "node_modules/cookie": { - "version": "0.4.2", - "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.2.tgz", - "integrity": "sha512-aSWTXFzaKWkvHO1Ny/s+ePFpvKsPnjc551iI41v3ny/ow6tBG5Vd+FuqGNhh1LxOmVzOlGUriIlOaokOvhaStA==", + "version": "0.7.2", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz", + "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==", + "license": "MIT", "engines": { "node": ">= 0.6" } }, "node_modules/cookies-next": { - "version": "2.1.2", - "resolved": "https://registry.npmjs.org/cookies-next/-/cookies-next-2.1.2.tgz", - "integrity": "sha512-czxcfqVaQlo0Q/3xMgp/2jpspsuLJrIm6D37wlmibP3DAcYT315c8UxQmDMohhAT/GRWpaHzpDEFANBjzTFQGg==", + "version": "4.3.0", + "resolved": "https://registry.npmjs.org/cookies-next/-/cookies-next-4.3.0.tgz", + "integrity": "sha512-XxeCwLR30cWwRd94sa9X5lRCDLVujtx73tv+N0doQCFIDl83fuuYdxbu/WQUt9aSV7EJx7bkMvJldjvzuFqr4w==", + "license": "MIT", "dependencies": { - "@types/cookie": "^0.4.1", - "@types/node": "^16.10.2", - "cookie": "^0.4.0" + "@types/cookie": "^0.6.0", + "cookie": "^0.7.0" } }, - "node_modules/cookies-next/node_modules/@types/node": { - "version": "16.18.39", - "resolved": "https://registry.npmjs.org/@types/node/-/node-16.18.39.tgz", - "integrity": "sha512-8q9ZexmdYYyc5/cfujaXb4YOucpQxAV4RMG0himLyDUOEr8Mr79VrqsFI+cQ2M2h89YIuy95lbxuYjxT4Hk4kQ==" - }, "node_modules/core-js-pure": { "version": "3.23.5", "dev": true, @@ -9099,9 +9096,9 @@ "integrity": "sha512-v6LCdKfK6BwcqMo+wYW05rLS12S0ZO0Fl4w1h4aaZMD7bqT3gVUns6FvLJKGZHQmYn3SX55JWGpziwJRwVgutA==" }, "@types/cookie": { - "version": "0.4.1", - "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz", - "integrity": "sha512-XW/Aa8APYr6jSVVA1y/DEIZX0/GMKLEVekNG727R8cs56ahETkRAy/3DR7+fJyh7oUgGwNQaRfXCun0+KbWY7Q==" + "version": "0.6.0", + "resolved": "https://registry.npmjs.org/@types/cookie/-/cookie-0.6.0.tgz", + "integrity": "sha512-4Kh9a6B2bQciAhf7FSuMRRkUWecJgJu9nPnx3yzpsfXX/c50REIqpHY4C82bXP90qrLtXtkDxTZosYO3UpOwlA==" }, "@types/cookies": { "version": "0.7.7", @@ -9913,25 +9910,17 @@ "version": "0.0.1" }, "cookie": { - "version": "0.4.2", - "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.2.tgz", - "integrity": "sha512-aSWTXFzaKWkvHO1Ny/s+ePFpvKsPnjc551iI41v3ny/ow6tBG5Vd+FuqGNhh1LxOmVzOlGUriIlOaokOvhaStA==" + "version": "0.7.2", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz", + "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==" }, "cookies-next": { - "version": "2.1.2", - "resolved": "https://registry.npmjs.org/cookies-next/-/cookies-next-2.1.2.tgz", - "integrity": "sha512-czxcfqVaQlo0Q/3xMgp/2jpspsuLJrIm6D37wlmibP3DAcYT315c8UxQmDMohhAT/GRWpaHzpDEFANBjzTFQGg==", + "version": "4.3.0", + "resolved": "https://registry.npmjs.org/cookies-next/-/cookies-next-4.3.0.tgz", + "integrity": "sha512-XxeCwLR30cWwRd94sa9X5lRCDLVujtx73tv+N0doQCFIDl83fuuYdxbu/WQUt9aSV7EJx7bkMvJldjvzuFqr4w==", "requires": { - "@types/cookie": "^0.4.1", - "@types/node": "^16.10.2", - "cookie": "^0.4.0" - }, - "dependencies": { - "@types/node": { - "version": "16.18.39", - "resolved": "https://registry.npmjs.org/@types/node/-/node-16.18.39.tgz", - "integrity": "sha512-8q9ZexmdYYyc5/cfujaXb4YOucpQxAV4RMG0himLyDUOEr8Mr79VrqsFI+cQ2M2h89YIuy95lbxuYjxT4Hk4kQ==" - } + "@types/cookie": "^0.6.0", + "cookie": "^0.7.0" } }, "core-js-pure": { diff --git a/src/frontend/package.json b/src/frontend/package.json index a4e4aa2..f501f09 100644 --- a/src/frontend/package.json +++ b/src/frontend/package.json @@ -31,7 +31,7 @@ "@opentelemetry/resource-detector-aws": "1.3.0", "@opentelemetry/resource-detector-container": "0.3.0", "@opentelemetry/resource-detector-gcp": "0.29.0", - "cookies-next": "^2.1.1", + "cookies-next": "^4.3.0", "currency-symbol-map": "5.1.0", "dotenv": "16.0.3", "dotenv-expand": "10.0.0",