From cb00225f345c3d96cf1dbf407a694908a90c0a1b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 17 Jan 2022 00:56:30 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MARKED-2342073 - https://snyk.io/vuln/SNYK-JS-MARKED-2342082 --- package-lock.json | 12 +++++++++--- package.json | 2 +- 2 files changed, 10 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index d9f14eb094053..53c5f8481eeda 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3817,6 +3817,12 @@ "integrity": "sha512-+WA2/1sPmDj1dlvvJmB5G6JKfY9dpn7EVBUL06+y6PoljPkh+6V1QihwxNkbcGxCRjt2b0F9K0taiCuo7MbdFQ==", "dev": true }, + "marked": { + "version": "2.1.3", + "resolved": "https://registry.npmjs.org/marked/-/marked-2.1.3.tgz", + "integrity": "sha512-/Q+7MGzaETqifOMWYEA7HVMaZb4XbcRfaOzcSsHZEith83KGlvaSG33u0SKu89Mj5h+T8V2hM+8O45Qc5XTgwA==", + "dev": true + }, "meow": { "version": "9.0.0", "resolved": "https://registry.npmjs.org/meow/-/meow-9.0.0.tgz", @@ -4340,9 +4346,9 @@ } }, "marked": { - "version": "2.1.1", - "resolved": "https://registry.npmjs.org/marked/-/marked-2.1.1.tgz", - "integrity": "sha512-5XFS69o9CzDpQDSpUYC+AN2xvq8yl1EGa5SG/GI1hP78/uTeo3PDfiDNmsUyiahpyhToDDJhQk7fNtJsga+KVw==" + "version": "4.0.10", + "resolved": "https://registry.npmjs.org/marked/-/marked-4.0.10.tgz", + "integrity": "sha512-+QvuFj0nGgO970fySghXGmuw+Fd0gD2x3+MqCWLIPf5oxdv1Ka6b2q+z9RP01P/IaKPMEramy+7cNy/Lw8c3hw==" }, "mathml-tag-names": { "version": "2.1.3", diff --git a/package.json b/package.json index 673a541b6d392..b09e5d5c7b18e 100644 --- a/package.json +++ b/package.json @@ -44,7 +44,7 @@ "jstransformer-handlebars": "^1.1.0", "junk": "^3.1.0", "lodash.defaultsdeep": "^4.6.1", - "marked": "^2.1.1", + "marked": "^4.0.10", "metalsmith": "^2.3.0", "metalsmith-collections": "^0.9.0", "metalsmith-discover-helpers": "^0.1.1",