From 1a95c5a1943a6e41dfe7771466273fbd3d728609 Mon Sep 17 00:00:00 2001 From: Avery Harnish Date: Tue, 12 Jan 2021 11:14:23 -0600 Subject: [PATCH] chore(npm): patches security vulnerability (#161) --- installers/npm/package-lock.json | 46 +++++++++++--------------------- installers/npm/package.json | 2 +- 2 files changed, 16 insertions(+), 32 deletions(-) diff --git a/installers/npm/package-lock.json b/installers/npm/package-lock.json index 8f7c43170..824f17e14 100644 --- a/installers/npm/package-lock.json +++ b/installers/npm/package-lock.json @@ -5,11 +5,11 @@ "requires": true, "dependencies": { "axios": { - "version": "0.19.2", - "resolved": "https://registry.npmjs.org/axios/-/axios-0.19.2.tgz", - "integrity": "sha512-fjgm5MvRHLhx+osE2xoekY70AhARk3a6hkN+3Io1jc00jtquGvxYlKlsFUhmUET0V5te6CcZI7lcv2Ym61mjHA==", + "version": "0.21.1", + "resolved": "https://registry.npmjs.org/axios/-/axios-0.21.1.tgz", + "integrity": "sha512-dKQiRHxGD9PPRIUNIWvZhPTPpl1rf/OxTYKsqKUDjBwYylTvV7SjSHJb9ratfyzM6wCdLCOYLzs73qpg5c4iGA==", "requires": { - "follow-redirects": "1.5.10" + "follow-redirects": "^1.10.0" } }, "balanced-match": { @@ -18,13 +18,13 @@ "integrity": "sha1-ibTRmasr7kneFk6gK4nORi1xt2c=" }, "binary-install": { - "version": "0.1.0", - "resolved": "https://registry.npmjs.org/binary-install/-/binary-install-0.1.0.tgz", - "integrity": "sha512-f5y8Iyh1PPu/zUYKGt7qXOCuZv8tiAiyluXQokmeOC5leWAyBKqWD3T1QPx0iRRvHbRCO+v/VU+5+ai5Keswmg==", + "version": "0.1.1", + "resolved": "https://registry.npmjs.org/binary-install/-/binary-install-0.1.1.tgz", + "integrity": "sha512-DqED0D/6LrS+BHDkKn34vhRqOGjy5gTMgvYZsGK2TpNbdPuz4h+MRlNgGv5QBRd7pWq/jylM4eKNCizgAq3kNQ==", "requires": { - "axios": "^0.19.2", + "axios": "^0.21.1", "rimraf": "^3.0.2", - "tar": "^6.0.2" + "tar": "^6.1.0" } }, "brace-expansion": { @@ -60,14 +60,6 @@ "easy-table": "1.1.0" } }, - "debug": { - "version": "3.1.0", - "resolved": "https://registry.npmjs.org/debug/-/debug-3.1.0.tgz", - "integrity": "sha512-OX8XqP7/1a9cqkxYw2yXss15f26NKWBpDXQd0/uK/KPqdQhxbPa994hnzjcE2VqQpDslf55723cKPUOGSmMY3g==", - "requires": { - "ms": "2.0.0" - } - }, "defaults": { "version": "1.0.3", "resolved": "https://registry.npmjs.org/defaults/-/defaults-1.0.3.tgz", @@ -86,12 +78,9 @@ } }, "follow-redirects": { - "version": "1.5.10", - "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.5.10.tgz", - "integrity": "sha512-0V5l4Cizzvqt5D44aTXbFZz+FtyXV1vrDN6qrelxtfYQKW0KO0W2T/hkE8xvGa/540LkZlkaUjO4ailYTFtHVQ==", - "requires": { - "debug": "=3.1.0" - } + "version": "1.13.1", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.13.1.tgz", + "integrity": "sha512-SSG5xmZh1mkPGyKzjZP8zLjltIfpW32Y5QpdNJyjcfGxK3qo3NDDkZOZSFiGn1A6SclQxY9GzEwAHQ3dmYRWpg==" }, "fs-minipass": { "version": "2.1.0", @@ -163,11 +152,6 @@ "resolved": "https://registry.npmjs.org/mkdirp/-/mkdirp-1.0.4.tgz", "integrity": "sha512-vVqVZQyf3WLx2Shd0qJ9xuvqgAyKPLAiqITEtqW0oIUjzo3PePDd6fW9iFz30ef7Ysp/oiWqbhszeGWW2T6Gzw==" }, - "ms": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", - "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g=" - }, "once": { "version": "1.4.0", "resolved": "https://registry.npmjs.org/once/-/once-1.4.0.tgz", @@ -196,9 +180,9 @@ } }, "tar": { - "version": "6.0.5", - "resolved": "https://registry.npmjs.org/tar/-/tar-6.0.5.tgz", - "integrity": "sha512-0b4HOimQHj9nXNEAA7zWwMM91Zhhba3pspja6sQbgTpynOJf+bkjBnfybNYzbpLbnwXnbyB4LOREvlyXLkCHSg==", + "version": "6.1.0", + "resolved": "https://registry.npmjs.org/tar/-/tar-6.1.0.tgz", + "integrity": "sha512-DUCttfhsnLCjwoDoFcI+B2iJgYa93vBnDUATYEeRx6sntCTdN01VnqsIuTlALXla/LWooNg0yEGeB+Y8WdFxGA==", "requires": { "chownr": "^2.0.0", "fs-minipass": "^2.0.0", diff --git a/installers/npm/package.json b/installers/npm/package.json index 3ca81acc8..7d965600a 100644 --- a/installers/npm/package.json +++ b/installers/npm/package.json @@ -31,7 +31,7 @@ }, "homepage": "https://github.com/apollographql/rover#readme", "dependencies": { - "binary-install": "^0.1.0", + "binary-install": "^0.1.1", "console.table": "^0.10.0" }, "devDependencies": {