From a21830b867ae19503a9f4aabab42a928bd3cb94e Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 15 Nov 2022 17:35:23 +0000 Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-GOT-2932019 --- package.json | 2 +- yarn.lock | 13 +++++++++---- 2 files changed, 10 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index ff820a6c..acf1c0f0 100644 --- a/package.json +++ b/package.json @@ -14,7 +14,7 @@ "dependencies": { "@salesforce/core": "^3.24.0", "@salesforce/kit": "^1.7.1", - "got": "^11.8.2", + "got": "^11.8.5", "mime-types": "^2.1.27", "proxy-agent": "^5.0.0", "proxy-from-env": "^1.1.0", diff --git a/yarn.lock b/yarn.lock index 60725f48..2f28aedd 100644 --- a/yarn.lock +++ b/yarn.lock @@ -3842,10 +3842,10 @@ globby@^11.0.1, globby@^11.0.3, globby@^11.1.0: merge2 "^1.4.1" slash "^3.0.0" -got@^11.8.2: - version "11.8.3" - resolved "https://registry.npmjs.org/got/-/got-11.8.3.tgz" - integrity sha512-7gtQ5KiPh1RtGS9/Jbv1ofDpBFuq42gyfEib+ejaRBJuj/3tQFeR5+gw57e4ipaU8c/rCjvX6fkQz2lyDlGAOg== +got@^11.8.5: + version "11.8.5" + resolved "https://registry.yarnpkg.com/got/-/got-11.8.5.tgz#ce77d045136de56e8f024bebb82ea349bc730046" + integrity sha512-o0Je4NvQObAuZPHLFoRSkdG2lTgtcynqymzg2Vupdx6PorhaT5MCbIyXG6d4D94kk8ZG57QeosgdiqfJWhEhlQ== dependencies: "@sindresorhus/is" "^4.0.0" "@szmarczak/http-timer" "^4.0.5" @@ -4077,6 +4077,11 @@ husky@^7.0.4: resolved "https://registry.npmjs.org/husky/-/husky-7.0.4.tgz" integrity sha512-vbaCKN2QLtP/vD4yvs6iz6hBEo6wkSzs8HpRah1Z6aGmF2KW5PdYuAd7uX5a+OyBZHBhd+TFLqgjUgytQr4RvQ== +husky@^8.0.0: + version "8.0.2" + resolved "https://registry.yarnpkg.com/husky/-/husky-8.0.2.tgz#5816a60db02650f1f22c8b69b928fd6bcd77a236" + integrity sha512-Tkv80jtvbnkK3mYWxPZePGFpQ/tT3HNSs/sasF9P2YfkMezDl3ON37YN6jUUI4eTg5LcyVynlb6r4eyvOmspvg== + hyperlinker@^1.0.0: version "1.0.0" resolved "https://registry.npmjs.org/hyperlinker/-/hyperlinker-1.0.0.tgz"