From d1a7dab6a07dce306a9e0efc6f450d903d7fb1a7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 14 Nov 2023 17:06:50 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SWAGGERUIDIST-6056393 --- package-lock.json | 39 +++++++++++++++++---------------------- package.json | 2 +- 2 files changed, 18 insertions(+), 23 deletions(-) diff --git a/package-lock.json b/package-lock.json index c90e7dc..8ed9e6c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5,6 +5,7 @@ "requires": true, "packages": { "": { + "name": "typescript-rest", "version": "3.0.4", "license": "MIT", "dependencies": { @@ -24,7 +25,7 @@ "path": "^0.12.7", "reflect-metadata": "^0.1.13", "require-glob": "^4.0.0", - "swagger-ui-express": "^4.1.6", + "swagger-ui-express": "^4.2.0", "yamljs": "^0.3.0" }, "devDependencies": { @@ -2438,8 +2439,7 @@ "esprima": "^4.0.1", "estraverse": "^5.2.0", "esutils": "^2.0.2", - "optionator": "^0.8.1", - "source-map": "~0.6.1" + "optionator": "^0.8.1" }, "bin": { "escodegen": "bin/escodegen.js", @@ -3573,7 +3573,6 @@ "@types/node": "*", "anymatch": "^3.0.3", "fb-watchman": "^2.0.0", - "fsevents": "^2.3.2", "graceful-fs": "^4.2.4", "jest-regex-util": "^27.0.1", "jest-serializer": "^27.0.1", @@ -4123,7 +4122,6 @@ "resolved": "https://registry.npmjs.org/jsonfile/-/jsonfile-6.1.0.tgz", "integrity": "sha512-5dgndWOriYSm5cnYaJNhalLNDKOqFwyDB/rr1E9ZsGciGvKPs8R2xYGCacuf3z6K1YKDz182fd+fY3cn3pMqXQ==", "dependencies": { - "graceful-fs": "^4.1.6", "universalify": "^2.0.0" }, "optionalDependencies": { @@ -5463,16 +5461,16 @@ } }, "node_modules/swagger-ui-dist": { - "version": "3.50.0", - "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-3.50.0.tgz", - "integrity": "sha512-BklniOBPlvZ6M9oGkhUwOf5HvxhkHBIycXN3ndju8WlLmi1xfMSdOA2AR6pNswlwURzsZUe1rh80aUyjnpD+Zw==" + "version": "5.9.4", + "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-5.9.4.tgz", + "integrity": "sha512-Ppghvj6Q8XxH5xiSrUjEeCUitrasGtz7v9FCUIBR/4t89fACQ4FnUT9D0yfodUYhB+PrCmYmxwe/2jTDLslHDw==" }, "node_modules/swagger-ui-express": { - "version": "4.1.6", - "resolved": "https://registry.npmjs.org/swagger-ui-express/-/swagger-ui-express-4.1.6.tgz", - "integrity": "sha512-Xs2BGGudvDBtL7RXcYtNvHsFtP1DBFPMJFRxHe5ez/VG/rzVOEjazJOOSc/kSCyxreCTKfJrII6MJlL9a6t8vw==", + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/swagger-ui-express/-/swagger-ui-express-4.2.0.tgz", + "integrity": "sha512-znrHTwh9UpvsjqgWopA4noIet7mi7UGuIYZ465YfUDKQ5Dpas0jxnkfUKCo+0aB17YCBv26AhIjiQYDV4uvJFA==", "dependencies": { - "swagger-ui-dist": "^3.18.1" + "swagger-ui-dist": ">3.52.5" }, "engines": { "node": ">= v0.10.32" @@ -6088,9 +6086,6 @@ "integrity": "sha1-h3Gq4HmbZAdrdmQPygWPnBDjPss=", "dev": true, "peer": true, - "dependencies": { - "graceful-fs": "^4.1.6" - }, "optionalDependencies": { "graceful-fs": "^4.1.6" } @@ -10719,16 +10714,16 @@ } }, "swagger-ui-dist": { - "version": "3.50.0", - "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-3.50.0.tgz", - "integrity": "sha512-BklniOBPlvZ6M9oGkhUwOf5HvxhkHBIycXN3ndju8WlLmi1xfMSdOA2AR6pNswlwURzsZUe1rh80aUyjnpD+Zw==" + "version": "5.9.4", + "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-5.9.4.tgz", + "integrity": "sha512-Ppghvj6Q8XxH5xiSrUjEeCUitrasGtz7v9FCUIBR/4t89fACQ4FnUT9D0yfodUYhB+PrCmYmxwe/2jTDLslHDw==" }, "swagger-ui-express": { - "version": "4.1.6", - "resolved": "https://registry.npmjs.org/swagger-ui-express/-/swagger-ui-express-4.1.6.tgz", - "integrity": "sha512-Xs2BGGudvDBtL7RXcYtNvHsFtP1DBFPMJFRxHe5ez/VG/rzVOEjazJOOSc/kSCyxreCTKfJrII6MJlL9a6t8vw==", + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/swagger-ui-express/-/swagger-ui-express-4.2.0.tgz", + "integrity": "sha512-znrHTwh9UpvsjqgWopA4noIet7mi7UGuIYZ465YfUDKQ5Dpas0jxnkfUKCo+0aB17YCBv26AhIjiQYDV4uvJFA==", "requires": { - "swagger-ui-dist": "^3.18.1" + "swagger-ui-dist": ">3.52.5" } }, "symbol-tree": { diff --git a/package.json b/package.json index df85834..789cc76 100644 --- a/package.json +++ b/package.json @@ -64,7 +64,7 @@ "path": "^0.12.7", "reflect-metadata": "^0.1.13", "require-glob": "^4.0.0", - "swagger-ui-express": "^4.1.6", + "swagger-ui-express": "^4.2.0", "yamljs": "^0.3.0" }, "devDependencies": {