fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 - https://snyk.io/vuln/SNYK-JS-ASYNC-2441827 - https://snyk.io/vuln/SNYK-JS-ES5EXT-6095076 - https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6141137 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6444610 - https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381 - https://snyk.io/vuln/SNYK-JS-COLORSTRING-1082939 - https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2332181 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795 - https://snyk.io/vuln/npm:debug:20170905 - https://snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676 - https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2396346
astroband · Sep 6, 2024 · bddd3be · bddd3be
1 parent 63df431
commit bddd3be
Show file tree

Hide file tree

Showing 2 changed files with 587 additions and 306 deletions.
diff --git a/package.json b/package.json
@@ -16,10 +16,10 @@
     "@astroband/graphql-postgres-subscriptions": "^1.0.10",
     "@elastic/elasticsearch": "^7.6.0",
     "@sentry/integrations": "^5.7.1",
-    "@sentry/node": "^5.7.1",
+    "@sentry/node": "^5.11.0",
     "apollo-datasource-rest": "^0.3.1",
     "apollo-server": "^2.14.2",
-    "axios": "^0.21.1",
+    "axios": "^1.6.8",
     "bignumber.js": "^8.0.1",
     "bluebird": "^3.5.3",
     "dotenv": "^6.0.0",
@@ -33,15 +33,15 @@
     "minimist": "^1.2.3",
     "object-dig": "^0.1.3",
     "pg": "^8.2.1",
-    "pg-monitor": "^1.1.0",
+    "pg-monitor": "^2.1.0",
     "pg-promise": "^8.7.4",
     "progress": "^2.0.3",
     "retry": "^0.12.0",
     "squel": "^5.12.2",
     "stellar-base": "^3.0.4",
-    "typeorm": "^0.2.17",
+    "typeorm": "^0.2.30",
     "typescript-memoize": "^1.0.0-alpha.3",
-    "winston": "^3.0.0"
+    "winston": "^3.3.4"
   },
   "devDependencies": {
     "@types/big.js": "^4.0.5",