From c20f15125179cc2e81268888d2cebe245bac987c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 26 Nov 2024 21:48:39 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6671926 --- package-lock.json | 116 +++++++--------------------------------------- package.json | 2 +- 2 files changed, 17 insertions(+), 101 deletions(-) diff --git a/package-lock.json b/package-lock.json index 1711bcdfc..63dc5cd0e 100644 --- a/package-lock.json +++ b/package-lock.json @@ -22,7 +22,7 @@ "@segment/top-domain": "3.0.1", "@vespaiach/axios-fetch-adapter": "0.3.1", "assert": "2.1.0", - "axios": "1.7.7", + "axios": "^1.7.8", "axios-retry": "4.5.0", "component-each": "0.2.6", "component-emitter": "2.0.0", @@ -2123,35 +2123,6 @@ "integrity": "sha512-0hYQ8SB4Db5zvZB4axdMHGwEaQjkZzFjQiN9LVYvIFB2nSUHW9tYpxWriPrWDASIxiaXax83REcLxuSdnGPZtw==", "dev": true }, - "node_modules/@bugsnag/browser": { - "version": "6.5.2", - "resolved": "https://registry.npmjs.org/@bugsnag/browser/-/browser-6.5.2.tgz", - "integrity": "sha512-XFKKorJc92ivLnlHHhLiPvkP03tZ5y7n0Z2xO6lOU7t+jWF5YapgwqQAda/TWvyYO38B/baWdnOpWMB3QmjhkA==", - "dev": true - }, - "node_modules/@bugsnag/js": { - "version": "6.5.2", - "resolved": "https://registry.npmjs.org/@bugsnag/js/-/js-6.5.2.tgz", - "integrity": "sha512-4ibw624fM5+Y/WSuo3T/MsJVtslsPV8X0MxFuRxdvpKVUXX216d8hN8E/bG4hr7aipqQOGhBYDqSzeL2wgmh0Q==", - "dev": true, - "dependencies": { - "@bugsnag/browser": "^6.5.2", - "@bugsnag/node": "^6.5.2" - } - }, - "node_modules/@bugsnag/node": { - "version": "6.5.2", - "resolved": "https://registry.npmjs.org/@bugsnag/node/-/node-6.5.2.tgz", - "integrity": "sha512-KQ1twKoOttMCYsHv7OXUVsommVcrk6RGQ5YoZGlTbREhccbzsvjbiXPKiY31Qc7OXKvaJwSXhnOKrQTpRleFUg==", - "dev": true, - "dependencies": { - "byline": "^5.0.0", - "error-stack-parser": "^2.0.2", - "iserror": "^0.0.2", - "pump": "^3.0.0", - "stack-generator": "^2.0.3" - } - }, "node_modules/@bundled-es-modules/cookie": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/@bundled-es-modules/cookie/-/cookie-2.0.0.tgz", @@ -6036,38 +6007,6 @@ "integrity": "sha512-zt6OdqaDoOnJ1ZYsCYGt9YmWzDXl4vQdKTyJev62gFhRGKdx7mcT54V9KIjg+d2wi9EXsPvAPKe7i7WjfVWB8g==", "dev": true }, - "node_modules/@rudderstack/analytics-js": { - "resolved": "packages/analytics-js", - "link": true - }, - "node_modules/@rudderstack/analytics-js-common": { - "resolved": "packages/analytics-js-common", - "link": true - }, - "node_modules/@rudderstack/analytics-js-cookies": { - "resolved": "packages/analytics-js-cookies", - "link": true - }, - "node_modules/@rudderstack/analytics-js-integrations": { - "resolved": "packages/analytics-js-integrations", - "link": true - }, - "node_modules/@rudderstack/analytics-js-loading-scripts": { - "resolved": "packages/loading-scripts", - "link": true - }, - "node_modules/@rudderstack/analytics-js-plugins": { - "resolved": "packages/analytics-js-plugins", - "link": true - }, - "node_modules/@rudderstack/analytics-js-sanity-suite": { - "resolved": "packages/sanity-suite", - "link": true - }, - "node_modules/@rudderstack/analytics-js-service-worker": { - "resolved": "packages/analytics-js-service-worker", - "link": true - }, "node_modules/@segment/localstorage-retry": { "version": "1.3.0", "resolved": "https://registry.npmjs.org/@segment/localstorage-retry/-/localstorage-retry-1.3.0.tgz", @@ -6754,12 +6693,6 @@ "integrity": "sha512-K0VQKziLUWkVKiRVrx4a40iPaxTUefQmjtkQofBkYRcoaaL/8rhwDWww9qWbrgicNOgnpIsMxyNIUM4+n6dUIA==", "dev": true }, - "node_modules/@types/ms": { - "version": "0.7.34", - "resolved": "https://registry.npmjs.org/@types/ms/-/ms-0.7.34.tgz", - "integrity": "sha512-nG96G3Wp6acyAgJqGasjODb+acrI7KltPiRxzHPXnP3NgI28bpQDRv53olbqGXbfcgF5aiiHmO3xpwEpS5Ld9g==", - "dev": true - }, "node_modules/@types/mute-stream": { "version": "0.0.4", "resolved": "https://registry.npmjs.org/@types/mute-stream/-/mute-stream-0.0.4.tgz", @@ -8235,9 +8168,10 @@ } }, "node_modules/axios": { - "version": "1.7.7", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.7.7.tgz", - "integrity": "sha512-S4kL7XrjgBmvdGut0sN3yJxqYzrDOnivkBiN0OFs6hLiUam3UPvswUo0kqGyhqUZGEOytHyumEdXsAkgCOUf3Q==", + "version": "1.7.8", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.7.8.tgz", + "integrity": "sha512-Uu0wb7KNqK2t5K+YQyVCLM76prD5sRFjKHbJYCP1J7JFGEQ6nN7HWn9+04LAeiJ3ji54lgS/gZCH1oxyrf1SPw==", + "license": "MIT", "dependencies": { "follow-redirects": "^1.15.6", "form-data": "^4.0.0", @@ -8964,15 +8898,6 @@ "url": "https://github.com/sponsors/sindresorhus" } }, - "node_modules/byline": { - "version": "5.0.0", - "resolved": "https://registry.npmjs.org/byline/-/byline-5.0.0.tgz", - "integrity": "sha512-s6webAy+R4SR8XVuJWt2V2rGvhnrhxN+9S15GNuTK3wKPOXFF6RNc+8ug2XhH+2s4f+uudG4kUVYmYOQWL2g0Q==", - "dev": true, - "engines": { - "node": ">=0.10.0" - } - }, "node_modules/bytes": { "version": "3.1.2", "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz", @@ -15079,12 +15004,6 @@ "integrity": "sha512-xHjhDr3cNBK0BzdUJSPXZntQUx/mwMS5Rw4A7lPJ90XGAO6ISP/ePDNuo0vhqOZU+UD5JoodwCAAoZQd3FeAKw==", "dev": true }, - "node_modules/iserror": { - "version": "0.0.2", - "resolved": "https://registry.npmjs.org/iserror/-/iserror-0.0.2.tgz", - "integrity": "sha512-oKGGrFVaWwETimP3SiWwjDeY27ovZoyZPHtxblC4hCq9fXxed/jasx+ATWFFjCVSRZng8VTMsN1nDnGo6zMBSw==", - "dev": true - }, "node_modules/isexe": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/isexe/-/isexe-2.0.0.tgz", @@ -17300,7 +17219,8 @@ "node_modules/join-component": { "version": "1.1.0", "resolved": "https://registry.npmjs.org/join-component/-/join-component-1.1.0.tgz", - "integrity": "sha512-bF7vcQxbODoGK1imE2P9GS9aw4zD0Sd+Hni68IMZLj7zRnquH7dXUmMw9hDI5S/Jzt7q+IyTXN0rSg2GI0IKhQ==" + "integrity": "sha512-bF7vcQxbODoGK1imE2P9GS9aw4zD0Sd+Hni68IMZLj7zRnquH7dXUmMw9hDI5S/Jzt7q+IyTXN0rSg2GI0IKhQ==", + "dev": true }, "node_modules/js-stringify": { "version": "1.0.2", @@ -22469,10 +22389,6 @@ "debug": "2.2.0" } }, - "node_modules/rudder-sdk-js": { - "resolved": "packages/analytics-v1.1", - "link": true - }, "node_modules/run-async": { "version": "2.4.1", "resolved": "https://registry.npmjs.org/run-async/-/run-async-2.4.1.tgz", @@ -23308,15 +23224,6 @@ "node": ">=16 || 14 >=14.17" } }, - "node_modules/stack-generator": { - "version": "2.0.10", - "resolved": "https://registry.npmjs.org/stack-generator/-/stack-generator-2.0.10.tgz", - "integrity": "sha512-mwnua/hkqM6pF4k8SnmZ2zfETsRUpWXREfA/goT8SLCV4iOFa4bzOX2nDipWAZFPTjLvQB82f5yaodMVhK0yJQ==", - "dev": true, - "dependencies": { - "stackframe": "^1.3.4" - } - }, "node_modules/stack-utils": { "version": "2.0.6", "resolved": "https://registry.npmjs.org/stack-utils/-/stack-utils-2.0.6.tgz", @@ -25285,6 +25192,7 @@ "packages/analytics-js": { "name": "@rudderstack/analytics-js", "version": "3.11.13", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@preact/signals-core": "1.8.0", @@ -25299,6 +25207,7 @@ "packages/analytics-js-common": { "name": "@rudderstack/analytics-js-common", "version": "3.14.12", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@lukeed/uuid": "2.0.1", @@ -25316,6 +25225,7 @@ "packages/analytics-js-cookies": { "name": "@rudderstack/analytics-js-cookies", "version": "0.4.15", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@rudderstack/analytics-js-common": "*" @@ -25325,6 +25235,7 @@ "packages/analytics-js-integrations": { "name": "@rudderstack/analytics-js-integrations", "version": "3.11.11", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@lukeed/uuid": "2.0.1", @@ -25345,6 +25256,7 @@ "packages/analytics-js-plugins": { "name": "@rudderstack/analytics-js-plugins", "version": "3.6.16", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@rudderstack/analytics-js-common": "*", @@ -25359,6 +25271,7 @@ "packages/analytics-js-service-worker": { "name": "@rudderstack/analytics-js-service-worker", "version": "3.2.15", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@lukeed/uuid": "2.0.1", @@ -25380,6 +25293,7 @@ "packages/analytics-v1.1": { "name": "rudder-sdk-js", "version": "2.48.40", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@rudderstack/analytics-js-common": "*" @@ -25389,6 +25303,7 @@ "packages/loading-scripts": { "name": "@rudderstack/analytics-js-loading-scripts", "version": "3.0.56", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@rudderstack/analytics-js": "*" @@ -25398,6 +25313,7 @@ "packages/sanity-suite": { "name": "@rudderstack/analytics-js-sanity-suite", "version": "3.1.47", + "extraneous": true, "license": "Elastic-2.0", "dependencies": { "@rudderstack/analytics-js": "*", diff --git a/package.json b/package.json index 47d079a83..77050f91d 100644 --- a/package.json +++ b/package.json @@ -77,7 +77,7 @@ "@segment/top-domain": "3.0.1", "@vespaiach/axios-fetch-adapter": "0.3.1", "assert": "2.1.0", - "axios": "1.7.7", + "axios": "1.7.8", "axios-retry": "4.5.0", "component-each": "0.2.6", "component-emitter": "2.0.0",