From 0a40656ed00489ba552d202e51066f818b89fc06 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 6 Jul 2022 02:49:07 +0000 Subject: [PATCH] fix: upgrade @actions/core from 1.2.6 to 1.8.2 Snyk has created this PR to upgrade @actions/core from 1.2.6 to 1.8.2. See this package in npm: https://www.npmjs.com/package/@actions/core See this project in Snyk: https://app.snyk.io/org/wrathchyld/project/8dde315b-dcf2-4929-8e7f-eb48e803dee2?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 38 +++++++++++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 32 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index c22367fe..898b378c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,7 +10,7 @@ "license": "MIT", "dependencies": { "@actions/artifact": "^1.0.0", - "@actions/core": "^1.2.6", + "@actions/core": "^1.8.2", "@actions/glob": "^0.1.0", "@actions/io": "^1.1.2" }, @@ -43,9 +43,20 @@ } }, "node_modules/@actions/core": { - "version": "1.2.6", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.6.tgz", - "integrity": "sha512-ZQYitnqiyBc3D+k7LsgSBmMDVkOVidaagDG7j3fOym77jNunWRuYx7VSHa9GNfFZh+zh61xsCjRj4JxMZlDqTA==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.8.2.tgz", + "integrity": "sha512-FXcBL7nyik8K5ODeCKlxi+vts7torOkoDAKfeh61EAkAy1HAvwn9uVzZBY0f15YcQTcZZ2/iSGBFHEuioZWfDA==", + "dependencies": { + "@actions/http-client": "^2.0.1" + } + }, + "node_modules/@actions/core/node_modules/@actions/http-client": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz", + "integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==", + "dependencies": { + "tunnel": "^0.0.6" + } }, "node_modules/@actions/glob": { "version": "0.1.0", @@ -9809,9 +9820,22 @@ } }, "@actions/core": { - "version": "1.2.6", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.6.tgz", - "integrity": "sha512-ZQYitnqiyBc3D+k7LsgSBmMDVkOVidaagDG7j3fOym77jNunWRuYx7VSHa9GNfFZh+zh61xsCjRj4JxMZlDqTA==" + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.8.2.tgz", + "integrity": "sha512-FXcBL7nyik8K5ODeCKlxi+vts7torOkoDAKfeh61EAkAy1HAvwn9uVzZBY0f15YcQTcZZ2/iSGBFHEuioZWfDA==", + "requires": { + "@actions/http-client": "^2.0.1" + }, + "dependencies": { + "@actions/http-client": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz", + "integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==", + "requires": { + "tunnel": "^0.0.6" + } + } + } }, "@actions/glob": { "version": "0.1.0", diff --git a/package.json b/package.json index 43272376..c763b721 100644 --- a/package.json +++ b/package.json @@ -30,7 +30,7 @@ "homepage": "https://github.com/actions/upload-artifact#readme", "dependencies": { "@actions/artifact": "^1.0.0", - "@actions/core": "^1.2.6", + "@actions/core": "^1.8.2", "@actions/glob": "^0.1.0", "@actions/io": "^1.1.2" },