From 80eb88ebff8673ebbf8152e33a4a766c8074d01f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 Jan 2025 04:15:36 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-8641354 --- package-lock.json | 12 ++++++------ package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2a835fe0..4af26e2b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "oc", - "version": "0.49.62", + "version": "0.49.63", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "oc", - "version": "0.49.62", + "version": "0.49.63", "license": "MIT", "dependencies": { "@types/lodash.isequal": "^4.5.8", @@ -51,7 +51,7 @@ "serialize-error": "^8.1.0", "targz": "^1.0.1", "try-require": "^1.2.1", - "undici": "^6.19.8", + "undici": "^6.21.1", "universalify": "^2.0.0", "yargs": "^17.7.2" }, @@ -8813,9 +8813,9 @@ "optional": true }, "node_modules/undici": { - "version": "6.19.8", - "resolved": "https://registry.npmjs.org/undici/-/undici-6.19.8.tgz", - "integrity": "sha512-U8uCCl2x9TK3WANvmBavymRzxbfFYG+tAu+fgx3zxQy3qdagQqBLwJVrdyO1TBfUXvfKveMKJZhpvUYoOjM+4g==", + "version": "6.21.1", + "resolved": "https://registry.npmjs.org/undici/-/undici-6.21.1.tgz", + "integrity": "sha512-q/1rj5D0/zayJB2FraXdaWxbhWiNKDvu8naDT2dl1yTlvJp4BLtOcp2a5BvgGNQpYYJzau7tf1WgKv3b+7mqpQ==", "license": "MIT", "engines": { "node": ">=18.17" diff --git a/package.json b/package.json index b4eb5691..d2a65d7e 100644 --- a/package.json +++ b/package.json @@ -116,7 +116,7 @@ "serialize-error": "^8.1.0", "targz": "^1.0.1", "try-require": "^1.2.1", - "undici": "^6.19.8", + "undici": "^6.21.1", "universalify": "^2.0.0", "yargs": "^17.7.2" }