From 5ca95ea8e4626894beb0fbf4c9cb5addecd66641 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 11 Oct 2024 04:44:26 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 --- package-lock.json | 129 ++++++++++++++++++++++++++++++++++++---------- package.json | 4 +- 2 files changed, 103 insertions(+), 30 deletions(-) diff --git a/package-lock.json b/package-lock.json index c456073..b06422c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -19,14 +19,14 @@ "@nestjs/platform-express": "^9.2.1", "@nestjs/swagger": "^6.1.3", "@prisma/client": "^4.7.1", - "@sentry/node": "^7.42.0", + "@sentry/node": "^7.75.0", "@sentry/tracing": "^7.42.0", "aws-sdk": "^2.1304.0", "bcrypt": "^5.1.0", "cache-manager": "^5.2.1", "class-transformer": "^0.5.1", "class-validator": "^0.13.2", - "cookie-parser": "^1.4.6", + "cookie-parser": "^1.4.7", "dotenv": "^16.0.3", "handlebars": "^4.7.7", "lodash": "^4.17.21", @@ -2179,6 +2179,54 @@ "url": "https://ko-fi.com/killymxi" } }, + "node_modules/@sentry-internal/tracing": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry-internal/tracing/-/tracing-7.75.0.tgz", + "integrity": "sha512-/j4opF/jB9j8qnSiQK75/lFLtkfqXS5/MoOKc2KWK/pOaf15W+6uJzGQ8jRBHLYd9dDg6AyqsF48Wqy561/mNg==", + "license": "MIT", + "dependencies": { + "@sentry/core": "7.75.0", + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0" + }, + "engines": { + "node": ">=8" + } + }, + "node_modules/@sentry-internal/tracing/node_modules/@sentry/core": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/core/-/core-7.75.0.tgz", + "integrity": "sha512-vXg3cdJgwzP24oTS9zFCgLW4MgTkMZqXx+ESRq7gTD9qJTpcmAmYT+Ckmvebg8K6DBThV6+0v61r50na2+XdrA==", + "license": "MIT", + "dependencies": { + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0" + }, + "engines": { + "node": ">=8" + } + }, + "node_modules/@sentry-internal/tracing/node_modules/@sentry/types": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/types/-/types-7.75.0.tgz", + "integrity": "sha512-xG8OLADxG7HpGhMxrF4v4tKq/v/gqmLsTZ858R51pz0xCWM8SK6ZSWOKudkAGBIpRjI6RUHMnkBtRAN2aKDOkQ==", + "license": "MIT", + "engines": { + "node": ">=8" + } + }, + "node_modules/@sentry-internal/tracing/node_modules/@sentry/utils": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/utils/-/utils-7.75.0.tgz", + "integrity": "sha512-UHWKeevhUNRp+mAWDbMVFOMgseoq8t/xFgdUywO/2PC14qZKRBH+0k1BKoNkp5sOzDT06ETj2w6wYoYhy6i+dA==", + "license": "MIT", + "dependencies": { + "@sentry/types": "7.75.0" + }, + "engines": { + "node": ">=8" + } + }, "node_modules/@sentry/core": { "version": "7.42.0", "resolved": "https://registry.npmjs.org/@sentry/core/-/core-7.42.0.tgz", @@ -2198,26 +2246,54 @@ "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg==" }, "node_modules/@sentry/node": { - "version": "7.42.0", - "resolved": "https://registry.npmjs.org/@sentry/node/-/node-7.42.0.tgz", - "integrity": "sha512-mmpVSDeoM5aEbKOMq3Wt54wAvH53bkivhRh3Ip+R7Uj3aOKkcVJST2XlbghHgoYQXTWz+pl475EVyODWgY9QYg==", + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/node/-/node-7.75.0.tgz", + "integrity": "sha512-z5Xanf9QeTd4YrEuZiJfvtAy2C874Zg4KpurEo3okJ8uYjnbXMsQ3EwVHbKEoYSwE3ExTrqOggPfk2NNSJIECA==", + "license": "MIT", "dependencies": { - "@sentry/core": "7.42.0", - "@sentry/types": "7.42.0", - "@sentry/utils": "7.42.0", - "cookie": "^0.4.1", - "https-proxy-agent": "^5.0.0", - "lru_map": "^0.3.3", - "tslib": "^1.9.3" + "@sentry-internal/tracing": "7.75.0", + "@sentry/core": "7.75.0", + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0", + "https-proxy-agent": "^5.0.0" }, "engines": { "node": ">=8" } }, - "node_modules/@sentry/node/node_modules/tslib": { - "version": "1.14.1", - "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz", - "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg==" + "node_modules/@sentry/node/node_modules/@sentry/core": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/core/-/core-7.75.0.tgz", + "integrity": "sha512-vXg3cdJgwzP24oTS9zFCgLW4MgTkMZqXx+ESRq7gTD9qJTpcmAmYT+Ckmvebg8K6DBThV6+0v61r50na2+XdrA==", + "license": "MIT", + "dependencies": { + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0" + }, + "engines": { + "node": ">=8" + } + }, + "node_modules/@sentry/node/node_modules/@sentry/types": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/types/-/types-7.75.0.tgz", + "integrity": "sha512-xG8OLADxG7HpGhMxrF4v4tKq/v/gqmLsTZ858R51pz0xCWM8SK6ZSWOKudkAGBIpRjI6RUHMnkBtRAN2aKDOkQ==", + "license": "MIT", + "engines": { + "node": ">=8" + } + }, + "node_modules/@sentry/node/node_modules/@sentry/utils": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/utils/-/utils-7.75.0.tgz", + "integrity": "sha512-UHWKeevhUNRp+mAWDbMVFOMgseoq8t/xFgdUywO/2PC14qZKRBH+0k1BKoNkp5sOzDT06ETj2w6wYoYhy6i+dA==", + "license": "MIT", + "dependencies": { + "@sentry/types": "7.75.0" + }, + "engines": { + "node": ">=8" + } }, "node_modules/@sentry/tracing": { "version": "7.42.0", @@ -4238,19 +4314,21 @@ "dev": true }, "node_modules/cookie": { - "version": "0.4.1", - "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz", - "integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==", + "version": "0.7.2", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz", + "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==", + "license": "MIT", "engines": { "node": ">= 0.6" } }, "node_modules/cookie-parser": { - "version": "1.4.6", - "resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.6.tgz", - "integrity": "sha512-z3IzaNjdwUC2olLIB5/ITd0/setiaFMLYiZJle7xg5Fe9KWAceil7xszYfHHBtDFYLSgJduS2Ty0P1uJdPDJeA==", + "version": "1.4.7", + "resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.7.tgz", + "integrity": "sha512-nGUvgXnotP3BsjiLX2ypbQnWoGUPIIfHQNZkkC668ntrzGWEZVW70HDEB1qnNGMicPje6EttlIgzo51YSwNQGw==", + "license": "MIT", "dependencies": { - "cookie": "0.4.1", + "cookie": "0.7.2", "cookie-signature": "1.0.6" }, "engines": { @@ -8188,11 +8266,6 @@ "resolved": "https://registry.npmjs.org/lower-case/-/lower-case-1.1.4.tgz", "integrity": "sha512-2Fgx1Ycm599x+WGpIYwJOvsjmXFzTSc34IwDWALRA/8AopUKAVPwfJ+h5+f85BCp0PWmmJcWzEpxOpoXycMpdA==" }, - "node_modules/lru_map": { - "version": "0.3.3", - "resolved": "https://registry.npmjs.org/lru_map/-/lru_map-0.3.3.tgz", - "integrity": "sha512-Pn9cox5CsMYngeDbmChANltQl+5pi6XmTrraMSzhPmMBbmgcxmqWry0U3PGapCU1yB4/LqCcom7qhHZiF/jGfQ==" - }, "node_modules/lru-cache": { "version": "6.0.0", "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-6.0.0.tgz", diff --git a/package.json b/package.json index 1bbf89b..7fb55ac 100644 --- a/package.json +++ b/package.json @@ -36,14 +36,14 @@ "@nestjs/platform-express": "^9.2.1", "@nestjs/swagger": "^6.1.3", "@prisma/client": "^4.7.1", - "@sentry/node": "^7.42.0", + "@sentry/node": "^7.75.0", "@sentry/tracing": "^7.42.0", "aws-sdk": "^2.1304.0", "bcrypt": "^5.1.0", "cache-manager": "^5.2.1", "class-transformer": "^0.5.1", "class-validator": "^0.13.2", - "cookie-parser": "^1.4.6", + "cookie-parser": "^1.4.7", "dotenv": "^16.0.3", "handlebars": "^4.7.7", "lodash": "^4.17.21",