From 09ed278b4e68b65b19b7c3f73f1c107de673b09b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 28 Apr 2023 21:52:59 +0000 Subject: [PATCH] fix: deps/npm/node_modules/typedarray-to-buffer/package.json & deps/npm/node_modules/typedarray-to-buffer/.snyk to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ADMZIP-1065796 - https://snyk.io/vuln/SNYK-JS-ASYNC-2441827 - https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1056767 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-480388 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534478 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534988 - https://snyk.io/vuln/SNYK-JS-HANDLEBARS-567742 - https://snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1045326 - https://snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676 - https://snyk.io/vuln/SNYK-JS-HTTPPROXY-569139 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/SNYK-JS-LODASH-450202 - https://snyk.io/vuln/SNYK-JS-LODASH-567746 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-LODASH-73638 - https://snyk.io/vuln/SNYK-JS-LODASH-73639 - https://snyk.io/vuln/SNYK-JS-QS-3153490 - https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-536840 - https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-570062 - https://snyk.io/vuln/SNYK-JS-SHELLQUOTE-1766506 - https://snyk.io/vuln/SNYK-JS-XML2JS-5414874 - https://snyk.io/vuln/npm:braces:20180219 - https://snyk.io/vuln/npm:hoek:20180212 - https://snyk.io/vuln/npm:lodash:20180130 - https://snyk.io/vuln/npm:tunnel-agent:20170305 - https://snyk.io/vuln/npm:underscore.string:20170908 The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:debug:20170905 - https://snyk.io/vuln/npm:minimatch:20160620 - https://snyk.io/vuln/npm:ms:20170412 --- deps/npm/node_modules/typedarray-to-buffer/.snyk | 14 ++++++++++++++ .../node_modules/typedarray-to-buffer/package.json | 12 ++++++++---- 2 files changed, 22 insertions(+), 4 deletions(-) create mode 100644 deps/npm/node_modules/typedarray-to-buffer/.snyk diff --git a/deps/npm/node_modules/typedarray-to-buffer/.snyk b/deps/npm/node_modules/typedarray-to-buffer/.snyk new file mode 100644 index 00000000000000..2766e3438feeea --- /dev/null +++ b/deps/npm/node_modules/typedarray-to-buffer/.snyk @@ -0,0 +1,14 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.25.0 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + 'npm:debug:20170905': + - airtap > istanbul-middleware > body-parser > debug: + patched: '2023-04-28T21:52:52.741Z' + 'npm:minimatch:20160620': + - airtap > istanbul-middleware > archiver > glob > minimatch: + patched: '2023-04-28T21:52:52.741Z' + 'npm:ms:20170412': + - airtap > istanbul-middleware > body-parser > debug > ms: + patched: '2023-04-28T21:52:52.741Z' diff --git a/deps/npm/node_modules/typedarray-to-buffer/package.json b/deps/npm/node_modules/typedarray-to-buffer/package.json index 5ec5656157991e..e3023a5e5d605f 100644 --- a/deps/npm/node_modules/typedarray-to-buffer/package.json +++ b/deps/npm/node_modules/typedarray-to-buffer/package.json @@ -11,10 +11,11 @@ "url": "https://github.com/feross/typedarray-to-buffer/issues" }, "dependencies": { - "is-typedarray": "^1.0.0" + "is-typedarray": "^1.0.0", + "@snyk/protect": "latest" }, "devDependencies": { - "airtap": "0.0.4", + "airtap": "4.0.2", "standard": "*", "tape": "^4.0.0" }, @@ -45,6 +46,9 @@ "test": "standard && npm run test-node && npm run test-browser", "test-browser": "airtap -- test/*.js", "test-browser-local": "airtap --local -- test/*.js", - "test-node": "tape test/*.js" - } + "test-node": "tape test/*.js", + "prepublish": "npm run snyk-protect", + "snyk-protect": "snyk-protect" + }, + "snyk": true }