From d651e0da872f0b2fb969baa5dc24ca3f818096bd Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 6 Dec 2022 12:00:32 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-3153490 --- package-lock.json | 12 +++++++++--- package.json | 2 +- 2 files changed, 10 insertions(+), 4 deletions(-) mode change 100755 => 100644 package-lock.json mode change 100755 => 100644 package.json diff --git a/package-lock.json b/package-lock.json old mode 100755 new mode 100644 index 27079c79..09b4efef --- a/package-lock.json +++ b/package-lock.json @@ -386,6 +386,12 @@ "requires": { "ms": "2.0.0" } + }, + "qs": { + "version": "6.5.2", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.5.2.tgz", + "integrity": "sha512-N5ZAX4/LxJmF+7wN74pUD6qAh9/wnvdQcjq9TZjevvXzSUo7bfmw91saqMjzGS2xq91/odN2dW/WOl7qQHNDGA==", + "dev": true } } }, @@ -4817,9 +4823,9 @@ "integrity": "sha1-wA1cUSi6xYBr7BXSt+fNq+QlMfM=" }, "qs": { - "version": "6.5.2", - "resolved": "https://registry.npmjs.org/qs/-/qs-6.5.2.tgz", - "integrity": "sha512-N5ZAX4/LxJmF+7wN74pUD6qAh9/wnvdQcjq9TZjevvXzSUo7bfmw91saqMjzGS2xq91/odN2dW/WOl7qQHNDGA==" + "version": "6.5.3", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.5.3.tgz", + "integrity": "sha512-qxXIEh4pCGfHICj1mAJQ2/2XVZkjCDTcEgfoSQxc/fYivUZxTkk7L3bDBJSoNrEzXI17oUO5Dp07ktqE5KzczA==" }, "quibble": { "version": "0.5.5", diff --git a/package.json b/package.json old mode 100755 new mode 100644 index fb44c4e2..c2d306ed --- a/package.json +++ b/package.json @@ -58,7 +58,7 @@ "negotiator": "github:ethanresnick/negotiator#full-parse-access", "pluralize": "0.0.11", "pug": "^2.0.3", - "qs": "^6.5.2", + "qs": "^6.5.3", "ramda": "^0.25.0", "raw-body": "^2.3.3", "supports-color": "^4.5.0",