From fc4d712c130cfc49f7f6b98f58834272104bfdbe Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 6 Sep 2024 09:11:59 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UAPARSERJS-3244450 --- package-lock.json | 40 +++++++++++++++++++++++----------------- package.json | 2 +- 2 files changed, 24 insertions(+), 18 deletions(-) diff --git a/package-lock.json b/package-lock.json index 983fcc03..5ccc3e29 100644 --- a/package-lock.json +++ b/package-lock.json @@ -13,7 +13,7 @@ "@testing-library/user-event": "^7.2.1", "detect-browser": "^5.1.1", "react": "^16.13.1", - "react-device-detect": "^1.12.1", + "react-device-detect": "^2.2.3", "react-dom": "^16.13.1", "react-scripts": "^5.0.1", "react-spring": "^8.0.27" @@ -13496,15 +13496,16 @@ } }, "node_modules/react-device-detect": { - "version": "1.17.0", - "resolved": "https://registry.npmjs.org/react-device-detect/-/react-device-detect-1.17.0.tgz", - "integrity": "sha512-bBblIStwpHmoS281JFIVqeimcN3LhpoP5YKDWzxQdBIUP8S2xPvHDgizLDhUq2ScguLfVPmwfF5y268EEQR60w==", + "version": "2.2.3", + "resolved": "https://registry.npmjs.org/react-device-detect/-/react-device-detect-2.2.3.tgz", + "integrity": "sha512-buYY3qrCnQVlIFHrC5UcUoAj7iANs/+srdkwsnNjI7anr3Tt7UY6MqNxtMLlr0tMBied0O49UZVK8XKs3ZIiPw==", + "license": "MIT", "dependencies": { - "ua-parser-js": "^0.7.24" + "ua-parser-js": "^1.0.33" }, "peerDependencies": { - "react": ">= 0.14.0 < 18.0.0", - "react-dom": ">= 0.14.0 < 18.0.0" + "react": ">= 0.14.0", + "react-dom": ">= 0.14.0" } }, "node_modules/react-dom": { @@ -15265,9 +15266,9 @@ } }, "node_modules/ua-parser-js": { - "version": "0.7.31", - "resolved": "https://registry.npmjs.org/ua-parser-js/-/ua-parser-js-0.7.31.tgz", - "integrity": "sha512-qLK/Xe9E2uzmYI3qLeOmI0tEOt+TBBQyUIAh4aAgU05FVYzeZrKUdkAZfBNVGRaHVgV0TDkdEngJSw/SyQchkQ==", + "version": "1.0.38", + "resolved": "https://registry.npmjs.org/ua-parser-js/-/ua-parser-js-1.0.38.tgz", + "integrity": "sha512-Aq5ppTOfvrCMgAPneW1HfWj66Xi7XL+/mIy996R1/CLS/rcyJQm6QZdsKrUeivDFQ+Oc9Wyuwor8Ze8peEoUoQ==", "funding": [ { "type": "opencollective", @@ -15276,8 +15277,13 @@ { "type": "paypal", "url": "https://paypal.me/faisalman" + }, + { + "type": "github", + "url": "https://github.com/sponsors/faisalman" } ], + "license": "MIT", "engines": { "node": "*" } @@ -26118,11 +26124,11 @@ } }, "react-device-detect": { - "version": "1.17.0", - "resolved": "https://registry.npmjs.org/react-device-detect/-/react-device-detect-1.17.0.tgz", - "integrity": "sha512-bBblIStwpHmoS281JFIVqeimcN3LhpoP5YKDWzxQdBIUP8S2xPvHDgizLDhUq2ScguLfVPmwfF5y268EEQR60w==", + "version": "2.2.3", + "resolved": "https://registry.npmjs.org/react-device-detect/-/react-device-detect-2.2.3.tgz", + "integrity": "sha512-buYY3qrCnQVlIFHrC5UcUoAj7iANs/+srdkwsnNjI7anr3Tt7UY6MqNxtMLlr0tMBied0O49UZVK8XKs3ZIiPw==", "requires": { - "ua-parser-js": "^0.7.24" + "ua-parser-js": "^1.0.33" } }, "react-dom": { @@ -27435,9 +27441,9 @@ "peer": true }, "ua-parser-js": { - "version": "0.7.31", - "resolved": "https://registry.npmjs.org/ua-parser-js/-/ua-parser-js-0.7.31.tgz", - "integrity": "sha512-qLK/Xe9E2uzmYI3qLeOmI0tEOt+TBBQyUIAh4aAgU05FVYzeZrKUdkAZfBNVGRaHVgV0TDkdEngJSw/SyQchkQ==" + "version": "1.0.38", + "resolved": "https://registry.npmjs.org/ua-parser-js/-/ua-parser-js-1.0.38.tgz", + "integrity": "sha512-Aq5ppTOfvrCMgAPneW1HfWj66Xi7XL+/mIy996R1/CLS/rcyJQm6QZdsKrUeivDFQ+Oc9Wyuwor8Ze8peEoUoQ==" }, "unbox-primitive": { "version": "1.0.2", diff --git a/package.json b/package.json index 2a54e72e..d26b7002 100644 --- a/package.json +++ b/package.json @@ -9,7 +9,7 @@ "@testing-library/user-event": "^7.2.1", "detect-browser": "^5.1.1", "react": "^16.13.1", - "react-device-detect": "^1.12.1", + "react-device-detect": "^2.2.3", "react-dom": "^16.13.1", "react-scripts": "^5.0.1", "react-spring": "^8.0.27"