From 5e1c7018e59a5b439ac4972d9de824a570995a35 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 24 Feb 2022 00:03:19 +0000 Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-REQUESTRETRY-2411026 --- package.json | 2 +- yarn.lock | 14 ++++---------- 2 files changed, 5 insertions(+), 11 deletions(-) diff --git a/package.json b/package.json index 1a2f5b0..145ccfe 100644 --- a/package.json +++ b/package.json @@ -37,6 +37,6 @@ "lodash": "^4.17.21", "request": "^2.88.2", "request-promise": "^4.2.6", - "requestretry": "^4.1.2" + "requestretry": "^7.0.0" } } diff --git a/yarn.lock b/yarn.lock index 576a382..db8582d 100644 --- a/yarn.lock +++ b/yarn.lock @@ -2282,14 +2282,13 @@ request@^2.88.2: tunnel-agent "^0.6.0" uuid "^3.3.2" -requestretry@^4.1.2: - version "4.1.2" - resolved "https://registry.yarnpkg.com/requestretry/-/requestretry-4.1.2.tgz#f5975c0c3be9e352e25038c9fed482d5cc51978e" - integrity sha512-N1WAp+8eOy8NfsVBChcSxNCKvPY1azOpliQ4Sby4WDe0HFEhdKywlNZeROMBQ+BI3Jpc0eNOT1KVFGREawtahA== +requestretry@^7.0.0: + version "7.0.0" + resolved "https://registry.yarnpkg.com/requestretry/-/requestretry-7.0.0.tgz#570a9fcbeb2d6a85d7f15eb2265840d787f0c44d" + integrity sha512-g1Odu3IBKb6fYQog+HLy5FZ1CMwejIpD0iX1u1qXLsRj8TeQmFCpX9pTe50qhIirKvx1mcmoAeuLBFXLlBw6vA== dependencies: extend "^3.0.2" lodash "^4.17.15" - when "^3.7.7" require-directory@^2.1.1: version "2.1.1" @@ -2743,11 +2742,6 @@ walkdir@0.0.11: resolved "https://registry.yarnpkg.com/walkdir/-/walkdir-0.0.11.tgz#a16d025eb931bd03b52f308caed0f40fcebe9532" integrity sha1-oW0CXrkxvQO1LzCMrtD0D86+lTI= -when@^3.7.7: - version "3.7.8" - resolved "https://registry.yarnpkg.com/when/-/when-3.7.8.tgz#c7130b6a7ea04693e842cdc9e7a1f2aa39a39f82" - integrity sha1-xxMLan6gRpPoQs3J56Hyqjmjn4I= - which-boxed-primitive@^1.0.1: version "1.0.2" resolved "https://registry.yarnpkg.com/which-boxed-primitive/-/which-boxed-primitive-1.0.2.tgz#13757bc89b209b049fe5d86430e21cf40a89a8e6"