From 67954b42caa45f4fd421da9a59051278abb8b2a0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 10 Aug 2020 23:29:23 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-FLAT-596927 --- package-lock.json | 16 +++------------- package.json | 2 +- 2 files changed, 4 insertions(+), 14 deletions(-) mode change 100755 => 100644 package-lock.json mode change 100755 => 100644 package.json diff --git a/package-lock.json b/package-lock.json old mode 100755 new mode 100644 index 27079c79..c993d249 --- a/package-lock.json +++ b/package-lock.json @@ -1119,19 +1119,9 @@ "dev": true }, "flat": { - "version": "1.6.1", - "resolved": "https://registry.npmjs.org/flat/-/flat-1.6.1.tgz", - "integrity": "sha1-R2udu3DV6TQNu8A4veCEoglFkhw=", - "requires": { - "is-buffer": "~1.1.2" - }, - "dependencies": { - "is-buffer": { - "version": "1.1.6", - "resolved": "https://registry.npmjs.org/is-buffer/-/is-buffer-1.1.6.tgz", - "integrity": "sha512-NcdALwpXkTm5Zvvbk7owOUSvVvBKDgKP5/ewfXEznmQFfs4ZRmanOeKBTjRVjka3QFoN6XJ+9F3USqfHqTaU5w==" - } - } + "version": "5.0.2", + "resolved": "https://registry.npmjs.org/flat/-/flat-5.0.2.tgz", + "integrity": "sha512-b6suED+5/3rTpUBdG1gupIl8MPFCAMA0QXwmljLhvCUKcUvdE4gWky9zpuGCcXHOsz4J9wPGNWq6OKpmIzz3hQ==" }, "form-data": { "version": "2.5.1", diff --git a/package.json b/package.json old mode 100755 new mode 100644 index fb44c4e2..82fa7510 --- a/package.json +++ b/package.json @@ -52,7 +52,7 @@ "dasherize": "2.0.x", "debug": "^3.1.0", "depd": "^1.1.2", - "flat": "^1.2.1", + "flat": "^5.0.2", "immutable": "^3.8.2", "lodash": "^4.17.5", "negotiator": "github:ethanresnick/negotiator#full-parse-access",