From fa849e25a390d1753f712a48ca781bee5c861442 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 10 Mar 2024 03:37:14 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JOSE-6419224 --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 6863e16..7e345ad 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11,7 +11,7 @@ "dependencies": { "debug": "^4.3.3", "got": "^11.8.5", - "jose": "^4.5.0", + "jose": "^4.15.5", "lodash": "^4.17.21", "node-cache": "^5.1.2" }, @@ -10497,9 +10497,9 @@ } }, "node_modules/jose": { - "version": "4.5.0", - "resolved": "https://registry.npmjs.org/jose/-/jose-4.5.0.tgz", - "integrity": "sha512-GFcVFQwYQKbQTUOo2JlpFGXTkgBw26uzDsRMD2q1WgSKNSnpKS9Ug7bdQ8dS+p4sZHNH6iRPu6WK2jLIjspaMA==", + "version": "4.15.5", + "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.5.tgz", + "integrity": "sha512-jc7BFxgKPKi94uOvEmzlSWFFe2+vASyXaKUpdQKatWAESU2MWjDfFf0fdfc83CDKcA5QecabZeNLyfhe3yKNkg==", "funding": { "url": "https://github.com/sponsors/panva" } @@ -25628,9 +25628,9 @@ } }, "jose": { - "version": "4.5.0", - "resolved": "https://registry.npmjs.org/jose/-/jose-4.5.0.tgz", - "integrity": "sha512-GFcVFQwYQKbQTUOo2JlpFGXTkgBw26uzDsRMD2q1WgSKNSnpKS9Ug7bdQ8dS+p4sZHNH6iRPu6WK2jLIjspaMA==" + "version": "4.15.5", + "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.5.tgz", + "integrity": "sha512-jc7BFxgKPKi94uOvEmzlSWFFe2+vASyXaKUpdQKatWAESU2MWjDfFf0fdfc83CDKcA5QecabZeNLyfhe3yKNkg==" }, "jpjs": { "version": "1.2.1", diff --git a/package.json b/package.json index 77b8a0e..f953848 100644 --- a/package.json +++ b/package.json @@ -97,7 +97,7 @@ "dependencies": { "debug": "^4.3.3", "got": "^11.8.5", - "jose": "^4.5.0", + "jose": "^4.15.5", "lodash": "^4.17.21", "node-cache": "^5.1.2" }