From 8bc5c6ebae19de8e783b7fdc5263c1b886730e87 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 11 Oct 2024 06:06:44 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 --- package-lock.json | 17 ++++++++--------- package.json | 2 +- 2 files changed, 9 insertions(+), 10 deletions(-) diff --git a/package-lock.json b/package-lock.json index 38a10c2..5f97521 100644 --- a/package-lock.json +++ b/package-lock.json @@ -22,7 +22,7 @@ "@opentelemetry/sdk-node": "^0.24.0", "class-transformer": "^0.4.0", "class-validator": "^0.13.1", - "fastify-cookie": "^5.3.1", + "fastify-cookie": "^5.4.0", "fastify-csrf": "^3.1.0", "fastify-helmet": "^5.3.2", "fastify-swagger": "^4.12.0", @@ -6418,11 +6418,11 @@ } }, "node_modules/fastify-cookie": { - "version": "5.3.1", - "resolved": "https://registry.npmjs.org/fastify-cookie/-/fastify-cookie-5.3.1.tgz", - "integrity": "sha512-ubiC5ydvgqaXOydeg3G+SFEiTJtsyNPde6ForXi+UG66aDbsHlWNLJTQZg4BopXv+MJ0SzlShGVCWv26mgAwpw==", + "version": "5.4.0", + "resolved": "https://registry.npmjs.org/fastify-cookie/-/fastify-cookie-5.4.0.tgz", + "integrity": "sha512-uKTbOLx6pSyKqA9oD2G9hpMuRTVtKRm98bRwJVg4ga7GCm+RR6771stmfhbblXxHHcQQHuHvwdOdPeHJjr2sgg==", + "license": "MIT", "dependencies": { - "cookie": "^0.4.0", "cookie-signature": "^1.1.0", "fastify-plugin": "^3.0.0" } @@ -17579,11 +17579,10 @@ } }, "fastify-cookie": { - "version": "5.3.1", - "resolved": "https://registry.npmjs.org/fastify-cookie/-/fastify-cookie-5.3.1.tgz", - "integrity": "sha512-ubiC5ydvgqaXOydeg3G+SFEiTJtsyNPde6ForXi+UG66aDbsHlWNLJTQZg4BopXv+MJ0SzlShGVCWv26mgAwpw==", + "version": "5.4.0", + "resolved": "https://registry.npmjs.org/fastify-cookie/-/fastify-cookie-5.4.0.tgz", + "integrity": "sha512-uKTbOLx6pSyKqA9oD2G9hpMuRTVtKRm98bRwJVg4ga7GCm+RR6771stmfhbblXxHHcQQHuHvwdOdPeHJjr2sgg==", "requires": { - "cookie": "^0.4.0", "cookie-signature": "^1.1.0", "fastify-plugin": "^3.0.0" }, diff --git a/package.json b/package.json index 688db2a..ec3b5f6 100644 --- a/package.json +++ b/package.json @@ -33,7 +33,7 @@ "@opentelemetry/sdk-node": "^0.24.0", "class-transformer": "^0.4.0", "class-validator": "^0.13.1", - "fastify-cookie": "^5.3.1", + "fastify-cookie": "^5.4.0", "fastify-csrf": "^3.1.0", "fastify-helmet": "^5.3.2", "fastify-swagger": "^4.12.0",