From 73a6adcf5e358c626b7a40f7674ce8b56dc2c34b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 5 Dec 2022 03:48:47 +0000 Subject: [PATCH] fix: webapp/package.json & webapp/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-3153490 --- webapp/package-lock.json | 11 +++++++---- webapp/package.json | 2 +- 2 files changed, 8 insertions(+), 5 deletions(-) mode change 100755 => 100644 webapp/package.json diff --git a/webapp/package-lock.json b/webapp/package-lock.json index ef59f7ca..65c89463 100644 --- a/webapp/package-lock.json +++ b/webapp/package-lock.json @@ -40,7 +40,7 @@ "openseadragon": "^3.0.0", "path-to-regexp": "^6.2.0", "plotly.js": "^2.8.3", - "qs": "^6.9.4", + "qs": "^6.10.3", "react": "^17.0.1", "react-app-polyfill": "^3.0.0", "react-app-rewired": "^2.1.11", @@ -13307,8 +13307,9 @@ } }, "node_modules/qs": { - "version": "6.10.2", - "license": "BSD-3-Clause", + "version": "6.10.3", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.10.3.tgz", + "integrity": "sha512-wr7M2E0OFRfIfJZjKGieI8lBKb7fRCH4Fv5KNPEs7gJ8jadvotdsS08PzOKR7opXhZ/Xkjtt3WF9g38drmyRqQ==", "dependencies": { "side-channel": "^1.0.4" }, @@ -25077,7 +25078,9 @@ "version": "1.5.1" }, "qs": { - "version": "6.10.2", + "version": "6.10.3", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.10.3.tgz", + "integrity": "sha512-wr7M2E0OFRfIfJZjKGieI8lBKb7fRCH4Fv5KNPEs7gJ8jadvotdsS08PzOKR7opXhZ/Xkjtt3WF9g38drmyRqQ==", "requires": { "side-channel": "^1.0.4" } diff --git a/webapp/package.json b/webapp/package.json old mode 100755 new mode 100644 index 8a68bd04..4949aac4 --- a/webapp/package.json +++ b/webapp/package.json @@ -36,7 +36,7 @@ "openseadragon": "^3.0.0", "path-to-regexp": "^6.2.0", "plotly.js": "^2.8.3", - "qs": "^6.9.4", + "qs": "^6.10.3", "react": "^17.0.1", "react-app-polyfill": "^3.0.0", "react-app-rewired": "^2.1.11",