Skip to content

Commit a4a601d

Browse files
snyk-botSaraVieira
snyk-bot
authored and
SaraVieira
committed
[Snyk] Fix for 1 vulnerable dependencies (codesandbox#2005)
* fix: packages/app/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-174505 * Update yarn.lock.
1 parent 84972fd commit a4a601d

File tree

2 files changed

+18
-10
lines changed

2 files changed

+18
-10
lines changed

packages/app/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -136,7 +136,7 @@
136136
"apollo-boost": "^0.3.1",
137137
"apollo-link-batch-http": "^1.2.2",
138138
"apollo-link-context": "^1.0.8",
139-
"axios": "^0.16.2",
139+
"axios": "^0.19.0",
140140
"babel-code-frame": "^6.26.0",
141141
"babel-helper-vue-jsx-merge-props": "^2.0.2",
142142
"babel-macros": "^2.0.0",

yarn.lock

Lines changed: 17 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -4223,20 +4223,21 @@ aws4@^1.8.0:
42234223
version "1.8.0"
42244224
resolved "https://registry.yarnpkg.com/aws4/-/aws4-1.8.0.tgz#f0e003d9ca9e7f59c7a508945d7b2ef9a04a542f"
42254225

4226-
axios@^0.16.2:
4227-
version "0.16.2"
4228-
resolved "https://registry.yarnpkg.com/axios/-/axios-0.16.2.tgz#ba4f92f17167dfbab40983785454b9ac149c3c6d"
4229-
dependencies:
4230-
follow-redirects "^1.2.3"
4231-
is-buffer "^1.1.5"
4232-
42334226
axios@^0.18.0:
42344227
version "0.18.0"
42354228
resolved "https://registry.yarnpkg.com/axios/-/axios-0.18.0.tgz#32d53e4851efdc0a11993b6cd000789d70c05102"
42364229
dependencies:
42374230
follow-redirects "^1.3.0"
42384231
is-buffer "^1.1.5"
42394232

4233+
axios@^0.19.0:
4234+
version "0.19.0"
4235+
resolved "https://registry.yarnpkg.com/axios/-/axios-0.19.0.tgz#8e09bff3d9122e133f7b8101c8fbdd00ed3d2ab8"
4236+
integrity sha512-1uvKqKQta3KBxIz14F2v06AEHZ/dIoeKfbTRkK1E5oqjDnuEerLmYTgJB5AiQZHJcljpg1TuRzdjDR06qNk0DQ==
4237+
dependencies:
4238+
follow-redirects "1.5.10"
4239+
is-buffer "^2.0.2"
4240+
42404241
axobject-query@^2.0.1, axobject-query@^2.0.2:
42414242
version "2.0.2"
42424243
resolved "https://registry.yarnpkg.com/axobject-query/-/axobject-query-2.0.2.tgz#ea187abe5b9002b377f925d8bf7d1c561adf38f9"
@@ -10625,7 +10626,14 @@ [email protected]:
1062510626
debug "^2.2.0"
1062610627
stream-consume "^0.1.0"
1062710628

10628-
follow-redirects@^1.0.0, follow-redirects@^1.2.3:
10629+
[email protected]:
10630+
version "1.5.10"
10631+
resolved "https://registry.yarnpkg.com/follow-redirects/-/follow-redirects-1.5.10.tgz#7b7a9f9aea2fdff36786a94ff643ed07f4ff5e2a"
10632+
integrity sha512-0V5l4Cizzvqt5D44aTXbFZz+FtyXV1vrDN6qrelxtfYQKW0KO0W2T/hkE8xvGa/540LkZlkaUjO4ailYTFtHVQ==
10633+
dependencies:
10634+
debug "=3.1.0"
10635+
10636+
follow-redirects@^1.0.0:
1062910637
version "1.5.0"
1063010638
resolved "https://registry.yarnpkg.com/follow-redirects/-/follow-redirects-1.5.0.tgz#234f49cf770b7f35b40e790f636ceba0c3a0ab77"
1063110639
dependencies:
@@ -13333,7 +13341,7 @@ is-buffer@^1.0.2, is-buffer@^1.1.4, is-buffer@^1.1.5, is-buffer@~1.1.1:
1333313341
version "1.1.6"
1333413342
resolved "https://registry.yarnpkg.com/is-buffer/-/is-buffer-1.1.6.tgz#efaa2ea9daa0d7ab2ea13a97b2b8ad51fefbe8be"
1333513343

13336-
is-buffer@~2.0.3:
13344+
is-buffer@^2.0.2, is-buffer@~2.0.3:
1333713345
version "2.0.3"
1333813346
resolved "https://registry.yarnpkg.com/is-buffer/-/is-buffer-2.0.3.tgz#4ecf3fcf749cbd1e472689e109ac66261a25e725"
1333913347

0 commit comments

Comments
 (0)