From 40c2b36696001ba2482e952189d327d24d1800e8 Mon Sep 17 00:00:00 2001 From: Patrick Ufer <46608534+patrickufer@users.noreply.github.com> Date: Tue, 13 Feb 2024 09:23:40 -0700 Subject: [PATCH] security fix: upgrade sharp version to 0.32.6 (#361) * upgrade sharp version --- packages/open-next/src/build.ts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/open-next/src/build.ts b/packages/open-next/src/build.ts index 7a8bb164..63da181e 100755 --- a/packages/open-next/src/build.ts +++ b/packages/open-next/src/build.ts @@ -367,7 +367,7 @@ function createImageOptimizationBundle() { // For SHARP_IGNORE_GLOBAL_LIBVIPS see: https://github.com/lovell/sharp/blob/main/docs/install.md#aws-lambda const nodeOutputPath = path.resolve(outputPath); - const sharpVersion = process.env.SHARP_VERSION ?? "0.32.5"; + const sharpVersion = process.env.SHARP_VERSION ?? "0.33.2"; //check if we are running in Windows environment then set env variables accordingly. try {