Skip to content

Commit

Permalink
[CVE] Add resolution for url-parse (#2181) (#2185)
Browse files Browse the repository at this point in the history
Fix for: [CVE-2022-0686](https://nvd.nist.gov/vuln/detail/CVE-2022-0686)

Issue:
n/a

Signed-off-by: Su <[email protected]>
(cherry picked from commit ee2a1dc)

Co-authored-by: Zhongnan Su <[email protected]>
  • Loading branch information
opensearch-trigger-bot[bot] and zhongnansu authored Aug 23, 2022
1 parent 88000fc commit 683a738
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 5 deletions.
3 changes: 2 additions & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -98,7 +98,8 @@
"**/tar": "^6.1.11",
"**/trim": "^0.0.3",
"**/trim-newlines": "^3.0.1",
"**/typescript": "4.0.2"
"**/typescript": "4.0.2",
"**/url-parse": "^1.5.8"
},
"workspaces": {
"packages": [
Expand Down
8 changes: 4 additions & 4 deletions yarn.lock
Original file line number Diff line number Diff line change
Expand Up @@ -24032,10 +24032,10 @@ url-parse-lax@^3.0.0:
dependencies:
prepend-http "^2.0.0"

url-parse@^1.4.3, url-parse@^1.4.7, url-parse@^1.5.1:
version "1.5.3"
resolved "https://registry.yarnpkg.com/url-parse/-/url-parse-1.5.3.tgz#71c1303d38fb6639ade183c2992c8cc0686df862"
integrity sha512-IIORyIQD9rvj0A4CLWsHkBBJuNqWpFQe224b6j9t/ABmquIS0qDU2pY6kl6AuOrL5OkCXHMCFNe1jBcuAggjvQ==
url-parse@^1.4.3, url-parse@^1.4.7, url-parse@^1.5.1, url-parse@^1.5.8:
version "1.5.10"
resolved "https://registry.yarnpkg.com/url-parse/-/url-parse-1.5.10.tgz#9d3c2f736c1d75dd3bd2be507dcc111f1e2ea9c1"
integrity sha512-WypcfiRhfeUP9vvF0j6rw0J3hrWrw6iZv3+22h6iRMJ/8z1Tj6XfLP4DsUix5MhMPnXpiHDoKyoZ/bdCkwBCiQ==
dependencies:
querystringify "^2.1.1"
requires-port "^1.0.0"
Expand Down

0 comments on commit 683a738

Please sign in to comment.