From 0d7ff5825da4515974e67a1f8a8d601c842eed34 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 2 Mar 2023 08:58:57 +0000 Subject: [PATCH] fix: gui/velociraptor/package.json & gui/velociraptor/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-FASTXMLPARSER-3325616 --- gui/velociraptor/package-lock.json | 36 +++++++++++++++--------------- gui/velociraptor/package.json | 2 +- 2 files changed, 19 insertions(+), 19 deletions(-) diff --git a/gui/velociraptor/package-lock.json b/gui/velociraptor/package-lock.json index 4bfd4ff674d..2a8ca4eecbc 100644 --- a/gui/velociraptor/package-lock.json +++ b/gui/velociraptor/package-lock.json @@ -30,7 +30,7 @@ "http-proxy-middleware": "^1.3.1", "humanize-duration": "^3.28.0", "interactjs": "^1.10.17", - "is-svg": "^4.3.2", + "is-svg": "^4.4.0", "lodash": "^4.17.21", "moment": "^2.29.4", "moment-timezone": "0.5.40", @@ -4528,14 +4528,14 @@ "dev": true }, "node_modules/fast-xml-parser": { - "version": "3.21.1", - "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-3.21.1.tgz", - "integrity": "sha512-FTFVjYoBOZTJekiUsawGsSYV9QL0A+zDYCRj7y34IO6Jg+2IMYEtQa+bbictpdpV8dHxXywqU7C0gRDEOFtBFg==", + "version": "4.1.3", + "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-4.1.3.tgz", + "integrity": "sha512-LsNDahCiCcJPe8NO7HijcnukHB24tKbfDDA5IILx9dmW3Frb52lhbeX6MPNUSvyGNfav2VTYpJ/OqkRoVLrh2Q==", "dependencies": { - "strnum": "^1.0.4" + "strnum": "^1.0.5" }, "bin": { - "xml2js": "cli.js" + "fxparser": "src/cli/cli.js" }, "funding": { "type": "paypal", @@ -5824,11 +5824,11 @@ } }, "node_modules/is-svg": { - "version": "4.3.2", - "resolved": "https://registry.npmjs.org/is-svg/-/is-svg-4.3.2.tgz", - "integrity": "sha512-mM90duy00JGMyjqIVHu9gNTjywdZV+8qNasX8cm/EEYZ53PHDgajvbBwNVvty5dwSAxLUD3p3bdo+7sR/UMrpw==", + "version": "4.4.0", + "resolved": "https://registry.npmjs.org/is-svg/-/is-svg-4.4.0.tgz", + "integrity": "sha512-v+AgVwiK5DsGtT9ng+m4mClp6zDAmwrW8nZi6Gg15qzvBnRWWdfWA1TGaXyCDnWq5g5asofIgMVl3PjKxvk1ug==", "dependencies": { - "fast-xml-parser": "^3.19.0" + "fast-xml-parser": "^4.1.3" }, "engines": { "node": ">=6" @@ -14521,11 +14521,11 @@ "dev": true }, "fast-xml-parser": { - "version": "3.21.1", - "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-3.21.1.tgz", - "integrity": "sha512-FTFVjYoBOZTJekiUsawGsSYV9QL0A+zDYCRj7y34IO6Jg+2IMYEtQa+bbictpdpV8dHxXywqU7C0gRDEOFtBFg==", + "version": "4.1.3", + "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-4.1.3.tgz", + "integrity": "sha512-LsNDahCiCcJPe8NO7HijcnukHB24tKbfDDA5IILx9dmW3Frb52lhbeX6MPNUSvyGNfav2VTYpJ/OqkRoVLrh2Q==", "requires": { - "strnum": "^1.0.4" + "strnum": "^1.0.5" } }, "fastq": { @@ -15514,11 +15514,11 @@ } }, "is-svg": { - "version": "4.3.2", - "resolved": "https://registry.npmjs.org/is-svg/-/is-svg-4.3.2.tgz", - "integrity": "sha512-mM90duy00JGMyjqIVHu9gNTjywdZV+8qNasX8cm/EEYZ53PHDgajvbBwNVvty5dwSAxLUD3p3bdo+7sR/UMrpw==", + "version": "4.4.0", + "resolved": "https://registry.npmjs.org/is-svg/-/is-svg-4.4.0.tgz", + "integrity": "sha512-v+AgVwiK5DsGtT9ng+m4mClp6zDAmwrW8nZi6Gg15qzvBnRWWdfWA1TGaXyCDnWq5g5asofIgMVl3PjKxvk1ug==", "requires": { - "fast-xml-parser": "^3.19.0" + "fast-xml-parser": "^4.1.3" } }, "is-symbol": { diff --git a/gui/velociraptor/package.json b/gui/velociraptor/package.json index 708ce9a0de3..42ef94c0b47 100644 --- a/gui/velociraptor/package.json +++ b/gui/velociraptor/package.json @@ -26,7 +26,7 @@ "http-proxy-middleware": "^1.3.1", "humanize-duration": "^3.28.0", "interactjs": "^1.10.17", - "is-svg": "^4.3.2", + "is-svg": "^4.4.0", "lodash": "^4.17.21", "moment": "^2.29.4", "moment-timezone": "0.5.40",