Commit 54ae5a3
committed
build(deps-dev): Bump tar from 6.2.1 to 7.5.6
Resolves alerts for several security advisories such as:
GHSA-r6q2-hw4h-h46w
GHSA-8qq5-rm4j-mr97
As per our assessment those vulnerabilities are not exploitable in the context of UI5 CLI.
The affected versions of tar are used in dev dependencies only.
This commit also includes a minor bump of lodash to address GHSA-xxjr-mmjv-4gpg
which is also not exploitable in the context of UI5 CLI.1 parent d17f79e commit 54ae5a3
2 files changed
Lines changed: 40 additions & 70 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
51 | 51 | | |
52 | 52 | | |
53 | 53 | | |
| 54 | + | |
| 55 | + | |
| 56 | + | |
| 57 | + | |
| 58 | + | |
| 59 | + | |
| 60 | + | |
| 61 | + | |
| 62 | + | |
| 63 | + | |
| 64 | + | |
54 | 65 | | |
55 | 66 | | |
56 | 67 | | |
| |||
0 commit comments