Description
Update package-lock.json to address npm audit security vulnerabilities and update transitive dependencies to their latest patched versions.
Changes
- Remove unused
@ungap/promise-all-settled dependency
- Update vulnerable dependencies to patched versions:
ansi-colors 4.1.1 → 4.1.3brace-expansion 1.1.11 → 1.1.12braces 3.0.2 → 3.0.3cross-spawn 7.0.3 → 7.0.6debug 4.3.4 → 4.4.3diff 5.0.0 → 5.2.0
- Add proper license field metadata to dependencies
- Update supporting library dependencies for compatibility
Impact
- Addresses npm audit security warnings
- Improves supply chain security by updating to patched versions
- No breaking changes to extension functionality
Description
Update package-lock.json to address npm audit security vulnerabilities and update transitive dependencies to their latest patched versions.
Changes
@ungap/promise-all-settleddependencyansi-colors4.1.1 → 4.1.3brace-expansion1.1.11 → 1.1.12braces3.0.2 → 3.0.3cross-spawn7.0.3 → 7.0.6debug4.3.4 → 4.4.3diff5.0.0 → 5.2.0Impact