Skip to content

Commit 3b0fcce

Browse files
ppwang-sameta-codesync[bot]
ppwang-sa
authored and
meta-codesync[bot]
committed
Bump vulnerable dependencies: serialize-javascript, @tootallnate/once, minimatch
Summary: Fix 3 GitHub Dependabot security alerts: - serialize-javascript 6.0.2 → 7.0.3 (GHSA-5c6j-r48x-rmvq, HIGH) - tootallnate/once 2.0.0 → 3.0.1 (GHSA-vpq2-c234-7xj6, LOW) - minimatch 3.1.2 → 3.1.3 (GHSA-7r86-cg39-jmmj, HIGH) Reviewed By: jyou23github Differential Revision: D97679152 fbshipit-source-id: aae906cf279f80068a5323faa633ecc0567612ec
1 parent aff77a4 commit 3b0fcce

3 files changed

Lines changed: 17 additions & 15 deletions

File tree

client_js/package.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -24,10 +24,12 @@
2424
"node": ">=18"
2525
},
2626
"resolutions": {
27-
"serialize-javascript": "^6.0.2"
27+
"serialize-javascript": "^7.0.3",
28+
"@tootallnate/once": "^3.0.1"
2829
},
2930
"overrides": {
30-
"serialize-javascript": "^6.0.2"
31+
"serialize-javascript": "^7.0.3",
32+
"@tootallnate/once": "^3.0.1"
3133
},
3234
"devDependencies": {
3335
"@babel/core": "^7.26.8",

client_js/yarn.lock

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1252,10 +1252,10 @@
12521252
dependencies:
12531253
"@sinonjs/commons" "^3.0.0"
12541254

1255-
"@tootallnate/once@2":
1256-
"integrity" "sha512-XCuKFP5PS55gnMVu3dty8KPatLqUoy/ZYzDzAGCQ8JNFCkLXzmI7vNHCR+XpbZaMWQK/vQubr7PkYq8g470J/A=="
1257-
"resolved" "https://registry.npmjs.org/@tootallnate/once/-/once-2.0.0.tgz"
1258-
"version" "2.0.0"
1255+
"@tootallnate/once@^3.0.1":
1256+
"integrity" "sha512-VyMVKRrpHTT8PnotUeV8L/mDaMwD5DaAKCFLP73zAqAtvF0FCqky+Ki7BYbFCYQmqFyTe9316Ed5zS70QUR9eg=="
1257+
"resolved" "https://registry.npmjs.org/@tootallnate/once/-/once-3.0.1.tgz"
1258+
"version" "3.0.1"
12591259

12601260
"@types/babel__core@^7.1.14":
12611261
"integrity" "sha512-qoQprZvz5wQFJwMDqeseRXWv3rqMvhgpbXFfVyWhbx9X47POIA6i/+dXefEmZKoAgOaTdaIgNSMqMIU61yRyzA=="
@@ -2593,7 +2593,7 @@
25932593
"resolved" "https://registry.npmjs.org/http-proxy-agent/-/http-proxy-agent-5.0.0.tgz"
25942594
"version" "5.0.0"
25952595
dependencies:
2596-
"@tootallnate/once" "2"
2596+
"@tootallnate/once" "^3.0.1"
25972597
"agent-base" "6"
25982598
"debug" "4"
25992599

@@ -3803,10 +3803,10 @@
38033803
"resolved" "https://registry.npmjs.org/semver/-/semver-7.7.4.tgz"
38043804
"version" "7.7.4"
38053805

3806-
"serialize-javascript@^6.0.2":
3807-
"integrity" "sha512-Saa1xPByTTq2gdeFZYLLo+RFE35NHZkAbqZeWNd3BpzppeVisAqpDjcp8dyf6uIvEqJRd46jemmyA4iFIeVk8g=="
3808-
"resolved" "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-6.0.2.tgz"
3809-
"version" "6.0.2"
3806+
"serialize-javascript@^7.0.3":
3807+
"integrity" "sha512-h+cZ/XXarqDgCjo+YSyQU/ulDEESGGf8AMK9pPNmhNSl/FzPl6L8pMp1leca5z6NuG6tvV/auC8/43tmovowww=="
3808+
"resolved" "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-7.0.3.tgz"
3809+
"version" "7.0.3"
38103810
dependencies:
38113811
"randombytes" "^2.1.0"
38123812

@@ -3960,7 +3960,7 @@
39603960
"@jridgewell/trace-mapping" "^0.3.25"
39613961
"jest-worker" "^27.4.5"
39623962
"schema-utils" "^4.3.0"
3963-
"serialize-javascript" "^6.0.2"
3963+
"serialize-javascript" "^7.0.3"
39643964
"terser" "^5.31.1"
39653965

39663966
"terser@^5.31.1":

nodejs/capi-param-builder/package-lock.json

Lines changed: 3 additions & 3 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)