From e2660252fe3505d6f26048ad2e93f7e53e6e6928 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 26 Jul 2023 19:29:48 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-XML2JS-5414874 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 643a96c..607009f 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5007,9 +5007,9 @@ "dev": true }, "xml2js": { - "version": "0.4.23", - "resolved": "https://registry.npmjs.org/xml2js/-/xml2js-0.4.23.tgz", - "integrity": "sha512-ySPiMjM0+pLDftHgXY4By0uswI3SPKLDw/i3UXbnO8M/p28zqexCUoPmQFrYD+/1BzhGJSs2i1ERWKJAtiLrug==", + "version": "0.5.0", + "resolved": "https://registry.npmjs.org/xml2js/-/xml2js-0.5.0.tgz", + "integrity": "sha512-drPFnkQJik/O+uPKpqSgr22mpuFHqKdbS835iAQrUC73L2F5WkboIRd63ai/2Yg6I1jzifPFKH2NTK+cfglkIA==", "requires": { "sax": ">=0.6.0", "xmlbuilder": "~11.0.0" diff --git a/package.json b/package.json index 10b79a0..f98145b 100644 --- a/package.json +++ b/package.json @@ -37,7 +37,7 @@ "fast-glob": "^3.2.5", "got": "^11.8.2", "picomatch": "^2.2.2", - "xml2js": "^0.4.23" + "xml2js": "^0.5.0" }, "devDependencies": { "@octokit/types": "^7.1.0",