Skip to content

Commit f5dd019

Browse files
RedennisonRedennison
authored
Merge pull request #7064 from BitGo/DX-1562-address-store2-vulnerability
fix: resolve store2 vulnerability via yarn resolution
2 parents 224d1c0 + 8dd30d9 commit f5dd019

File tree

2 files changed

+6
-5
lines changed

2 files changed

+6
-5
lines changed

package.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -98,7 +98,8 @@
9898
"**/ethers/**/ws": "7.5.10",
9999
"**/swarm-js/**/ws": "5.2.4",
100100
"serialize-javascript": "^6.0.2",
101-
"@grpc/grpc-js": "^1.12.6"
101+
"@grpc/grpc-js": "^1.12.6",
102+
"**/avalanche/store2": "2.14.4"
102103
},
103104
"workspaces": [
104105
"modules/*"

yarn.lock

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -19246,10 +19246,10 @@ stop-iteration-iterator@^1.1.0:
1924619246
es-errors "^1.3.0"
1924719247
internal-slot "^1.1.0"
1924819248

19249-
[email protected]:
19250-
version "2.13.2"
19251-
resolved "https://registry.npmjs.org/store2/-/store2-2.13.2.tgz"
19252-
integrity sha512-CMtO2Uneg3SAz/d6fZ/6qbqqQHi2ynq6/KzMD/26gTkiEShCcpqFfTHgOxsE0egAq6SX3FmN4CeSqn8BzXQkJg==
19249+
[email protected], [email protected]:
19250+
version "2.14.4"
19251+
resolved "https://registry.npmjs.org/store2/-/store2-2.14.4.tgz#81b313abaddade4dcd7570c5cc0e3264a8f7a242"
19252+
integrity sha512-srTItn1GOvyvOycgxjAnPA63FZNwy0PTyUBFMHRM+hVFltAeoh0LmNBz9SZqUS9mMqGk8rfyWyXn3GH5ReJ8Zw==
1925319253

1925419254
str2buf@^1.3.0:
1925519255
version "1.3.0"

0 commit comments

Comments
 (0)