Skip to content

Commit 5790163

Browse files
hyangahhyangah
committed
extension: npm audit fix (braces, yarn)
braces: GHSA-grv7-fg5c-xmjg yarn: GHSA-mpwj-fcr6-x34c These are all dev dependencies. $ npm audit braces <3.0.3 Severity: high Uncontrolled resource consumption in braces - GHSA-grv7-fg5c-xmjg fix available via `npm audit fix` node_modules/braces yarn <1.22.13 Severity: high Yarn untrusted search path vulnerability - GHSA-mpwj-fcr6-x34c fix available via `npm audit fix --force` Will install [email protected], which is outside the stated dependency range node_modules/yarn $ npm ls braces ... $ npm audit fix $ npm install --save-dev [email protected] $ npm install Change-Id: I77a1917655f65f7424ff69a57ef48fd6aee1adbf Reviewed-on: https://go-review.googlesource.com/c/vscode-go/+/598195 kokoro-CI: kokoro <[email protected]> Commit-Queue: Hyang-Ah Hana Kim <[email protected]> Reviewed-by: Hongxiang Jiang <[email protected]>
1 parent 982638e commit 5790163

File tree

2 files changed

+22
-22
lines changed

2 files changed

+22
-22
lines changed

extension/package-lock.json

Lines changed: 21 additions & 21 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

extension/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -88,7 +88,7 @@
8888
"prettier": "2.2.1",
8989
"sinon": "9.2.4",
9090
"typescript": "4.6.4",
91-
"yarn": "1.22.10"
91+
"yarn": "1.22.22"
9292
},
9393
"engines": {
9494
"vscode": "^1.75.0",

0 commit comments

Comments
 (0)