Skip to content

Commit a39a8a2

Browse files
snyk-botsnyk-bot
committed
fix: redisinsight/api/package.json & redisinsight/api/yarn.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-EXPRESS-6474509
1 parent f6f82a1 commit a39a8a2

File tree

2 files changed

+44
-2
lines changed

2 files changed

+44
-2
lines changed

redisinsight/api/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -66,7 +66,7 @@
6666
"date-fns": "^2.29.3",
6767
"detect-port": "^1.5.1",
6868
"dotenv": "^16.0.0",
69-
"express": "^4.17.1",
69+
"express": "^4.19.2",
7070
"fs-extra": "^10.0.0",
7171
"ioredis": "^5.2.2",
7272
"is-glob": "^4.0.1",

redisinsight/api/yarn.lock

Lines changed: 43 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2741,6 +2741,11 @@ [email protected]:
27412741
resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.5.0.tgz#d1f5d71adec6558c58f389987c366aa47e994f8b"
27422742
integrity sha512-YZ3GUyn/o8gfKJlnlX7g7xq4gyO6OSuhGPKaaGssGB2qgDUS0gPgtTvoyZLTt9Ab6dC4hfc9dV5arkvc/OCmrw==
27432743

2744+
[email protected]:
2745+
version "0.6.0"
2746+
resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.6.0.tgz#2798b04b071b0ecbff0dbb62a505a8efa4e19051"
2747+
integrity sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==
2748+
27442749
cookie@~0.4.1:
27452750
version "0.4.2"
27462751
resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.4.2.tgz#0e41f24de5ecf317947c82fc789e06a884824432"
@@ -3630,7 +3635,7 @@ expect@^26.6.2:
36303635
jest-message-util "^26.6.2"
36313636
jest-regex-util "^26.0.0"
36323637

3633-
[email protected], express@^4.17.1:
3638+
[email protected]:
36343639
version "4.18.2"
36353640
resolved "https://registry.yarnpkg.com/express/-/express-4.18.2.tgz#3fabe08296e930c796c19e3c516979386ba9fd59"
36363641
integrity sha512-5/PsL6iGPdfQ/lKM1UuielYgv3BUoJfz1aUwU9vHZ+J7gyvwdQXFEBIEIaxeGf0GIcreATNyBExtalisDbuMqQ==
@@ -3667,6 +3672,43 @@ [email protected], express@^4.17.1:
36673672
utils-merge "1.0.1"
36683673
vary "~1.1.2"
36693674

3675+
express@^4.19.2:
3676+
version "4.19.2"
3677+
resolved "https://registry.yarnpkg.com/express/-/express-4.19.2.tgz#e25437827a3aa7f2a827bc8171bbbb664a356465"
3678+
integrity sha512-5T6nhjsT+EOMzuck8JjBHARTHfMht0POzlA60WV2pMD3gyXw2LZnZ+ueGdNxG+0calOJcWKbpFcuzLZ91YWq9Q==
3679+
dependencies:
3680+
accepts "~1.3.8"
3681+
array-flatten "1.1.1"
3682+
body-parser "1.20.2"
3683+
content-disposition "0.5.4"
3684+
content-type "~1.0.4"
3685+
cookie "0.6.0"
3686+
cookie-signature "1.0.6"
3687+
debug "2.6.9"
3688+
depd "2.0.0"
3689+
encodeurl "~1.0.2"
3690+
escape-html "~1.0.3"
3691+
etag "~1.8.1"
3692+
finalhandler "1.2.0"
3693+
fresh "0.5.2"
3694+
http-errors "2.0.0"
3695+
merge-descriptors "1.0.1"
3696+
methods "~1.1.2"
3697+
on-finished "2.4.1"
3698+
parseurl "~1.3.3"
3699+
path-to-regexp "0.1.7"
3700+
proxy-addr "~2.0.7"
3701+
qs "6.11.0"
3702+
range-parser "~1.2.1"
3703+
safe-buffer "5.2.1"
3704+
send "0.18.0"
3705+
serve-static "1.15.0"
3706+
setprototypeof "1.2.0"
3707+
statuses "2.0.1"
3708+
type-is "~1.6.18"
3709+
utils-merge "1.0.1"
3710+
vary "~1.1.2"
3711+
36703712
extend-shallow@^2.0.1:
36713713
version "2.0.1"
36723714
resolved "https://registry.yarnpkg.com/extend-shallow/-/extend-shallow-2.0.1.tgz#51af7d614ad9a9f610ea1bafbb989d6b1c56890f"

0 commit comments

Comments
 (0)