From 11c1bec85c31e65a3ea3157e6b2ac9b10082db32 Mon Sep 17 00:00:00 2001 From: rosen-vladimirov Date: Fri, 29 Jul 2016 10:58:19 +0300 Subject: [PATCH] Update dependencies in order to fix minimatch warning As some of the dependencies are using old version of minimatch, the following warning appears during installation of nativescript CLI: `npm WARN deprecated minimatch@0.2.14: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue` Update some of the dependencies in order to stop showing the warning. However it is still there as the broccoli dependency is not updated for more than 8 months and it depends on old version of glob module. Same is valid for the node-inspector version that we are using and that we cannot upgrade at the moment. --- package.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index 354a0346eb..0cad25cecc 100644 --- a/package.json +++ b/package.json @@ -29,8 +29,8 @@ "dependencies": { "bluebird": "2.9.34", "bplist-parser": "0.1.0", - "broccoli": "0.16.4", - "broccoli-funnel": "0.2.3", + "broccoli": "0.16.9", + "broccoli-funnel": "1.0.3", "bufferpack": "0.0.6", "bufferutil": "https://github.com/telerik/bufferutil/tarball/v1.0.1.2", "byline": "4.2.1", @@ -42,7 +42,7 @@ "ffi": "https://github.com/icenium/node-ffi/tarball/v2.0.0.2", "fibers": "https://github.com/icenium/node-fibers/tarball/v1.0.13.0", "filesize": "3.1.2", - "gaze": "1.0.0", + "gaze": "1.1.0", "glob": "^7.0.3", "iconv-lite": "0.4.11", "inquirer": "0.9.0", @@ -52,13 +52,13 @@ "log4js": "0.6.26", "marked": "0.3.3", "marked-terminal": "1.5.0", - "minimatch": "2.0.10", + "minimatch": "3.0.2", "mkdirp": "0.5.1", "moment": "2.10.6", "mute-stream": "0.0.5", "node-inspector": "https://github.com/NativeScript/node-inspector/tarball/v0.7.4.1", "node-uuid": "1.4.3", - "npm": "2.15.6", + "npm": "2.15.9", "open": "0.0.5", "osenv": "0.1.3", "plist": "1.1.0",