Skip to content

Commit 6cfe73a

Browse files
stevehouelstevehouel
authored
fix: Fixing security issues on package.json dependencies (#22)
1 parent d56b5ab commit 6cfe73a

File tree

2 files changed

+20
-26
lines changed

2 files changed

+20
-26
lines changed

docs/package.json

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,11 @@
1616
"react": "^16.13.1",
1717
"react-dom": "^16.13.1"
1818
},
19+
"resolutions": {
20+
"gatsby/*/*/dot-prop": "^5.1.1",
21+
"gatsby-theme-apollo-docs/*/*/*/*/bl": "^1.0.1",
22+
"gatsby-theme-apollo-docs/*/*/*/*/semver": "^4.3.2"
23+
},
1924
"keywords": [],
2025
"license": "MIT-0",
2126
"repository": "https://github.com/awslabs/aws-lambda-powertools-java",

docs/yarn.lock

Lines changed: 15 additions & 26 deletions
Original file line numberDiff line numberDiff line change
@@ -4313,6 +4313,14 @@ bindings@^1.5.0:
43134313
dependencies:
43144314
file-uri-to-path "1.0.0"
43154315

4316+
bl@^1.0.1, bl@~0.8.1:
4317+
version "1.2.2"
4318+
resolved "https://registry.yarnpkg.com/bl/-/bl-1.2.2.tgz#a160911717103c07410cef63ef51b397c025af9c"
4319+
integrity sha512-e8tQYnZodmebYDWGH7KMRvtzKXaJHx3BbilrgZCfvyLUYdKpK1t5PSPmpkny/SgiTSCnjfLW7v5rlONXVFkQEA==
4320+
dependencies:
4321+
readable-stream "^2.3.5"
4322+
safe-buffer "^5.1.1"
4323+
43164324
bl@^4.0.0:
43174325
version "4.0.2"
43184326
resolved "https://registry.yarnpkg.com/bl/-/bl-4.0.2.tgz#52b71e9088515d0606d9dd9cc7aa48dc1f98e73a"
@@ -4322,13 +4330,6 @@ bl@^4.0.0:
43224330
inherits "^2.0.4"
43234331
readable-stream "^3.4.0"
43244332

4325-
bl@~0.8.1:
4326-
version "0.8.2"
4327-
resolved "https://registry.yarnpkg.com/bl/-/bl-0.8.2.tgz#c9b6bca08d1bc2ea00fc8afb4f1a5fd1e1c66e4e"
4328-
integrity sha1-yba8oI0bwuoA/Ir7Txpf0eHGbk4=
4329-
dependencies:
4330-
readable-stream "~1.0.26"
4331-
43324333
[email protected]:
43334334
version "0.0.5"
43344335
resolved "https://registry.yarnpkg.com/blob/-/blob-0.0.5.tgz#d680eeef25f8cd91ad533f5b01eed48e64caf683"
@@ -6572,14 +6573,7 @@ dot-case@^2.1.0:
65726573
dependencies:
65736574
no-case "^2.2.0"
65746575

6575-
dot-prop@^4.1.0:
6576-
version "4.2.0"
6577-
resolved "https://registry.yarnpkg.com/dot-prop/-/dot-prop-4.2.0.tgz#1f19e0c2e1aa0e32797c49799f2837ac6af69c57"
6578-
integrity sha512-tUMXrxlExSW6U2EXiiKGSBVdYgtV8qlHL+C10TsW4PURY/ic+eaysnSkwB4kA/mBlCyy/IKDJ+Lc3wbWeaXtuQ==
6579-
dependencies:
6580-
is-obj "^1.0.0"
6581-
6582-
dot-prop@^5.2.0:
6576+
dot-prop@^4.1.0, dot-prop@^5.1.1, dot-prop@^5.2.0:
65836577
version "5.2.0"
65846578
resolved "https://registry.yarnpkg.com/dot-prop/-/dot-prop-5.2.0.tgz#c34ecc29556dc45f1f4c22697b6f4904e0cc4fcb"
65856579
integrity sha512-uEUyaDKoSQ1M4Oq8l45hSE26SnTxL6snNnqvK/VWx5wJhmff5z0FUVJDKDanor/6w3kzE3i7XZOk+7wC0EXr1A==
@@ -9996,11 +9990,6 @@ is-number@^7.0.0:
99969990
resolved "https://registry.yarnpkg.com/is-number/-/is-number-7.0.0.tgz#7535345b896734d5f80c4d06c50955527a14f12b"
99979991
integrity sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==
99989992

9999-
is-obj@^1.0.0:
10000-
version "1.0.1"
10001-
resolved "https://registry.yarnpkg.com/is-obj/-/is-obj-1.0.1.tgz#3e4729ac1f5fde025cd7d83a896dab9f4f67db0f"
10002-
integrity sha1-PkcprB9f3gJc19g6iW2rn09n2w8=
10003-
100049993
is-obj@^2.0.0:
100059994
version "2.0.0"
100069995
resolved "https://registry.yarnpkg.com/is-obj/-/is-obj-2.0.0.tgz#473fb05d973705e3fd9620545018ca8e22ef4982"
@@ -13902,7 +13891,7 @@ read@^1.0.7:
1390213891
dependencies:
1390313892
mute-stream "~0.0.4"
1390413893

13905-
"readable-stream@1 || 2", readable-stream@^2.0.0, readable-stream@^2.0.1, readable-stream@^2.0.2, readable-stream@^2.1.5, readable-stream@^2.2.2, readable-stream@^2.3.3, readable-stream@^2.3.6, readable-stream@~2.3.6:
13894+
"readable-stream@1 || 2", readable-stream@^2.0.0, readable-stream@^2.0.1, readable-stream@^2.0.2, readable-stream@^2.1.5, readable-stream@^2.2.2, readable-stream@^2.3.3, readable-stream@^2.3.5, readable-stream@^2.3.6, readable-stream@~2.3.6:
1390613895
version "2.3.7"
1390713896
resolved "https://registry.yarnpkg.com/readable-stream/-/readable-stream-2.3.7.tgz#1eca1cf711aef814c04f62252a36a62f6cb23b57"
1390813897
integrity sha512-Ebho8K4jIbHAxnuxi7o42OrZgF/ZTNcsZj6nRKyUmkhLFq8CHItp/fy6hQZuZmP/n3yZ9VBUbp4zz/mX8hmYPw==
@@ -14766,6 +14755,11 @@ [email protected]:
1476614755
resolved "https://registry.yarnpkg.com/semver/-/semver-7.0.0.tgz#5f3ca35761e47e05b206c6daff2cf814f0316b8e"
1476714756
integrity sha512-+GB6zVA9LWh6zovYQLALHwv5rb2PHGlJi3lfiqIHxR0uuwCgefcOJc59v9fv1w8GbStwxuuqqAjI9NMAOOgq1A==
1476814757

14758+
semver@^4.3.2, semver@~2.3.1:
14759+
version "4.3.6"
14760+
resolved "https://registry.yarnpkg.com/semver/-/semver-4.3.6.tgz#300bc6e0e86374f7ba61068b5b1ecd57fc6532da"
14761+
integrity sha1-MAvG4OhjdPe6YQaLWx7NV/xlMto=
14762+
1476914763
semver@^6.0.0, semver@^6.1.2, semver@^6.2.0, semver@^6.3.0:
1477014764
version "6.3.0"
1477114765
resolved "https://registry.yarnpkg.com/semver/-/semver-6.3.0.tgz#ee0a64c8af5e8ceea67687b133761e1becbd1d3d"
@@ -14776,11 +14770,6 @@ semver@^7.3.2:
1477614770
resolved "https://registry.yarnpkg.com/semver/-/semver-7.3.2.tgz#604962b052b81ed0786aae84389ffba70ffd3938"
1477714771
integrity sha512-OrOb32TeeambH6UrhtShmF7CRDqhL6/5XpPNp2DuRH6+9QLw/orhp72j87v8Qa1ScDkvrrBNpZcDejAirJmfXQ==
1477814772

14779-
semver@~2.3.1:
14780-
version "2.3.2"
14781-
resolved "https://registry.yarnpkg.com/semver/-/semver-2.3.2.tgz#b9848f25d6cf36333073ec9ef8856d42f1233e52"
14782-
integrity sha1-uYSPJdbPNjMwc+ye+IVtQvEjPlI=
14783-
1478414773
[email protected]:
1478514774
version "0.17.1"
1478614775
resolved "https://registry.yarnpkg.com/send/-/send-0.17.1.tgz#c1d8b059f7900f7466dd4938bdc44e11ddb376c8"

0 commit comments

Comments
 (0)