From 025bd89b2546b3220bf2a59678d00d829a065b89 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 2 Jul 2020 00:56:29 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SWAGGERUI-572012 --- package-lock.json | 149 +++++++++++++++++++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 128 insertions(+), 23 deletions(-) diff --git a/package-lock.json b/package-lock.json index 6f30270a8..12a55f4ba 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3573,6 +3573,15 @@ "hoek": "6.x.x" } }, + "bounce": { + "version": "1.2.3", + "resolved": "https://registry.npmjs.org/bounce/-/bounce-1.2.3.tgz", + "integrity": "sha512-3G7B8CyBnip5EahCZJjnvQ1HLyArC6P5e+xcolo13BVI9ogFaDOsNMAE7FIWliHtIkYI8/nTRCvCY9tZa3Mu4g==", + "requires": { + "boom": "7.x.x", + "hoek": "6.x.x" + } + }, "bourne": { "version": "1.1.2", "resolved": "https://registry.npmjs.org/bourne/-/bourne-1.1.2.tgz", @@ -8867,32 +8876,128 @@ } }, "hapi-swaggered-ui": { - "version": "2.6.2", - "resolved": "https://registry.npmjs.org/hapi-swaggered-ui/-/hapi-swaggered-ui-2.6.2.tgz", - "integrity": "sha512-Xxhw0YEgyP4jyCuulZlf2kRUCuNiswX0DSWjfN+IPDdzbQ5lrAmbwPGAa158f/fKmsiIEGhKwYuMLJg/NkMnSg==", + "version": "3.0.0", + "resolved": "https://registry.npmjs.org/hapi-swaggered-ui/-/hapi-swaggered-ui-3.0.0.tgz", + "integrity": "sha512-UPjD1wuVPj1rCu7vbtXGl7wT37WTIcyEaQ5uNrtngAK58emVDXVB76f5BhET06sHFN68OrQw0wfL+OYr9Nr5/w==", "requires": { - "handlebars": "^4.0.6", - "hoek": "^4.1.0", - "inert": "^4.1.0", - "joi": "^10.2.2", - "swagger-ui": "^2.2.10", - "vision": "^4.1.1" + "handlebars": "^4.0.11", + "hoek": "^5.0.2", + "inert": "^5.0.1", + "joi": "^13.0.2", + "lodash": "^4.17.4", + "swagger-ui-dist": "^3.5.0", + "vision": "^5.2.0" }, "dependencies": { + "ammo": { + "version": "3.0.3", + "resolved": "https://registry.npmjs.org/ammo/-/ammo-3.0.3.tgz", + "integrity": "sha512-vo76VJ44MkUBZL/BzpGXaKzMfroF4ZR6+haRuw9p+eSWfoNaH2AxVc8xmiEPC08jhzJSeM6w7/iMUGet8b4oBQ==", + "requires": { + "hoek": "6.x.x" + }, + "dependencies": { + "hoek": { + "version": "6.1.3", + "resolved": "https://registry.npmjs.org/hoek/-/hoek-6.1.3.tgz", + "integrity": "sha512-YXXAAhmF9zpQbC7LEcREFtXfGq5K1fmd+4PHkBq8NUqmzW3G+Dq10bI/i0KucLRwss3YYFQ0fSfoxBZYiGUqtQ==" + } + } + }, "hoek": { - "version": "4.2.1", - "resolved": "https://registry.npmjs.org/hoek/-/hoek-4.2.1.tgz", - "integrity": "sha512-QLg82fGkfnJ/4iy1xZ81/9SIJiq1NGFUMGs6ParyjBZr6jW2Ufj/snDqTHixNlHdPNwN2RLVD0Pi3igeK9+JfA==" + "version": "5.0.4", + "resolved": "https://registry.npmjs.org/hoek/-/hoek-5.0.4.tgz", + "integrity": "sha512-Alr4ZQgoMlnere5FZJsIyfIjORBqZll5POhDsF4q64dPuJR6rNxXdDxtHSQq8OXRurhmx+PWYEE8bXRROY8h0w==" + }, + "inert": { + "version": "5.1.3", + "resolved": "https://registry.npmjs.org/inert/-/inert-5.1.3.tgz", + "integrity": "sha512-xLtqTOcJe+/RBaXkH0ZFai91SFj1a27ZXjFLLyiezLGhZCkBvMA+YGe6hNVVA678mb4EudKW35q1hATkxfUvMA==", + "requires": { + "ammo": "3.x.x", + "boom": "7.x.x", + "bounce": "1.x.x", + "hoek": "6.x.x", + "joi": "14.x.x", + "lru-cache": "4.1.x" + }, + "dependencies": { + "hoek": { + "version": "6.1.3", + "resolved": "https://registry.npmjs.org/hoek/-/hoek-6.1.3.tgz", + "integrity": "sha512-YXXAAhmF9zpQbC7LEcREFtXfGq5K1fmd+4PHkBq8NUqmzW3G+Dq10bI/i0KucLRwss3YYFQ0fSfoxBZYiGUqtQ==" + }, + "joi": { + "version": "14.3.1", + "resolved": "https://registry.npmjs.org/joi/-/joi-14.3.1.tgz", + "integrity": "sha512-LQDdM+pkOrpAn4Lp+neNIFV3axv1Vna3j38bisbQhETPMANYRbFJFUyOZcOClYvM/hppMhGWuKSFEK9vjrB+bQ==", + "requires": { + "hoek": "6.x.x", + "isemail": "3.x.x", + "topo": "3.x.x" + } + } + } + }, + "isemail": { + "version": "3.2.0", + "resolved": "https://registry.npmjs.org/isemail/-/isemail-3.2.0.tgz", + "integrity": "sha512-zKqkK+O+dGqevc93KNsbZ/TqTUFd46MwWjYOoMrjIMZ51eU7DtQG3Wmd9SQQT7i7RVnuTPEiYEWHU3MSbxC1Tg==", + "requires": { + "punycode": "2.x.x" + } }, "joi": { - "version": "10.6.0", - "resolved": "https://registry.npmjs.org/joi/-/joi-10.6.0.tgz", - "integrity": "sha512-hBF3LcqyAid+9X/pwg+eXjD2QBZI5eXnBFJYaAkH4SK3mp9QSRiiQnDYlmlz5pccMvnLcJRS4whhDOTCkmsAdQ==", + "version": "13.7.0", + "resolved": "https://registry.npmjs.org/joi/-/joi-13.7.0.tgz", + "integrity": "sha512-xuY5VkHfeOYK3Hdi91ulocfuFopwgbSORmIwzcwHKESQhC7w1kD5jaVSPnqDxS2I8t3RZ9omCKAxNwXN5zG1/Q==", "requires": { - "hoek": "4.x.x", - "isemail": "2.x.x", + "hoek": "5.x.x", + "isemail": "3.x.x", + "topo": "3.x.x" + } + }, + "topo": { + "version": "3.0.3", + "resolved": "https://registry.npmjs.org/topo/-/topo-3.0.3.tgz", + "integrity": "sha512-IgpPtvD4kjrJ7CRA3ov2FhWQADwv+Tdqbsf1ZnPUSAtCJ9e1Z44MmoSGDXGk4IppoZA7jd/QRkNddlLJWlUZsQ==", + "requires": { + "hoek": "6.x.x" + }, + "dependencies": { + "hoek": { + "version": "6.1.3", + "resolved": "https://registry.npmjs.org/hoek/-/hoek-6.1.3.tgz", + "integrity": "sha512-YXXAAhmF9zpQbC7LEcREFtXfGq5K1fmd+4PHkBq8NUqmzW3G+Dq10bI/i0KucLRwss3YYFQ0fSfoxBZYiGUqtQ==" + } + } + }, + "vision": { + "version": "5.4.4", + "resolved": "https://registry.npmjs.org/vision/-/vision-5.4.4.tgz", + "integrity": "sha512-jFeH7pU/ODYmTOpY5jutMKU/fDr+P621WYEnWgqwDikxutBWJ+koxlgGnkZQoKY6JlYdY4Awo+rPN3DNdTeDKg==", + "requires": { + "boom": "7.x.x", + "hoek": "6.x.x", "items": "2.x.x", - "topo": "2.x.x" + "joi": "14.x.x" + }, + "dependencies": { + "hoek": { + "version": "6.1.3", + "resolved": "https://registry.npmjs.org/hoek/-/hoek-6.1.3.tgz", + "integrity": "sha512-YXXAAhmF9zpQbC7LEcREFtXfGq5K1fmd+4PHkBq8NUqmzW3G+Dq10bI/i0KucLRwss3YYFQ0fSfoxBZYiGUqtQ==" + }, + "joi": { + "version": "14.3.1", + "resolved": "https://registry.npmjs.org/joi/-/joi-14.3.1.tgz", + "integrity": "sha512-LQDdM+pkOrpAn4Lp+neNIFV3axv1Vna3j38bisbQhETPMANYRbFJFUyOZcOClYvM/hppMhGWuKSFEK9vjrB+bQ==", + "requires": { + "hoek": "6.x.x", + "isemail": "3.x.x", + "topo": "3.x.x" + } + } } } } @@ -17090,10 +17195,10 @@ } } }, - "swagger-ui": { - "version": "2.2.10", - "resolved": "https://registry.npmjs.org/swagger-ui/-/swagger-ui-2.2.10.tgz", - "integrity": "sha1-sl56IWZOXZC/OR2zDbCN5B6FLXs=" + "swagger-ui-dist": { + "version": "3.28.0", + "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-3.28.0.tgz", + "integrity": "sha512-aPkfTzPv9djSiZI1NUkWr5HynCUsH+jaJ0WSx+/t19wq7MMGg9clHm9nGoIpAtqml1G51ofI+I75Ym72pukzFg==" }, "table": { "version": "5.4.6", diff --git a/package.json b/package.json index 613447778..235f86dd7 100644 --- a/package.json +++ b/package.json @@ -91,7 +91,7 @@ "hapi-graceful-shutdown-plugin": "1.0.1", "hapi-mustache": "0.0.1", "hapi-swaggered": "2.12.2", - "hapi-swaggered-ui": "2.6.2", + "hapi-swaggered-ui": "3.0.0", "http-status-codes": "1.4.0", "inert": "4.2.1", "joi": "14.3.1",