From a046ff5496b7193ab6a2358268bdc480dd009f6b Mon Sep 17 00:00:00 2001 From: J M Rossy Date: Tue, 7 Feb 2023 16:59:20 -0500 Subject: [PATCH] Set yarn resolutions to fix security alerts (#1779) --- package.json | 6 ++++-- yarn.lock | 25 +++++++------------------ 2 files changed, 11 insertions(+), 20 deletions(-) diff --git a/package.json b/package.json index 1dc995408..c34c899ca 100644 --- a/package.json +++ b/package.json @@ -30,10 +30,12 @@ "typescript/*" ], "resolutions": { - "underscore": "^1.13", + "async": "^2.6.4", "fetch-ponyfill": "^7.1", + "flat": "^5.0.2", "lodash": "^4.17.21", - "async": "^2.6.4", + "recursive-readdir": "^2.2.3", + "underscore": "^1.13", "undici": "^5.11" } } diff --git a/yarn.lock b/yarn.lock index 01fb6ed16..927ed6fe0 100644 --- a/yarn.lock +++ b/yarn.lock @@ -10302,17 +10302,6 @@ __metadata: languageName: node linkType: hard -"flat@npm:^4.1.0": - version: 4.1.1 - resolution: "flat@npm:4.1.1" - dependencies: - is-buffer: ~2.0.3 - bin: - flat: cli.js - checksum: 398be12185eb0f3c59797c3670a8c35d07020b673363175676afbaf53d6b213660e060488554cf82c25504986e1a6059bdbcc5d562e87ca3e972e8a33148e3ae - languageName: node - linkType: hard - "flat@npm:^5.0.2": version: 5.0.2 resolution: "flat@npm:5.0.2" @@ -11834,7 +11823,7 @@ __metadata: languageName: node linkType: hard -"is-buffer@npm:^2.0.5, is-buffer@npm:~2.0.3": +"is-buffer@npm:^2.0.5": version: 2.0.5 resolution: "is-buffer@npm:2.0.5" checksum: 764c9ad8b523a9f5a32af29bdf772b08eb48c04d2ad0a7240916ac2688c983bf5f8504bf25b35e66240edeb9d9085461f9b5dae1f3d2861c6b06a65fe983de42 @@ -13564,7 +13553,7 @@ __metadata: languageName: node linkType: hard -"minimatch@npm:2 || 3, minimatch@npm:^3.0.4, minimatch@npm:^3.1.1, minimatch@npm:^3.1.2": +"minimatch@npm:2 || 3, minimatch@npm:^3.0.4, minimatch@npm:^3.0.5, minimatch@npm:^3.1.1, minimatch@npm:^3.1.2": version: 3.1.2 resolution: "minimatch@npm:3.1.2" dependencies: @@ -15544,12 +15533,12 @@ __metadata: languageName: node linkType: hard -"recursive-readdir@npm:^2.2.2": - version: 2.2.2 - resolution: "recursive-readdir@npm:2.2.2" +"recursive-readdir@npm:^2.2.3": + version: 2.2.3 + resolution: "recursive-readdir@npm:2.2.3" dependencies: - minimatch: 3.0.4 - checksum: a6b22994d76458443d4a27f5fd7147ac63ad31bba972666a291d511d4d819ee40ff71ba7524c14f6a565b8cfaf7f48b318f971804b913cf538d58f04e25d1fee + minimatch: ^3.0.5 + checksum: 88ec96e276237290607edc0872b4f9842837b95cfde0cdbb1e00ba9623dfdf3514d44cdd14496ab60a0c2dd180a6ef8a3f1c34599e6cf2273afac9b72a6fb2b5 languageName: node linkType: hard