From f356c23b0a37aa5bb409023fec8b41d202b1b1a4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 May 2024 00:21:44 +0000 Subject: [PATCH 1/4] fix: upgrade @snyk/protect from 1.1286.2 to 1.1291.0 Snyk has created this PR to upgrade @snyk/protect from 1.1286.2 to 1.1291.0. See this package in npm: @snyk/protect See this project in Snyk: https://app.snyk.io/org/buckinghamaj/project/89c51236-80de-4eed-9524-563dc02e4c88?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 586d5a3..8f4f184 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,7 +10,7 @@ "license": "ISC", "dependencies": { "@albertcrowley/winston-pg-native": "github:albertcrowley/winston-pg-native", - "@snyk/protect": "^1.1286.2", + "@snyk/protect": "^1.1291.0", "body-parser": "^1.20.2", "cas-authentication": "0.0.8", "clone-deep": "^4.0.1", @@ -2055,9 +2055,9 @@ "dev": true }, "node_modules/@snyk/protect": { - "version": "1.1286.2", - "resolved": "https://registry.npmjs.org/@snyk/protect/-/protect-1.1286.2.tgz", - "integrity": "sha512-SHmuZ67vKO3QlCFPRMI2QD18/Mij2ig+uYI1IALg5IAD0Wrc57DOlAzFvWmSaK24EH/mUnS/Qfsmt3BmtGZpTA==", + "version": "1.1291.0", + "resolved": "https://registry.npmjs.org/@snyk/protect/-/protect-1.1291.0.tgz", + "integrity": "sha512-BRbgzSOSlzIBmhdEqM0y0q8uhYd2h+tfl3OuMH62JvQ+AI9lFV5Va99gl+wqS8GBBOohQmIh4HnuD25LMCdO7Q==", "bin": { "snyk-protect": "bin/snyk-protect" }, @@ -16883,9 +16883,9 @@ "dev": true }, "@snyk/protect": { - "version": "1.1286.2", - "resolved": "https://registry.npmjs.org/@snyk/protect/-/protect-1.1286.2.tgz", - "integrity": "sha512-SHmuZ67vKO3QlCFPRMI2QD18/Mij2ig+uYI1IALg5IAD0Wrc57DOlAzFvWmSaK24EH/mUnS/Qfsmt3BmtGZpTA==" + "version": "1.1291.0", + "resolved": "https://registry.npmjs.org/@snyk/protect/-/protect-1.1291.0.tgz", + "integrity": "sha512-BRbgzSOSlzIBmhdEqM0y0q8uhYd2h+tfl3OuMH62JvQ+AI9lFV5Va99gl+wqS8GBBOohQmIh4HnuD25LMCdO7Q==" }, "@tootallnate/once": { "version": "1.1.2", diff --git a/package.json b/package.json index b3a8792..e4dda01 100644 --- a/package.json +++ b/package.json @@ -28,7 +28,7 @@ "license": "ISC", "dependencies": { "@albertcrowley/winston-pg-native": "github:albertcrowley/winston-pg-native", - "@snyk/protect": "^1.1286.2", + "@snyk/protect": "^1.1291.0", "body-parser": "^1.20.2", "cas-authentication": "0.0.8", "clone-deep": "^4.0.1", From 4e244446d7335908fa0f19167c972d70151d95df Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 May 2024 00:21:48 +0000 Subject: [PATCH 2/4] fix: upgrade flatted from 3.3.0 to 3.3.1 Snyk has created this PR to upgrade flatted from 3.3.0 to 3.3.1. See this package in npm: flatted See this project in Snyk: https://app.snyk.io/org/buckinghamaj/project/89c51236-80de-4eed-9524-563dc02e4c88?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 586d5a3..9269723 100644 --- a/package-lock.json +++ b/package-lock.json @@ -19,7 +19,7 @@ "express": "^4.19.2", "express-session": "^1.18.0", "express-winston": "^3.4.0", - "flatted": "^3.3.0", + "flatted": "^3.3.1", "json2csv": "^5.0.7", "jsonwebtoken": "^8.5.1", "lodash": "^4.17.21", @@ -5472,9 +5472,9 @@ } }, "node_modules/flatted": { - "version": "3.3.0", - "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.0.tgz", - "integrity": "sha512-noqGuLw158+DuD9UPRKHpJ2hGxpFyDlYYrfM0mWt4XhT4n0lwzTLh70Tkdyy4kyTmyTT9Bv7bWAJqw7cgkEXDg==" + "version": "3.3.1", + "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.1.tgz", + "integrity": "sha512-X8cqMLLie7KsNUDSdzeN8FYK9rEt4Dt67OsG/DNGnYTSDBG4uFAJFBnUeiV+zCVAvwFy56IjM9sH51jVaEhNxw==" }, "node_modules/fn.name": { "version": "1.1.0", @@ -19583,9 +19583,9 @@ } }, "flatted": { - "version": "3.3.0", - "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.0.tgz", - "integrity": "sha512-noqGuLw158+DuD9UPRKHpJ2hGxpFyDlYYrfM0mWt4XhT4n0lwzTLh70Tkdyy4kyTmyTT9Bv7bWAJqw7cgkEXDg==" + "version": "3.3.1", + "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.1.tgz", + "integrity": "sha512-X8cqMLLie7KsNUDSdzeN8FYK9rEt4Dt67OsG/DNGnYTSDBG4uFAJFBnUeiV+zCVAvwFy56IjM9sH51jVaEhNxw==" }, "fn.name": { "version": "1.1.0", diff --git a/package.json b/package.json index b3a8792..1a2ae98 100644 --- a/package.json +++ b/package.json @@ -37,7 +37,7 @@ "express": "^4.19.2", "express-session": "^1.18.0", "express-winston": "^3.4.0", - "flatted": "^3.3.0", + "flatted": "^3.3.1", "json2csv": "^5.0.7", "jsonwebtoken": "^8.5.1", "lodash": "^4.17.21", From fdd5bfc5715c65c1122455a0a223d713e4dcba6b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 May 2024 00:21:52 +0000 Subject: [PATCH 3/4] fix: upgrade openid-client from 5.6.4 to 5.6.5 Snyk has created this PR to upgrade openid-client from 5.6.4 to 5.6.5. See this package in npm: openid-client See this project in Snyk: https://app.snyk.io/org/buckinghamaj/project/89c51236-80de-4eed-9524-563dc02e4c88?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 30 +++++++++++++++--------------- package.json | 2 +- 2 files changed, 16 insertions(+), 16 deletions(-) diff --git a/package-lock.json b/package-lock.json index 586d5a3..97a163f 100644 --- a/package-lock.json +++ b/package-lock.json @@ -28,7 +28,7 @@ "ms": "^2.1.3", "node-fetch": "^2.7.0", "nodemailer": "^6.9.13", - "openid-client": "^5.6.4", + "openid-client": "^5.6.5", "pg": "^8.11.5", "pg-hstore": "^2.3.4", "sequelize": "^6.37.2", @@ -9985,9 +9985,9 @@ } }, "node_modules/jose": { - "version": "4.15.4", - "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.4.tgz", - "integrity": "sha512-W+oqK4H+r5sITxfxpSU+MMdr/YSWGvgZMQDIsNoBDGGy4i7GBPTtvFKibQzW06n3U3TqHjhvBJsirShsEJ6eeQ==", + "version": "4.15.5", + "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.5.tgz", + "integrity": "sha512-jc7BFxgKPKi94uOvEmzlSWFFe2+vASyXaKUpdQKatWAESU2MWjDfFf0fdfc83CDKcA5QecabZeNLyfhe3yKNkg==", "funding": { "url": "https://github.com/sponsors/panva" } @@ -11692,11 +11692,11 @@ } }, "node_modules/openid-client": { - "version": "5.6.4", - "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-5.6.4.tgz", - "integrity": "sha512-T1h3B10BRPKfcObdBklX639tVz+xh34O7GjofqrqiAQdm7eHsQ00ih18x6wuJ/E6FxdtS2u3FmUGPDeEcMwzNA==", + "version": "5.6.5", + "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-5.6.5.tgz", + "integrity": "sha512-5P4qO9nGJzB5PI0LFlhj4Dzg3m4odt0qsJTfyEtZyOlkgpILwEioOhVVJOrS1iVH494S4Ee5OCjjg6Bf5WOj3w==", "dependencies": { - "jose": "^4.15.4", + "jose": "^4.15.5", "lru-cache": "^6.0.0", "object-hash": "^2.2.0", "oidc-token-hash": "^5.0.3" @@ -23118,9 +23118,9 @@ } }, "jose": { - "version": "4.15.4", - "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.4.tgz", - "integrity": "sha512-W+oqK4H+r5sITxfxpSU+MMdr/YSWGvgZMQDIsNoBDGGy4i7GBPTtvFKibQzW06n3U3TqHjhvBJsirShsEJ6eeQ==" + "version": "4.15.5", + "resolved": "https://registry.npmjs.org/jose/-/jose-4.15.5.tgz", + "integrity": "sha512-jc7BFxgKPKi94uOvEmzlSWFFe2+vASyXaKUpdQKatWAESU2MWjDfFf0fdfc83CDKcA5QecabZeNLyfhe3yKNkg==" }, "js-beautify": { "version": "1.14.7", @@ -24471,11 +24471,11 @@ } }, "openid-client": { - "version": "5.6.4", - "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-5.6.4.tgz", - "integrity": "sha512-T1h3B10BRPKfcObdBklX639tVz+xh34O7GjofqrqiAQdm7eHsQ00ih18x6wuJ/E6FxdtS2u3FmUGPDeEcMwzNA==", + "version": "5.6.5", + "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-5.6.5.tgz", + "integrity": "sha512-5P4qO9nGJzB5PI0LFlhj4Dzg3m4odt0qsJTfyEtZyOlkgpILwEioOhVVJOrS1iVH494S4Ee5OCjjg6Bf5WOj3w==", "requires": { - "jose": "^4.15.4", + "jose": "^4.15.5", "lru-cache": "^6.0.0", "object-hash": "^2.2.0", "oidc-token-hash": "^5.0.3" diff --git a/package.json b/package.json index b3a8792..b1c57f9 100644 --- a/package.json +++ b/package.json @@ -46,7 +46,7 @@ "ms": "^2.1.3", "node-fetch": "^2.7.0", "nodemailer": "^6.9.13", - "openid-client": "^5.6.4", + "openid-client": "^5.6.5", "pg": "^8.11.5", "pg-hstore": "^2.3.4", "sequelize": "^6.37.2", From ab9733c0839951b5b08db393ba68eeecb0f055db Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 23 May 2024 00:21:56 +0000 Subject: [PATCH 4/4] fix: upgrade sequelize from 6.37.2 to 6.37.3 Snyk has created this PR to upgrade sequelize from 6.37.2 to 6.37.3. See this package in npm: sequelize See this project in Snyk: https://app.snyk.io/org/buckinghamaj/project/89c51236-80de-4eed-9524-563dc02e4c88?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 586d5a3..01792fb 100644 --- a/package-lock.json +++ b/package-lock.json @@ -31,7 +31,7 @@ "openid-client": "^5.6.4", "pg": "^8.11.5", "pg-hstore": "^2.3.4", - "sequelize": "^6.37.2", + "sequelize": "^6.37.3", "sequelize-cli": "^6.6.1", "umzug": "^2.3.0", "winston": "^3.13.0" @@ -12875,9 +12875,9 @@ } }, "node_modules/sequelize": { - "version": "6.37.2", - "resolved": "https://registry.npmjs.org/sequelize/-/sequelize-6.37.2.tgz", - "integrity": "sha512-bnb7swGANONXCTrVyebpOOZssLwQrVkYX2tcC6qOIvH+P+OhsoMBi7c3GXI5bC+Z4b4tOl+kQy6yeqLCZ1YQAQ==", + "version": "6.37.3", + "resolved": "https://registry.npmjs.org/sequelize/-/sequelize-6.37.3.tgz", + "integrity": "sha512-V2FTqYpdZjPy3VQrZvjTPnOoLm0KudCRXfGWp48QwhyPPp2yW8z0p0sCYZd/em847Tl2dVxJJ1DR+hF+O77T7A==", "funding": [ { "type": "opencollective", @@ -25411,9 +25411,9 @@ } }, "sequelize": { - "version": "6.37.2", - "resolved": "https://registry.npmjs.org/sequelize/-/sequelize-6.37.2.tgz", - "integrity": "sha512-bnb7swGANONXCTrVyebpOOZssLwQrVkYX2tcC6qOIvH+P+OhsoMBi7c3GXI5bC+Z4b4tOl+kQy6yeqLCZ1YQAQ==", + "version": "6.37.3", + "resolved": "https://registry.npmjs.org/sequelize/-/sequelize-6.37.3.tgz", + "integrity": "sha512-V2FTqYpdZjPy3VQrZvjTPnOoLm0KudCRXfGWp48QwhyPPp2yW8z0p0sCYZd/em847Tl2dVxJJ1DR+hF+O77T7A==", "requires": { "@types/debug": "^4.1.8", "@types/validator": "^13.7.17", diff --git a/package.json b/package.json index b3a8792..5df185b 100644 --- a/package.json +++ b/package.json @@ -49,7 +49,7 @@ "openid-client": "^5.6.4", "pg": "^8.11.5", "pg-hstore": "^2.3.4", - "sequelize": "^6.37.2", + "sequelize": "^6.37.3", "sequelize-cli": "^6.6.1", "umzug": "^2.3.0", "winston": "^3.13.0"