Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(yarn.lock) High and Critical deps vulnerabilities #3302

Closed
wants to merge 215 commits into from
Closed

fix(yarn.lock) High and Critical deps vulnerabilities #3302

wants to merge 215 commits into from

Conversation

igoroctaviano
Copy link
Contributor

chore(deps): bump dot-prop from 4.2.0 to 4.2.1 in /docs/latest #2141

chore(deps): bump y18n from 3.2.1 to 3.2.2 in /docs/latest #2342

[https://github.com/OHIF/Viewers/security/dependabot/216High](https://github.com/OHIF/Viewers/security/dependabot/216%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#216 opened last month • Detected in jszip (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/215High](https://github.com/OHIF/Viewers/security/dependabot/215%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#215 opened last month • Detected in http-cache-semantics (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/213High](https://github.com/OHIF/Viewers/security/dependabot/213%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#213 opened 2 months ago • Detected in json5 (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/212High](https://github.com/OHIF/Viewers/security/dependabot/212%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#212 opened 2 months ago • Detected in json5 (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/204High](https://github.com/OHIF/Viewers/security/dependabot/204%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#204 opened 3 months ago • Detected in qs (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/201High](https://github.com/OHIF/Viewers/security/dependabot/201%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#201 opened 4 months ago • Detected in loader-utils (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/200High](https://github.com/OHIF/Viewers/security/dependabot/200%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#200 opened 4 months ago • Detected in loader-utils (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/196High](https://github.com/OHIF/Viewers/security/dependabot/196%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
bugFix(issue163) #196 opened 5 months ago • Detected in minimatch (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/181High](https://github.com/OHIF/Viewers/security/dependabot/181%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#181 opened 9 months ago • Detected in npm (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/178High](https://github.com/OHIF/Viewers/security/dependabot/178%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#178 opened 10 months ago • Detected in async (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/176High](https://github.com/OHIF/Viewers/security/dependabot/176%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
OHIF Viewer Windows Installer ? #176 opened 10 months ago • Detected in hawk (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/170High](https://github.com/OHIF/Viewers/security/dependabot/170%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#170 opened last year • Detected in async (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/166High](https://github.com/OHIF/Viewers/security/dependabot/166%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#166 opened last year • Detected in ansi-regex (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/164High](https://github.com/OHIF/Viewers/security/dependabot/164%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#164 opened last year • Detected in axios (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/163High](https://github.com/OHIF/Viewers/security/dependabot/163%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#163 opened last year • Detected in ansi-regex (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/162High](https://github.com/OHIF/Viewers/security/dependabot/162%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#162 opened last year • Detected in ansi-regex (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/161High](https://github.com/OHIF/Viewers/security/dependabot/161%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#161 opened last year • Detected in ansi-regex (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/155High](https://github.com/OHIF/Viewers/security/dependabot/155%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#155 opened last year • Detected in lodash (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/153High](https://github.com/OHIF/Viewers/security/dependabot/153%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#153 opened last year • Detected in lodash (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/150High](https://github.com/OHIF/Viewers/security/dependabot/150%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#150 opened last year • Detected in ansi-html (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/136High](https://github.com/OHIF/Viewers/security/dependabot/136%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#136 opened 2 years ago • Detected in node-fetch (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/130High](https://github.com/OHIF/Viewers/security/dependabot/130%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#130 opened last year • Detected in shelljs (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/125High](https://github.com/OHIF/Viewers/security/dependabot/125%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#125 opened last year • Detected in follow-redirects (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/119High](https://github.com/OHIF/Viewers/security/dependabot/119%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#119 opened 2 years ago • Detected in is-svg (npm) • yarn.lock****

[https://github.com/OHIF/Viewers/security/dependabot/114High](https://github.com/OHIF/Viewers/security/dependabot/114%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#114 opened 2 years ago • Detected in nth-check (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/113High](https://github.com/OHIF/Viewers/security/dependabot/113%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#113 opened 2 years ago • Detected in tmpl (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/91High](https://github.com/OHIF/Viewers/security/dependabot/91%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#91 opened 2 years ago • Detected in trim-newlines (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/90High](https://github.com/OHIF/Viewers/security/dependabot/90%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#90 opened 2 years ago • Detected in glob-parent (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/87High](https://github.com/OHIF/Viewers/security/dependabot/87%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#87 opened 2 years ago • Detected in dns-packet (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/82High](https://github.com/OHIF/Viewers/security/dependabot/82%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
Question about Internationalization framework #82 opened 2 years ago • Detected in trim (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/77High](https://github.com/OHIF/Viewers/security/dependabot/77%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#77 opened 2 years ago • Detected in lodash (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/73High](https://github.com/OHIF/Viewers/security/dependabot/73%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#73 opened 2 years ago • Detected in is-svg (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/65High](https://github.com/OHIF/Viewers/security/dependabot/65%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#65 opened 2 years ago • Detected in ini (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/53High](https://github.com/OHIF/Viewers/security/dependabot/53%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#53 opened 2 years ago • Detected in dot-prop (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/52High](https://github.com/OHIF/Viewers/security/dependabot/52%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#52 opened 2 years ago • Detected in serialize-javascript (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/51High](https://github.com/OHIF/Viewers/security/dependabot/51%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#51 opened 2 years ago • Detected in elliptic (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/49High](https://github.com/OHIF/Viewers/security/dependabot/49%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#49 opened 2 years ago • Detected in websocket-extensions (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/48High](https://github.com/OHIF/Viewers/security/dependabot/48%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#48 opened 2 years ago • Detected in acorn (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/45High](https://github.com/OHIF/Viewers/security/dependabot/45%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#45 opened 2 years ago • Detected in kind-of (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/41High](https://github.com/OHIF/Viewers/security/dependabot/41%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#41 opened 2 years ago • Detected in js-yaml (npm) • yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/38High](https://github.com/OHIF/Viewers/security/dependabot/38%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#38 opened 2 years ago • Detected in nth-check (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/35High](https://github.com/OHIF/Viewers/security/dependabot/35%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#35 opened 2 years ago • Detected in tar (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/34High](https://github.com/OHIF/Viewers/security/dependabot/34%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#34 opened 2 years ago • Detected in tar (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/33High](https://github.com/OHIF/Viewers/security/dependabot/33%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#33 opened 2 years ago • Detected in tar (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/31High](https://github.com/OHIF/Viewers/security/dependabot/31%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#31 opened 2 years ago • Detected in tar (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/30High](https://github.com/OHIF/Viewers/security/dependabot/30%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#30 opened 2 years ago • Detected in tar (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/29High](https://github.com/OHIF/Viewers/security/dependabot/29%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#29 opened 2 years ago • Detected in y18n (npm) • docs/latest/yarn.lock
#2342

[https://github.com/OHIF/Viewers/security/dependabot/26High](https://github.com/OHIF/Viewers/security/dependabot/26%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#26 opened 2 years ago • Detected in lodash (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/21High](https://github.com/OHIF/Viewers/security/dependabot/21%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#21 opened 2 years ago • Detected in npm-user-validate (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/20High](https://github.com/OHIF/Viewers/security/dependabot/20%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#20 opened 2 years ago • Detected in lodash (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/18High](https://github.com/OHIF/Viewers/security/dependabot/18%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#18 opened 2 years ago • Detected in ssri (npm) • docs/latest/yarn.lock

[https://github.com/OHIF/Viewers/security/dependabot/17High](https://github.com/OHIF/Viewers/security/dependabot/17%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#17 opened 2 years ago • Detected in y18n (npm) • docs/latest/yarn.lock
#2342

[https://github.com/OHIF/Viewers/security/dependabot/12High](https://github.com/OHIF/Viewers/security/dependabot/12%5BHigh%5D(https://github.com/OHIF/Viewers/security/dependabot?q=is%3Aopen+severity%3Ahigh))
#12 opened 3 years ago • Detected in dot-prop (npm) • docs/latest/yarn.lock

JamesAPetts and others added 30 commits October 15, 2020 16:20
@JamesAPetts
Fix history on master.
339768d
@pieper @JamesAPetts @ohif-bot
2020 10 20 crosshairs merge (#10)
7c6ee75 
* Update crosshairs UI and fix bug where you could scroll offscreen. (OHIF#2126)

* Update crosshairs UI and fix bug where you could scroll offscreen.

* Update tests for removed rotate tool.

* chore(release): publish [skip ci]

 - @ohif/[email protected]
 - @ohif/[email protected]

* Fix history on master.

Co-authored-by: James Petts <[email protected]>
Co-authored-by: ohif-bot <[email protected]>
@wlongabaugh
Start to set up IDC deployment
54812b8
@wlongabaugh
tweak CircleCI
b442940
@wlongabaugh
Merge pull request #11 from ImagingDataCommons/wjrl-dev
381d283 
Wjrl dev
@wlongabaugh
fix config
d98c561
@wlongabaugh
Merge pull request #12 from ImagingDataCommons/wjrl-dev
702fb4a 
fix config
@wlongabaugh
Comment out unused script
59c2cd5
@wlongabaugh
Add to build steps
fb61455
@wlongabaugh
Merge pull request #13 from ImagingDataCommons/wjrl-dev
8c01e2a 
Wjrl dev
@wlongabaugh
Fix support checkout
d06da03
@wlongabaugh
Merge pull request #14 from ImagingDataCommons/wjrl-dev
8db6d12 
Fix support checkout
@wlongabaugh
Debug checkout
4c9f12b
@wlongabaugh
Merge pull request #15 from ImagingDataCommons/wjrl-dev
541dd6b 
Debug checkout
@wlongabaugh
Fix Support
274a224
@wlongabaugh
Merge pull request #16 from ImagingDataCommons/wjrl-dev
13b8432 
Fix Support
@wlongabaugh
Start working on deploy
4444457
@wlongabaugh
Merge pull request #17 from ImagingDataCommons/wjrl-dev
b1fdcfd 
Start working on deploy
@wlongabaugh
Finalizing deploy
be2e043
@wlongabaugh
Fix path
576b454
@wlongabaugh
Merge pull request #18 from ImagingDataCommons/wjrl-dev
d440150 
Wjrl dev
@wlongabaugh
add chmod
2c23495
@wlongabaugh
Merge pull request #20 from ImagingDataCommons/wjrl-dev
8a39b8d 
add chmod
@wlongabaugh
debug
a682b52
@wlongabaugh
Merge pull request #21 from ImagingDataCommons/wjrl-dev
aed66d8 
debug
@wlongabaugh
debug
81e1ef6
@wlongabaugh
Merge pull request #22 from ImagingDataCommons/wjrl-dev
5c2cd3b 
debug
@wlongabaugh
debug
24886e6
@wlongabaugh
Merge pull request #23 from ImagingDataCommons/wjrl-dev
f436fec 
debug
@wlongabaugh
debug
bfecf3e
Punzo and others added 29 commits September 26, 2022 16:44
@Punzo
Merge pull request #168 from OHIF/master
cddc45d 
Update IDC to version 4.12.41
@GitanjaliChhetri
Merge pull request #170 from OHIF/master
bf2047a 
Update to OHIF v4.12.45
@GitanjaliChhetri
Merge pull request #172 from OHIF/master
3327f48 
Update to OHIF v4.12.49
@GitanjaliChhetri
Merge pull request #175 from OHIF/master
a65a36b 
Update to OHIF v4.12.50
@GitanjaliChhetri
feat: Update Measurement Panel
b0fe005
@GitanjaliChhetri
Merge pull request #178 from ImagingDataCommons/feat/update_measureme…
bc8d2ef 
…nt_panel

feat: Update Measurement Panel
@GitanjaliChhetri
enable measurement panel
a6bfaa8
@GitanjaliChhetri
Merge pull request #179 from ImagingDataCommons/enableMeasurementsPanel
cd90d3d 
Enable measurement panel
@igoroctaviano
Bump minimist version to fix prototype pollution reported by dependabot
03aa1b5
@dependabot @igoroctaviano
chore(deps): bump thenify from 3.3.0 to 3.3.1
744b4c4 
Bumps [thenify](https://github.com/thenables/thenify) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/thenables/thenify/releases)
- [Changelog](https://github.com/thenables/thenify/blob/master/History.md)
- [Commits](thenables/thenify@3.3.0...3.3.1)

---
updated-dependencies:
- dependency-name: thenify
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@igoroctaviano
Bump libs version to address dependabot [critical] security alerts
bfa001e
@dependabot @igoroctaviano
chore(deps): bump minimatch from 3.0.4 to 3.0.8 in /docs/latest
92eabd7 
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.0.8.
- [Release notes](https://github.com/isaacs/minimatch/releases)
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.0.8)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump tar from 4.4.13 to 4.4.19
0b42641 
Bumps [tar](https://github.com/npm/node-tar) from 4.4.13 to 4.4.19.
- [Release notes](https://github.com/npm/node-tar/releases)
- [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-tar@v4.4.13...v4.4.19)

---
updated-dependencies:
- dependency-name: tar
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump qs from 6.2.3 to 6.2.4 in /docs/latest
26adf11 
Bumps [qs](https://github.com/ljharb/qs) from 6.2.3 to 6.2.4.
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.2.3...v6.2.4)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump @hapi/hoek from 8.3.2 to 8.5.1
62a6ece 
Bumps [@hapi/hoek](https://github.com/hapijs/hoek) from 8.3.2 to 8.5.1.
- [Release notes](https://github.com/hapijs/hoek/releases)
- [Commits](hapijs/hoek@v8.3.2...v8.5.1)

---
updated-dependencies:
- dependency-name: "@hapi/hoek"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump moment from 2.24.0 to 2.29.4
8b2d4ea 
Bumps [moment](https://github.com/moment/moment) from 2.24.0 to 2.29.4.
- [Release notes](https://github.com/moment/moment/releases)
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](moment/moment@2.24.0...2.29.4)

---
updated-dependencies:
- dependency-name: moment
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump jszip from 3.4.0 to 3.8.0
cebbbab 
Bumps [jszip](https://github.com/Stuk/jszip) from 3.4.0 to 3.8.0.
- [Release notes](https://github.com/Stuk/jszip/releases)
- [Changelog](https://github.com/Stuk/jszip/blob/main/CHANGES.md)
- [Commits](Stuk/jszip@v3.4.0...v3.8.0)

---
updated-dependencies:
- dependency-name: jszip
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump ssri from 6.0.1 to 6.0.2
8bd181e 
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/npm/ssri/releases)
- [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md)
- [Commits](npm/ssri@v6.0.1...v6.0.2)

---
updated-dependencies:
- dependency-name: ssri
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump terser from 4.3.9 to 4.8.1
93c5955 
Bumps [terser](https://github.com/terser/terser) from 4.3.9 to 4.8.1.
- [Release notes](https://github.com/terser/terser/releases)
- [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](terser/terser@v4.3.9...v4.8.1)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump ini from 1.3.5 to 1.3.7 in /docs/latest
a22dd5b 
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.7.
- [Release notes](https://github.com/isaacs/ini/releases)
- [Commits](npm/ini@v1.3.5...v1.3.7)

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump y18n from 4.0.0 to 4.0.3
90a08fc 
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3.
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md)
- [Commits](yargs/y18n@v4.0.0...y18n-v4.0.3)

---
updated-dependencies:
- dependency-name: y18n
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump qs from 6.5.2 to 6.5.3
dc6daf7 
Bumps [qs](https://github.com/ljharb/qs) from 6.5.2 to 6.5.3.
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.5.2...v6.5.3)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump node-forge from 1.2.1 to 1.3.1
23ff015 
Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.2.1 to 1.3.1.
- [Release notes](https://github.com/digitalbazaar/forge/releases)
- [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md)
- [Commits](digitalbazaar/forge@v1.2.1...v1.3.1)

---
updated-dependencies:
- dependency-name: node-forge
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump lodash-es from 4.17.15 to 4.17.21
a5f047f 
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.15...4.17.21)

---
updated-dependencies:
- dependency-name: lodash-es
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @igoroctaviano
chore(deps): bump async from 2.6.2 to 2.6.4 in /docs/latest
9248db6 
Bumps [async](https://github.com/caolan/async) from 2.6.2 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](caolan/async@v2.6.2...v2.6.4)

---
updated-dependencies:
- dependency-name: async
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@igoroctaviano
bump dot-prop from 4.2.0 to 4.2.1 in /docs/latest
6228777
@igoroctaviano
bump y18n from 3.2.1 to 3.2.2 in /docs/latest
be2bcf0
@igoroctaviano
Address high vulnerability items reported by dependabot
9ae278b
@igoroctaviano
Update docs yarn lock
55dc92c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@igoroctaviano @JamesAPetts @pieper @wlongabaugh @Punzo @GitanjaliChhetri