From e0df6091c7fc49a8cc2f35c7892b95656ca42e89 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 10 Oct 2024 04:39:02 +0000 Subject: [PATCH] fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 --- backend/package-lock.json | 131 +++++++++++++------------------------- backend/package.json | 2 +- 2 files changed, 44 insertions(+), 89 deletions(-) diff --git a/backend/package-lock.json b/backend/package-lock.json index 9d685da..e81edf5 100644 --- a/backend/package-lock.json +++ b/backend/package-lock.json @@ -4,78 +4,48 @@ "lockfileVersion": 1, "requires": true, "dependencies": { - "@sentry/core": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/core/-/core-5.23.0.tgz", - "integrity": "sha512-K8Wp/g1opaauKJh2w5Z1Vw/YdudHQgH6Ng5fBazHZxA7zB9R8EbVKDsjy8XEcyHsWB7fTSlYX/7coqmZNOADdg==", - "requires": { - "@sentry/hub": "5.23.0", - "@sentry/minimal": "5.23.0", - "@sentry/types": "5.23.0", - "@sentry/utils": "5.23.0", - "tslib": "^1.9.3" - } - }, - "@sentry/hub": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/hub/-/hub-5.23.0.tgz", - "integrity": "sha512-P0sevLI9qAQc1J+AcHzNXwj83aG3GKiABVQJp0rgCUMtrXqLawa+j8pOHg8p7QWroHM7TKDMKeny9WemXBgzBQ==", + "@sentry-internal/tracing": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry-internal/tracing/-/tracing-7.75.0.tgz", + "integrity": "sha512-/j4opF/jB9j8qnSiQK75/lFLtkfqXS5/MoOKc2KWK/pOaf15W+6uJzGQ8jRBHLYd9dDg6AyqsF48Wqy561/mNg==", "requires": { - "@sentry/types": "5.23.0", - "@sentry/utils": "5.23.0", - "tslib": "^1.9.3" + "@sentry/core": "7.75.0", + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0" } }, - "@sentry/minimal": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/minimal/-/minimal-5.23.0.tgz", - "integrity": "sha512-/w/B7ShMVu/tLI0/A5X+w6GfdZIQdFQihWyIK1vXaYS5NS6biGI3K6DcACuMrD/h4BsqlfgdXSOHHrmCJcyCXQ==", + "@sentry/core": { + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/core/-/core-7.75.0.tgz", + "integrity": "sha512-vXg3cdJgwzP24oTS9zFCgLW4MgTkMZqXx+ESRq7gTD9qJTpcmAmYT+Ckmvebg8K6DBThV6+0v61r50na2+XdrA==", "requires": { - "@sentry/hub": "5.23.0", - "@sentry/types": "5.23.0", - "tslib": "^1.9.3" + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0" } }, "@sentry/node": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/node/-/node-5.23.0.tgz", - "integrity": "sha512-WFiAI9+XALB144LRYsWt4aM6soxMRAp1SQ72H0LNOYQXyei5hnKXLmL8UH5RHJFD60Y8S42tIhZkdPPXSq7HgQ==", + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/node/-/node-7.75.0.tgz", + "integrity": "sha512-z5Xanf9QeTd4YrEuZiJfvtAy2C874Zg4KpurEo3okJ8uYjnbXMsQ3EwVHbKEoYSwE3ExTrqOggPfk2NNSJIECA==", "requires": { - "@sentry/core": "5.23.0", - "@sentry/hub": "5.23.0", - "@sentry/tracing": "5.23.0", - "@sentry/types": "5.23.0", - "@sentry/utils": "5.23.0", - "cookie": "^0.4.1", - "https-proxy-agent": "^5.0.0", - "lru_map": "^0.3.3", - "tslib": "^1.9.3" - } - }, - "@sentry/tracing": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/tracing/-/tracing-5.23.0.tgz", - "integrity": "sha512-cexFQCuGcFukqyaP8p8Uf/aCuMkzJeiU4Trx7vYHf16L95aSn5TGELK0SZOugEb2Gi9D9Z6NHfuK16nWjwPSRQ==", - "requires": { - "@sentry/hub": "5.23.0", - "@sentry/minimal": "5.23.0", - "@sentry/types": "5.23.0", - "@sentry/utils": "5.23.0", - "tslib": "^1.9.3" + "@sentry-internal/tracing": "7.75.0", + "@sentry/core": "7.75.0", + "@sentry/types": "7.75.0", + "@sentry/utils": "7.75.0", + "https-proxy-agent": "^5.0.0" } }, "@sentry/types": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/types/-/types-5.23.0.tgz", - "integrity": "sha512-PbN5MVWxrq05sZ707lc8lleV0xSsI6jWr9h9snvbAuMjcauE0lmdWmjoWKY3PAz2s1mGYFh55kIo8SmQuVwbYg==" + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/types/-/types-7.75.0.tgz", + "integrity": "sha512-xG8OLADxG7HpGhMxrF4v4tKq/v/gqmLsTZ858R51pz0xCWM8SK6ZSWOKudkAGBIpRjI6RUHMnkBtRAN2aKDOkQ==" }, "@sentry/utils": { - "version": "5.23.0", - "resolved": "https://registry.npmjs.org/@sentry/utils/-/utils-5.23.0.tgz", - "integrity": "sha512-D5gQDM0wEjKxhE+YNvCuCHo/6JuaORF2/3aOhoJBR+dy9EACRspg7kp3+9KF44xd2HVEXkSVCJkv8/+sHePYRQ==", + "version": "7.75.0", + "resolved": "https://registry.npmjs.org/@sentry/utils/-/utils-7.75.0.tgz", + "integrity": "sha512-UHWKeevhUNRp+mAWDbMVFOMgseoq8t/xFgdUywO/2PC14qZKRBH+0k1BKoNkp5sOzDT06ETj2w6wYoYhy6i+dA==", "requires": { - "@sentry/types": "5.23.0", - "tslib": "^1.9.3" + "@sentry/types": "7.75.0" } }, "@sindresorhus/is": { @@ -459,11 +429,6 @@ "xdg-basedir": "^4.0.0" } }, - "cookie": { - "version": "0.4.1", - "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz", - "integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==" - }, "core-util-is": { "version": "1.0.2", "resolved": "https://registry.npmjs.org/core-util-is/-/core-util-is-1.0.2.tgz", @@ -1083,11 +1048,6 @@ "yallist": "^2.1.2" } }, - "lru_map": { - "version": "0.3.3", - "resolved": "https://registry.npmjs.org/lru_map/-/lru_map-0.3.3.tgz", - "integrity": "sha1-tcg1G5Rky9dQM1p5ZQoOwOVhGN0=" - }, "make-dir": { "version": "3.1.0", "resolved": "https://registry.npmjs.org/make-dir/-/make-dir-3.1.0.tgz", @@ -1829,6 +1789,21 @@ "tweetnacl": "~0.14.0" } }, + "string_decoder": { + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz", + "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==", + "requires": { + "safe-buffer": "~5.1.0" + }, + "dependencies": { + "safe-buffer": { + "version": "5.1.2", + "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz", + "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==" + } + } + }, "string-width": { "version": "4.2.0", "resolved": "https://registry.npmjs.org/string-width/-/string-width-4.2.0.tgz", @@ -1869,21 +1844,6 @@ } } }, - "string_decoder": { - "version": "1.1.1", - "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz", - "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==", - "requires": { - "safe-buffer": "~5.1.0" - }, - "dependencies": { - "safe-buffer": { - "version": "5.1.2", - "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz", - "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==" - } - } - }, "strip-ansi": { "version": "5.2.0", "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-5.2.0.tgz", @@ -2003,11 +1963,6 @@ "punycode": "^2.1.1" } }, - "tslib": { - "version": "1.13.0", - "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.13.0.tgz", - "integrity": "sha512-i/6DQjL8Xf3be4K/E6Wgpekn5Qasl1usyw++dAA35Ue5orEn65VIxOA+YvNNl9HV3qv70T7CNwjODHZrLwvd1Q==" - }, "tunnel-agent": { "version": "0.6.0", "resolved": "https://registry.npmjs.org/tunnel-agent/-/tunnel-agent-0.6.0.tgz", diff --git a/backend/package.json b/backend/package.json index 4a13713..95ede21 100644 --- a/backend/package.json +++ b/backend/package.json @@ -18,7 +18,7 @@ "pretty-quick": "1.8.0" }, "dependencies": { - "@sentry/node": "^5.11.0", + "@sentry/node": "^7.75.0", "axios": "^0.20.0", "dotenv": "6.1.0", "mongoose": "^5.8.7",