Skip to content

Commit

Permalink
[CVE] Bump tsd from 0.16.0 to 0.21.0 (#1770)
Browse files Browse the repository at this point in the history
- Partially addresses: CVE-2022-33987
- bumps `tsd` dependencies from `0.16.0` to `0.21.0` (latest)
  - [`tsd` release changelog](https://github.com/SamVerschueren/tsd/releases)
  - Breaking changes:
    - `0.17.0` includes "Require Node.js 12" - this is not a breaking change as we've already update to node `14.19.1`

`tsd v0.17.0` removes dependency chain:
- `update-notifier`
- `latest-version`
- `package-json`
- `got`

Partial fix for #1764

Signed-off-by: Josh Romero <[email protected]>
(cherry picked from commit d1cfe78)
  • Loading branch information
joshuarrrr authored and github-actions[bot] committed Jun 23, 2022
1 parent 68f1964 commit 3c18084
Show file tree
Hide file tree
Showing 7 changed files with 23 additions and 329 deletions.
2 changes: 1 addition & 1 deletion packages/opensearch-safer-lodash-set/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@
"devDependencies": {
"dependency-check": "^4.1.0",
"tape": "^5.0.1",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
},
"peerDependencies": {
"lodash": "4.x"
Expand Down
2 changes: 1 addition & 1 deletion packages/osd-apm-config-loader/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,6 @@
},
"devDependencies": {
"typescript": "4.0.2",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
}
}
2 changes: 1 addition & 1 deletion packages/osd-config-schema/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
},
"devDependencies": {
"typescript": "4.0.2",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
},
"peerDependencies": {
"lodash": "^4.17.21",
Expand Down
2 changes: 1 addition & 1 deletion packages/osd-config/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,6 @@
"@osd/dev-utils": "1.0.0",
"@osd/utility-types": "1.0.0",
"typescript": "4.0.2",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
}
}
2 changes: 1 addition & 1 deletion packages/osd-std/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,6 @@
"devDependencies": {
"@osd/utility-types": "1.0.0",
"typescript": "4.0.2",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
}
}
2 changes: 1 addition & 1 deletion packages/osd-utility-types/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,6 @@
},
"devDependencies": {
"del-cli": "^3.0.1",
"tsd": "^0.16.0"
"tsd": "^0.21.0"
}
}
340 changes: 17 additions & 323 deletions yarn.lock

Large diffs are not rendered by default.

0 comments on commit 3c18084

Please sign in to comment.