diff --git a/.snyk b/.snyk index 3de415c9..e69de29b 100644 --- a/.snyk +++ b/.snyk @@ -1,6 +0,0 @@ -version: v1.5.0 -ignore: - "SNYK-JS-AGGRIDCOMMUNITY-7414157": - - "*": - reason: "Fix not published yet. When the fix is published, we'll update the package.json to use the fixed version." - expires: "2050-01-01T00:00:00.000Z" diff --git a/CHANGELOG.md b/CHANGELOG.md index 309b58b5..bae4e171 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,12 @@ All notable changes to the **kdb VS Code extension** are documented in this file. +# v1.6.1 + +### Fixes + +- Update Ag-Grid package to avoid prototype pollution + # v1.6.0 ### Enhancements diff --git a/package-lock.json b/package-lock.json index e324d91c..487580ac 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,18 +1,18 @@ { "name": "kdb", - "version": "1.6.0", + "version": "1.6.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "kdb", - "version": "1.6.0", + "version": "1.6.1", "license": "MIT", "dependencies": { "@types/graceful-fs": "^4.1.9", "@vscode/webview-ui-toolkit": "^1.4.0", "@windozer/node-q": "^2.6.0", - "ag-grid-community": "^31.3.1", + "ag-grid-community": "^32.0.1", "axios": "^1.7.2", "chevrotain": "^10.5.0", "csv-parser": "^3.0.0", @@ -1570,10 +1570,20 @@ "acorn": "^6.0.0 || ^7.0.0 || ^8.0.0" } }, + "node_modules/ag-charts-types": { + "version": "10.0.1", + "resolved": "https://registry.npmjs.org/ag-charts-types/-/ag-charts-types-10.0.1.tgz", + "integrity": "sha512-o8aXJfO5lsLGu4jE/2MiTogLCfdJ8UCmrWNPb+AWU0YutCrBHO0uWbSuqzabZxZ4WHxwwRtTllZMT6WqTdz+qg==", + "license": "MIT" + }, "node_modules/ag-grid-community": { - "version": "31.3.1", - "resolved": "https://registry.npmjs.org/ag-grid-community/-/ag-grid-community-31.3.1.tgz", - "integrity": "sha512-kKnNxY8UaVoF0aUSdtzK7oGr48Wj+VrdDY5l2p9+HdF0cAo/jBEasuUYR85QbkumNyilI6UbFpO6IyCrjNQ6Iw==" + "version": "32.0.1", + "resolved": "https://registry.npmjs.org/ag-grid-community/-/ag-grid-community-32.0.1.tgz", + "integrity": "sha512-/eimCgJqMeyFxpJMTQuCtedKzk+BIInqhRdKdoQG8MD3yjrs/AWQFAcT6MP0T64CuNd85mxwB2t+3Ggb+S8hdA==", + "license": "MIT", + "dependencies": { + "ag-charts-types": "10.0.1" + } }, "node_modules/agent-base": { "version": "6.0.2", diff --git a/package.json b/package.json index 87b0a21b..90592dd8 100644 --- a/package.json +++ b/package.json @@ -3,7 +3,7 @@ "displayName": "kdb", "description": "IDE support for kdb product suite", "publisher": "KX", - "version": "1.6.0", + "version": "1.6.1", "engines": { "vscode": "^1.86.0" }, @@ -874,7 +874,7 @@ "@types/graceful-fs": "^4.1.9", "@vscode/webview-ui-toolkit": "^1.4.0", "@windozer/node-q": "^2.6.0", - "ag-grid-community": "^31.3.1", + "ag-grid-community": "^32.0.1", "axios": "^1.7.2", "chevrotain": "^10.5.0", "csv-parser": "^3.0.0",