Skip to content

Commit

Permalink
fix: package.json & yarn.lock to reduce vulnerabilities
Browse files Browse the repository at this point in the history
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
  • Loading branch information
snyk-bot committed Dec 14, 2023
1 parent c86939a commit 3b5cfbb
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 32 deletions.
2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@
"jszip": "3.10.1",
"pino": "^8.16.2",
"pino-abstract-transport": "^1.1.0",
"pino-pretty": "^10.2.3",
"pino-pretty": "^10.3.0",
"proper-lockfile": "^4.1.2",
"semver": "^7.5.4",
"ts-retry-promise": "^0.7.1"
Expand Down
41 changes: 10 additions & 31 deletions yarn.lock
Original file line number Diff line number Diff line change
Expand Up @@ -2403,17 +2403,6 @@ glob@^7.0.0, glob@^7.1.3, glob@^7.1.4, glob@^7.1.6:
once "^1.3.0"
path-is-absolute "^1.0.0"

glob@^8.0.0:
version "8.1.0"
resolved "https://registry.yarnpkg.com/glob/-/glob-8.1.0.tgz#d388f656593ef708ee3e34640fdfb99a9fd1c33e"
integrity sha512-r8hpEjiQEYlF2QU0df3dS+nxxSIreXQS1qRhMJM0Q5NDdR386C7jb7Hwwod8Fgiuex+k0GFjgft18yvxm5XoCQ==
dependencies:
fs.realpath "^1.0.0"
inflight "^1.0.4"
inherits "2"
minimatch "^5.0.1"
once "^1.3.0"

global-dirs@^0.1.1:
version "0.1.1"
resolved "https://registry.yarnpkg.com/global-dirs/-/global-dirs-0.1.1.tgz#b319c0dd4607f353f3be9cca4c72fc148c49f445"
Expand Down Expand Up @@ -2557,13 +2546,10 @@ header-case@^2.0.4:
capital-case "^1.0.4"
tslib "^2.0.3"

help-me@^4.0.1:
version "4.2.0"
resolved "https://registry.yarnpkg.com/help-me/-/help-me-4.2.0.tgz#50712bfd799ff1854ae1d312c36eafcea85b0563"
integrity sha512-TAOnTB8Tz5Dw8penUuzHVrKNKlCIbwwbHnXraNJxPwf8LRtE2HlM84RYuezMFcwOJmoYOCWVDyJ8TQGxn9PgxA==
dependencies:
glob "^8.0.0"
readable-stream "^3.6.0"
help-me@^5.0.0:
version "5.0.0"
resolved "https://registry.yarnpkg.com/help-me/-/help-me-5.0.0.tgz#b1ebe63b967b74060027c2ac61f9be12d354a6f6"
integrity sha512-7xgomUX6ADmcYzFik0HzAxh/73YlKR9bmFzf51CZwR+b6YtzU2m0u49hQCqV6SvlqIqsaxovfwdvbnsw3b/zpg==

hosted-git-info@^2.1.4:
version "2.8.9"
Expand Down Expand Up @@ -3441,13 +3427,6 @@ minimatch@^3.0.4, minimatch@^3.0.5, minimatch@^3.1.1, minimatch@^3.1.2:
dependencies:
brace-expansion "^1.1.7"

minimatch@^5.0.1:
version "5.1.6"
resolved "https://registry.yarnpkg.com/minimatch/-/minimatch-5.1.6.tgz#1cfcb8cf5522ea69952cd2af95ae09477f122a96"
integrity sha512-lKwV/1brpG6mBUFHtb7NUmtABCb2WZZmm2wNiOA5hAb8VdCS4B3dtMWyvcoViccwAW/COERjXLt0zP1zXUN26g==
dependencies:
brace-expansion "^2.0.1"

minimatch@^9.0.3:
version "9.0.3"
resolved "https://registry.yarnpkg.com/minimatch/-/minimatch-9.0.3.tgz#a6e00c3de44c3a542bfaae70abfc22420a6da825"
Expand Down Expand Up @@ -3902,16 +3881,16 @@ pino-abstract-transport@^1.0.0, pino-abstract-transport@^1.1.0, pino-abstract-tr
readable-stream "^4.0.0"
split2 "^4.0.0"

pino-pretty@^10.2.3:
version "10.2.3"
resolved "https://registry.yarnpkg.com/pino-pretty/-/pino-pretty-10.2.3.tgz#db539c796a1421fd4d130734fa994f5a26027783"
integrity sha512-4jfIUc8TC1GPUfDyMSlW1STeORqkoxec71yhxIpLDQapUu8WOuoz2TTCoidrIssyz78LZC69whBMPIKCMbi3cw==
pino-pretty@^10.3.0:
version "10.3.0"
resolved "https://registry.yarnpkg.com/pino-pretty/-/pino-pretty-10.3.0.tgz#483ff78b98d277c33d00e0419c00601d9152bc7e"
integrity sha512-JthvQW289q3454mhM3/38wFYGWPiBMR28T3CpDNABzoTQOje9UKS7XCJQSnjWF9LQGQkGd8D7h0oq+qwiM3jFA==
dependencies:
colorette "^2.0.7"
dateformat "^4.6.3"
fast-copy "^3.0.0"
fast-safe-stringify "^2.1.1"
help-me "^4.0.1"
help-me "^5.0.0"
joycon "^3.1.1"
minimist "^1.2.6"
on-exit-leak-free "^2.1.0"
Expand Down Expand Up @@ -4083,7 +4062,7 @@ read-pkg@^5.2.0:
parse-json "^5.0.0"
type-fest "^0.6.0"

readable-stream@3, readable-stream@^3.0.0, readable-stream@^3.4.0, readable-stream@^3.6.0:
readable-stream@3, readable-stream@^3.0.0, readable-stream@^3.4.0:
version "3.6.2"
resolved "https://registry.yarnpkg.com/readable-stream/-/readable-stream-3.6.2.tgz#56a9b36ea965c00c5a93ef31eb111a0f11056967"
integrity sha512-9u/sniCrY3D5WdsERHzHE4G2YCXqoG5FTHUiCC4SIbr6XcLZBY05ya9EKjYek9O5xOAwjGq+1JdGBAS7Q9ScoA==
Expand Down

2 comments on commit 3b5cfbb

@svc-cli-bot
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Logger Benchmarks - ubuntu-latest

Benchmark suite Current: 3b5cfbb Previous: 9960b0e Ratio
Child logger creation 461847 ops/sec (±0.59%) 475442 ops/sec (±1.32%) 1.03
Logging a string on root logger 722060 ops/sec (±10.01%) 822251 ops/sec (±7.92%) 1.14
Logging an object on root logger 556381 ops/sec (±6.81%) 603278 ops/sec (±6.68%) 1.08
Logging an object with a message on root logger 12367 ops/sec (±198.13%) 6636 ops/sec (±212.71%) 0.54
Logging an object with a redacted prop on root logger 419444 ops/sec (±6.33%) 411811 ops/sec (±14.46%) 0.98
Logging a nested 3-level object on root logger 345903 ops/sec (±7.30%) 403505 ops/sec (±7.06%) 1.17

This comment was automatically generated by workflow using github-action-benchmark.

@svc-cli-bot
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Logger Benchmarks - windows-latest

Benchmark suite Current: 3b5cfbb Previous: 9960b0e Ratio
Child logger creation 350620 ops/sec (±0.39%) 322782 ops/sec (±0.84%) 0.92
Logging a string on root logger 813328 ops/sec (±6.98%) 776294 ops/sec (±5.23%) 0.95
Logging an object on root logger 636300 ops/sec (±6.49%) 587269 ops/sec (±6.52%) 0.92
Logging an object with a message on root logger 3886 ops/sec (±217.43%) 7243 ops/sec (±201.94%) 1.86
Logging an object with a redacted prop on root logger 472931 ops/sec (±5.70%) 477734 ops/sec (±8.35%) 1.01
Logging a nested 3-level object on root logger 318266 ops/sec (±4.79%) 324462 ops/sec (±5.71%) 1.02

This comment was automatically generated by workflow using github-action-benchmark.

Please sign in to comment.