From 693b187e1cc8b096d560ba9f353644ff66fcdbd2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 19 Jan 2022 09:14:21 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEFETCH-2342118 --- package-lock.json | 177 ++++++++++++---------------------------------- package.json | 4 +- 2 files changed, 46 insertions(+), 135 deletions(-) diff --git a/package-lock.json b/package-lock.json index f99c74e..86307b1 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5,14 +5,15 @@ "requires": true, "packages": { "": { + "name": "todo-list", "version": "0.1.0", "license": "WTFPL", "dependencies": { "@aureooms/js-pseudo-random": "2.0.0", "node-fetch": "1.6.3", - "react": "^15.3.2", + "react": "^16.5.0", "react-bootstrap": "^0.31.0", - "react-dom": "^15.3.2", + "react-dom": "^16.5.0", "vueify": "^9.4.0", "webpack": "^1.12.2", "wowjs": "^1.1.3" @@ -148,10 +149,6 @@ "node": ">=0.10.0" } }, - "node_modules/asap": { - "version": "2.0.6", - "license": "MIT" - }, "node_modules/assert": { "version": "1.5.0", "license": "MIT", @@ -1289,23 +1286,10 @@ "node": ">=0.10.0" } }, - "node_modules/core-js": { - "version": "1.2.7", - "deprecated": "core-js@<3.3 is no longer maintained and not recommended for usage due to the number of issues. Because of the V8 engine whims, feature detection in old core-js versions could cause a slowdown up to 100x even if nothing is polyfilled. Please, upgrade your dependencies to the actual version of core-js.", - "license": "MIT" - }, "node_modules/core-util-is": { "version": "1.0.2", "license": "MIT" }, - "node_modules/create-react-class": { - "version": "15.7.0", - "license": "MIT", - "dependencies": { - "loose-envify": "^1.3.1", - "object-assign": "^4.1.1" - } - }, "node_modules/crypto-browserify": { "version": "3.3.0", "license": "MIT", @@ -1624,19 +1608,6 @@ "node": ">=0.10.0" } }, - "node_modules/fbjs": { - "version": "0.8.17", - "license": "MIT", - "dependencies": { - "core-js": "^1.0.0", - "isomorphic-fetch": "^2.1.1", - "loose-envify": "^1.0.0", - "object-assign": "^4.1.0", - "promise": "^7.1.1", - "setimmediate": "^1.0.5", - "ua-parser-js": "^0.7.18" - } - }, "node_modules/file-uri-to-path": { "version": "1.0.0", "license": "MIT", @@ -2153,14 +2124,6 @@ "node": ">=0.10.0" } }, - "node_modules/isomorphic-fetch": { - "version": "2.2.1", - "license": "MIT", - "dependencies": { - "node-fetch": "^1.0.1", - "whatwg-fetch": ">=0.10.0" - } - }, "node_modules/js-base64": { "version": "2.6.4", "resolved": "https://registry.npmjs.org/js-base64/-/js-base64-2.6.4.tgz", @@ -2995,13 +2958,6 @@ "version": "2.0.1", "license": "MIT" }, - "node_modules/promise": { - "version": "7.3.1", - "license": "MIT", - "dependencies": { - "asap": "~2.0.3" - } - }, "node_modules/prop-types": { "version": "15.7.2", "license": "MIT", @@ -3102,14 +3058,14 @@ } }, "node_modules/react": { - "version": "15.7.0", - "license": "MIT", + "version": "16.5.0", + "resolved": "https://registry.npmjs.org/react/-/react-16.5.0.tgz", + "integrity": "sha512-nw/yB/L51kA9PsAy17T1JrzzGRk+BlFCJwFF7p+pwVxgqwPjYNeZEkkH7LXn9dmflolrYMXLWMTkQ77suKPTNQ==", "dependencies": { - "create-react-class": "^15.6.0", - "fbjs": "^0.8.9", "loose-envify": "^1.1.0", - "object-assign": "^4.1.0", - "prop-types": "^15.5.10" + "object-assign": "^4.1.1", + "prop-types": "^15.6.2", + "schedule": "^0.3.0" }, "engines": { "node": ">=0.10.0" @@ -3136,16 +3092,17 @@ } }, "node_modules/react-dom": { - "version": "15.7.0", - "license": "MIT", + "version": "16.5.0", + "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-16.5.0.tgz", + "integrity": "sha512-qgsQdjFH54pQ1AGLCBKsqjPxib4Pnp+cOsNxGPlkHn5YnsSt43sBvHSif6FheY7NMMS6HPeSJOxXf6ECanjacA==", "dependencies": { - "fbjs": "^0.8.9", "loose-envify": "^1.1.0", - "object-assign": "^4.1.0", - "prop-types": "^15.5.10" + "object-assign": "^4.1.1", + "prop-types": "^15.6.2", + "schedule": "^0.3.0" }, "peerDependencies": { - "react": "^15.7.0" + "react": "^16.0.0" } }, "node_modules/react-is": { @@ -3648,6 +3605,14 @@ "resolved": "https://registry.npmjs.org/sax/-/sax-1.2.4.tgz", "integrity": "sha512-NqVDv9TpANUjFm0N8uM5GxL36UgKi9/atZw+x7YFnQ8ckwFGKrl4xX4yWtrey3UJm5nP1kUbnYgLopqWNSRhWw==" }, + "node_modules/schedule": { + "version": "0.3.0", + "resolved": "https://registry.npmjs.org/schedule/-/schedule-0.3.0.tgz", + "integrity": "sha512-20+1KVo517sR7Nt+bYBN8a+bEJDKLPEx7Ohtts1kX05E4/HY53YUNuhfkVNItmWAnBYHcpG9vsd2/CJxG+aPCQ==", + "dependencies": { + "object-assign": "^4.1.1" + } + }, "node_modules/set-value": { "version": "2.0.1", "license": "MIT", @@ -4050,23 +4015,6 @@ "version": "0.0.0", "license": "MIT" }, - "node_modules/ua-parser-js": { - "version": "0.7.28", - "funding": [ - { - "type": "opencollective", - "url": "https://opencollective.com/ua-parser-js" - }, - { - "type": "paypal", - "url": "https://paypal.me/faisalman" - } - ], - "license": "MIT", - "engines": { - "node": "*" - } - }, "node_modules/uglify-js": { "version": "2.7.5", "license": "BSD-2-Clause", @@ -4332,10 +4280,6 @@ "node": ">=0.8.0" } }, - "node_modules/whatwg-fetch": { - "version": "3.6.2", - "license": "MIT" - }, "node_modules/whet.extend": { "version": "0.9.9", "resolved": "https://registry.npmjs.org/whet.extend/-/whet.extend-0.9.9.tgz", @@ -4469,9 +4413,6 @@ "array-unique": { "version": "0.2.1" }, - "asap": { - "version": "2.0.6" - }, "assert": { "version": "1.5.0", "requires": { @@ -5399,19 +5340,9 @@ "copy-descriptor": { "version": "0.1.1" }, - "core-js": { - "version": "1.2.7" - }, "core-util-is": { "version": "1.0.2" }, - "create-react-class": { - "version": "15.7.0", - "requires": { - "loose-envify": "^1.3.1", - "object-assign": "^4.1.1" - } - }, "crypto-browserify": { "version": "3.3.0", "requires": { @@ -5628,18 +5559,6 @@ "is-extglob": "^1.0.0" } }, - "fbjs": { - "version": "0.8.17", - "requires": { - "core-js": "^1.0.0", - "isomorphic-fetch": "^2.1.1", - "loose-envify": "^1.0.0", - "object-assign": "^4.1.0", - "promise": "^7.1.1", - "setimmediate": "^1.0.5", - "ua-parser-js": "^0.7.18" - } - }, "file-uri-to-path": { "version": "1.0.0", "optional": true @@ -5959,13 +5878,6 @@ "isarray": "1.0.0" } }, - "isomorphic-fetch": { - "version": "2.2.1", - "requires": { - "node-fetch": "^1.0.1", - "whatwg-fetch": ">=0.10.0" - } - }, "js-base64": { "version": "2.6.4", "resolved": "https://registry.npmjs.org/js-base64/-/js-base64-2.6.4.tgz", @@ -6624,12 +6536,6 @@ "process-nextick-args": { "version": "2.0.1" }, - "promise": { - "version": "7.3.1", - "requires": { - "asap": "~2.0.3" - } - }, "prop-types": { "version": "15.7.2", "requires": { @@ -6701,13 +6607,14 @@ } }, "react": { - "version": "15.7.0", + "version": "16.5.0", + "resolved": "https://registry.npmjs.org/react/-/react-16.5.0.tgz", + "integrity": "sha512-nw/yB/L51kA9PsAy17T1JrzzGRk+BlFCJwFF7p+pwVxgqwPjYNeZEkkH7LXn9dmflolrYMXLWMTkQ77suKPTNQ==", "requires": { - "create-react-class": "^15.6.0", - "fbjs": "^0.8.9", "loose-envify": "^1.1.0", - "object-assign": "^4.1.0", - "prop-types": "^15.5.10" + "object-assign": "^4.1.1", + "prop-types": "^15.6.2", + "schedule": "^0.3.0" } }, "react-bootstrap": { @@ -6726,12 +6633,14 @@ } }, "react-dom": { - "version": "15.7.0", + "version": "16.5.0", + "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-16.5.0.tgz", + "integrity": "sha512-qgsQdjFH54pQ1AGLCBKsqjPxib4Pnp+cOsNxGPlkHn5YnsSt43sBvHSif6FheY7NMMS6HPeSJOxXf6ECanjacA==", "requires": { - "fbjs": "^0.8.9", "loose-envify": "^1.1.0", - "object-assign": "^4.1.0", - "prop-types": "^15.5.10" + "object-assign": "^4.1.1", + "prop-types": "^15.6.2", + "schedule": "^0.3.0" } }, "react-is": { @@ -7093,6 +7002,14 @@ "resolved": "https://registry.npmjs.org/sax/-/sax-1.2.4.tgz", "integrity": "sha512-NqVDv9TpANUjFm0N8uM5GxL36UgKi9/atZw+x7YFnQ8ckwFGKrl4xX4yWtrey3UJm5nP1kUbnYgLopqWNSRhWw==" }, + "schedule": { + "version": "0.3.0", + "resolved": "https://registry.npmjs.org/schedule/-/schedule-0.3.0.tgz", + "integrity": "sha512-20+1KVo517sR7Nt+bYBN8a+bEJDKLPEx7Ohtts1kX05E4/HY53YUNuhfkVNItmWAnBYHcpG9vsd2/CJxG+aPCQ==", + "requires": { + "object-assign": "^4.1.1" + } + }, "set-value": { "version": "2.0.1", "requires": { @@ -7367,9 +7284,6 @@ "tty-browserify": { "version": "0.0.0" }, - "ua-parser-js": { - "version": "0.7.28" - }, "uglify-js": { "version": "2.7.5", "requires": { @@ -7580,9 +7494,6 @@ } } }, - "whatwg-fetch": { - "version": "3.6.2" - }, "whet.extend": { "version": "0.9.9", "resolved": "https://registry.npmjs.org/whet.extend/-/whet.extend-0.9.9.tgz", diff --git a/package.json b/package.json index d17a86c..a2dfe78 100644 --- a/package.json +++ b/package.json @@ -15,9 +15,9 @@ "dependencies": { "@aureooms/js-pseudo-random": "2.0.0", "node-fetch": "1.6.3", - "react": "^15.3.2", + "react": "^16.5.0", "react-bootstrap": "^0.31.0", - "react-dom": "^15.3.2", + "react-dom": "^16.5.0", "vueify": "^9.4.0", "webpack": "^1.12.2", "wowjs": "^1.1.3"