From a822f8ba35836b709fcd72e1e6c75fd0ed916bab Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 17 Oct 2023 08:25:16 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-GOT-2932019 - https://snyk.io/vuln/SNYK-JS-LIQUIDJS-2952868 - https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3042992 - https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3043105 - https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3105943 - https://snyk.io/vuln/SNYK-JS-NEXT-2405694 - https://snyk.io/vuln/SNYK-JS-POSTCSS-5926692 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-SHELLQUOTE-1766506 - https://snyk.io/vuln/SNYK-JS-XML2JS-5414874 --- package.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index b925ec98fc3e..ac93240b967e 100644 --- a/package.json +++ b/package.json @@ -31,7 +31,7 @@ "express-timeout-handler": "^2.2.2", "flat": "^5.0.2", "github-slugger": "^1.4.0", - "got": "^11.8.2", + "got": "^11.8.5", "gray-matter": "^4.0.3", "hast-util-from-parse5": "^7.1.0", "hast-util-parse-selector": "^3.1.0", @@ -48,7 +48,7 @@ "js-cookie": "^3.0.1", "js-yaml": "^4.1.0", "kleur": "4.1.4", - "liquidjs": "^9.22.1", + "liquidjs": "^10.0.0", "lodash": "^4.17.21", "lodash-es": "^4.17.21", "lunr": "^2.3.9", @@ -56,7 +56,7 @@ "mdast-util-from-markdown": "^1.2.0", "mdast-util-to-string": "^3.1.0", "morgan": "^1.10.0", - "next": "^11.1.3", + "next": "^13.5.4", "parse5": "^6.0.1", "port-used": "^2.0.8", "react": "^17.0.2", @@ -75,9 +75,9 @@ "remark-parse-no-trim": "^8.0.4", "remark-rehype": "^10.1.0", "revalidator": "^0.3.1", - "rss-parser": "^3.12.0", + "rss-parser": "^3.13.0", "scroll-anchoring": "^0.1.0", - "semver": "^7.3.5", + "semver": "^7.5.2", "slash": "^4.0.0", "strip-html-comments": "^1.0.0", "styled-components": "^5.3.3",