From 834d1252cc2938dbba517487dca7d90714832e6a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 16 Oct 2021 01:17:51 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-VM2-1585918 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index f143ba2..5223f52 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11121,9 +11121,9 @@ } }, "vm2": { - "version": "3.6.11", - "resolved": "https://registry.npmjs.org/vm2/-/vm2-3.6.11.tgz", - "integrity": "sha512-l/+GDkesWKCRpk+3meLDauXisAmsfRZLvZwa/dBx1YKvP60NwXJsLHGEPW+t9fxdX+qjofF0/jN9eu42WRHAbQ==" + "version": "3.9.4", + "resolved": "https://registry.npmjs.org/vm2/-/vm2-3.9.4.tgz", + "integrity": "sha512-sOdharrJ7KEePIpHekiWaY1DwgueuiBeX/ZBJUPgETsVlJsXuEx0K0/naATq2haFvJrvZnRiORQRubR0b7Ye6g==" }, "vscode-languageserver-types": { "version": "3.16.0", diff --git a/package.json b/package.json index 9c3b96a..cf33571 100644 --- a/package.json +++ b/package.json @@ -8,7 +8,7 @@ "license": "MIT", "dependencies": { "restify": "^8.1.1", - "vm2": "^3.6.11", + "vm2": "^3.9.4", "snyk": "^1.667.0" }, "devDependencies": {