From e3f8f05b30d3a743e174ed3885bd45a68f82cd49 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 25 Apr 2019 04:05:27 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-EXPRESSBASICAUTH-174345 --- package-lock.json | 74 +++++++++++------------------------------------ package.json | 2 +- 2 files changed, 18 insertions(+), 58 deletions(-) diff --git a/package-lock.json b/package-lock.json index 930acdd..a944600 100644 --- a/package-lock.json +++ b/package-lock.json @@ -233,9 +233,19 @@ "dev": true }, "basic-auth": { - "version": "1.1.0", - "resolved": "https://registry.npmjs.org/basic-auth/-/basic-auth-1.1.0.tgz", - "integrity": "sha1-RSIe5Cn37h5QNb4/UVM/HN/SmIQ=" + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/basic-auth/-/basic-auth-2.0.1.tgz", + "integrity": "sha512-NF+epuEdnUYVlGuhaxbbq+dvJttwLnGY+YixlXlME5KpQ5W3CnXA5cVTneY3SPbPDRkcjMbifrwmFYcClgOZeg==", + "requires": { + "safe-buffer": "5.1.2" + }, + "dependencies": { + "safe-buffer": { + "version": "5.1.2", + "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz", + "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==" + } + } }, "batch": { "version": "0.6.1", @@ -542,30 +552,6 @@ "resolved": "https://registry.npmjs.org/docopt/-/docopt-0.6.2.tgz", "integrity": "sha1-so6eIiDaXsSffqW7JKR3h0Be6xE=" }, - "doctrine": { - "version": "0.7.2", - "resolved": "https://registry.npmjs.org/doctrine/-/doctrine-0.7.2.tgz", - "integrity": "sha1-fLhgNZujvpDgQLJrcpzkv6ZUxSM=", - "dev": true, - "requires": { - "esutils": "1.1.6", - "isarray": "0.0.1" - }, - "dependencies": { - "esutils": { - "version": "1.1.6", - "resolved": "https://registry.npmjs.org/esutils/-/esutils-1.1.6.tgz", - "integrity": "sha1-wBzKqa5LiXxtDD4hCuUvPHqEQ3U=", - "dev": true - }, - "isarray": { - "version": "0.0.1", - "resolved": "https://registry.npmjs.org/isarray/-/isarray-0.0.1.tgz", - "integrity": "sha1-ihis/Kmo9Bd+Cav8YDiTmwXR7t8=", - "dev": true - } - } - }, "dont-sniff-mimetype": { "version": "1.0.0", "resolved": "https://registry.npmjs.org/dont-sniff-mimetype/-/dont-sniff-mimetype-1.0.0.tgz", @@ -704,11 +690,11 @@ } }, "express-basic-auth": { - "version": "1.1.4", - "resolved": "https://registry.npmjs.org/express-basic-auth/-/express-basic-auth-1.1.4.tgz", - "integrity": "sha512-stNYRMPULJu/Tk3aFSdkyFMHDPDukens2L5FrTHJab+k/gvBdjB885W3gAZtHNrUaSmbAO8dQ9Omcot9qtbAag==", + "version": "1.1.7", + "resolved": "https://registry.npmjs.org/express-basic-auth/-/express-basic-auth-1.1.7.tgz", + "integrity": "sha512-gofejPlyXxuRQfbc2pfCBEjFgKUPwICLoEJuC6i2KqBPBszBU7bIKvpEKrsU0oCCFDo2L1YuK/KSG5gVyess+A==", "requires": { - "basic-auth": "1.1.0" + "basic-auth": "^2.0.1" } }, "express-ip-access-control": { @@ -1529,32 +1515,6 @@ "tsutils": "2.22.2" } }, - "tslint-config-dabapps": { - "version": "github:dabapps/tslint-config-dabapps#e73b8141b5675ae6c04aaea77ae9eda8a9db28dd", - "dev": true, - "requires": { - "tslint-eslint-rules": "4.0.0" - } - }, - "tslint-eslint-rules": { - "version": "4.0.0", - "resolved": "https://registry.npmjs.org/tslint-eslint-rules/-/tslint-eslint-rules-4.0.0.tgz", - "integrity": "sha1-Tg5Z7NVwHJpIxm7Ue9yvscY10ns=", - "dev": true, - "requires": { - "doctrine": "0.7.2", - "tslib": "1.9.0", - "tsutils": "1.9.1" - }, - "dependencies": { - "tsutils": { - "version": "1.9.1", - "resolved": "https://registry.npmjs.org/tsutils/-/tsutils-1.9.1.tgz", - "integrity": "sha1-ufmrROVa+WgYMdXyjQrur1x1DLA=", - "dev": true - } - } - }, "tsutils": { "version": "2.22.2", "resolved": "https://registry.npmjs.org/tsutils/-/tsutils-2.22.2.tgz", diff --git a/package.json b/package.json index 1f2e69e..2bb4c50 100644 --- a/package.json +++ b/package.json @@ -31,7 +31,7 @@ "connect-static-file": "2.0.0", "docopt": "0.6.2", "express": "4.16.3", - "express-basic-auth": "1.1.4", + "express-basic-auth": "1.1.7", "express-ip-access-control": "1.0.5", "helmet": "3.12.0", "morgan": "1.9.0",