From 5131281077fc58e802d471a21e7603a71c3ea0d2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 1 Feb 2022 08:05:42 +0000 Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MARKDOWNIT-2331914 - https://snyk.io/vuln/SNYK-JS-MARKDOWNIT-459438 --- package.json | 2 +- yarn.lock | 89 ++++++++++++++++++++++++++++------------------------ 2 files changed, 49 insertions(+), 42 deletions(-) diff --git a/package.json b/package.json index 44bfdb1..dc9ef3f 100644 --- a/package.json +++ b/package.json @@ -24,7 +24,7 @@ "typescript": "^3.4.5" }, "dependencies": { - "@asyncapi/generator": "^1.8.23", + "@asyncapi/generator": "^1.9.0", "@types/pluralize": "^0.0.29", "@types/tmp": "^0.1.0", "clipboardy": "^2.0.0", diff --git a/yarn.lock b/yarn.lock index 5ef4135..b2beffa 100644 --- a/yarn.lock +++ b/yarn.lock @@ -12,17 +12,19 @@ call-me-maybe "^1.0.1" js-yaml "^4.1.0" -"@asyncapi/avro-schema-parser@^0.6.0": - version "0.6.0" - resolved "https://registry.yarnpkg.com/@asyncapi/avro-schema-parser/-/avro-schema-parser-0.6.0.tgz#e58833d1132dc1a787bc1dda785d0121991d45f9" - integrity sha512-zkCEudMfhdDuiqnuTii4jC365C7AQCD8AZ/CCHh3wB/s8UNkl8ydDA1KcDE35F5/s0mUFg0Z9VMxBX4rbLBdUA== +"@asyncapi/avro-schema-parser@^1.0.0": + version "1.0.1" + resolved "https://registry.yarnpkg.com/@asyncapi/avro-schema-parser/-/avro-schema-parser-1.0.1.tgz#b9c5a8fc98f2cfa092216e0d2ab4c71bfc1bf82e" + integrity sha512-j3JWLDkzWARlo2v/olOAgJ1aB9HNsvUUUHPKkx54ZNHUUbyVcDpQhBNSdvm8OBNKVa53QxLoDK7g59jhgUJZ9g== + dependencies: + avsc "^5.7.3" -"@asyncapi/generator-react-sdk@^0.2.21": - version "0.2.21" - resolved "https://registry.yarnpkg.com/@asyncapi/generator-react-sdk/-/generator-react-sdk-0.2.21.tgz#0d647bbb82b0f96b85fabb71a86b42579e9148b6" - integrity sha512-n6kkWOYlvUmc5xkDDN23msgxAZTIaDK/wsx2c8H+jXS72qN6tRzYSnXOI34edc/gMxuXMS0TNipBXXwJ5XznxQ== +"@asyncapi/generator-react-sdk@^0.2.23": + version "0.2.23" + resolved "https://registry.yarnpkg.com/@asyncapi/generator-react-sdk/-/generator-react-sdk-0.2.23.tgz#be3ab612423a15151d6d1b28780b548ac4183144" + integrity sha512-q/6yajFzqYyQ/vC2e1gicJ7MZxRGAjYB/to0lo9i5An2MqFquBfuvediocbjoDC8En4pIt/JePgKc+9STnckYA== dependencies: - "@asyncapi/parser" "^1.11.0" + "@asyncapi/parser" "^1.13.0" "@babel/core" "7.12.9" "@babel/preset-env" "^7.12.7" "@babel/preset-react" "^7.12.7" @@ -33,15 +35,15 @@ rollup "^2.60.1" source-map-support "^0.5.19" -"@asyncapi/generator@^1.8.23": - version "1.8.23" - resolved "https://registry.yarnpkg.com/@asyncapi/generator/-/generator-1.8.23.tgz#0c70964b4f7a9de469f74e341a5592dee48ed917" - integrity sha512-pvrt2WW45xgoOS2m9T0RxagXkx/EJoiNZuF6BNHraIb+4+w8nPJ16e09NW8a6kFPL7hwb4zSqoMicNYbFxKIyQ== +"@asyncapi/generator@^1.9.0": + version "1.9.0" + resolved "https://registry.yarnpkg.com/@asyncapi/generator/-/generator-1.9.0.tgz#2312f4ca3a2ed74d781ad40c1d6aced75482d8b2" + integrity sha512-DpJtdTn4m2fx/qQDMo+oTywR7P/ui3i6OQii9ieCNR35/C5fMY/BgvJfnxmX1joFsUx5EizDMF7FrDjNGXVRmA== dependencies: - "@asyncapi/avro-schema-parser" "^0.6.0" - "@asyncapi/generator-react-sdk" "^0.2.21" + "@asyncapi/avro-schema-parser" "^1.0.0" + "@asyncapi/generator-react-sdk" "^0.2.23" "@asyncapi/openapi-schema-parser" "^2.0.1" - "@asyncapi/parser" "^1.11.1" + "@asyncapi/parser" "^1.14.0" "@asyncapi/raml-dt-schema-parser" "^2.0.1" "@npmcli/arborist" "^2.2.4" ajv "^6.10.2" @@ -54,7 +56,7 @@ js-yaml "^3.13.1" levenshtein-edit-distance "^2.0.5" loglevel "^1.6.8" - markdown-it "^8.4.1" + markdown-it "^12.3.2" minimatch "^3.0.4" node-fetch "^2.6.0" nunjucks "^3.2.0" @@ -73,13 +75,13 @@ dependencies: "@openapi-contrib/openapi-schema-to-json-schema" "^3.0.0" -"@asyncapi/parser@^1.11.0", "@asyncapi/parser@^1.11.1": - version "1.11.1" - resolved "https://registry.yarnpkg.com/@asyncapi/parser/-/parser-1.11.1.tgz#110c1aa97a3e3ec85414e2f27d9a1a3a6011a6a8" - integrity sha512-9ugfMHw1IYQVuUk5e4NQol4XPmfLUvniTX6tIo/AxUToDv/ag3Wy+m+2Pc92wPiuHQBYFbBnCam+hN8/cHwMuA== +"@asyncapi/parser@^1.13.0", "@asyncapi/parser@^1.14.0": + version "1.14.0" + resolved "https://registry.yarnpkg.com/@asyncapi/parser/-/parser-1.14.0.tgz#7b1f690e67ff947e5e998d314b122f1e329244cb" + integrity sha512-OHqvInhquPwthrSEkglxqjj6+6A2gZW3NnmyOoXmWb7/9jS90hJwn9bQOMkd4bx2lT6PWmlZjjKFEldH8ILRQg== dependencies: "@apidevtools/json-schema-ref-parser" "^9.0.6" - "@asyncapi/specs" "^2.11.0" + "@asyncapi/specs" "^2.13.0" "@fmvilas/pseudo-yaml-ast" "^0.3.1" ajv "^6.10.1" js-yaml "^3.13.1" @@ -96,10 +98,10 @@ js-yaml "^3.13.1" ramldt2jsonschema "^1.1.0" -"@asyncapi/specs@^2.11.0": - version "2.12.0" - resolved "https://registry.yarnpkg.com/@asyncapi/specs/-/specs-2.12.0.tgz#15534ca9e518b561d33edfdfdbb234f9b274f261" - integrity sha512-X4Xkrl+9WXSk5EJhsueIxNx6ymHI5wpkw4ofetV+VRnPLNob/XO4trPSJClrL5hlknxbGADLvlrkI5d3XJ996g== +"@asyncapi/specs@^2.13.0": + version "2.13.0" + resolved "https://registry.yarnpkg.com/@asyncapi/specs/-/specs-2.13.0.tgz#c0f46d00e8a67c1c9ea445eb3e8bca90f7dca795" + integrity sha512-X0OrxJtzwRH8iLILO/gUTDqjGVPmagmdlgdyuBggYAoGXzF6ZuAws3XCLxtPNve5eA/0V/1puwpUYEGekI22og== "@babel/code-frame@^7.0.0", "@babel/code-frame@^7.10.1": version "7.10.1" @@ -2703,6 +2705,11 @@ atob@^2.1.2: resolved "https://registry.yarnpkg.com/atob/-/atob-2.1.2.tgz#6d9517eb9e030d2436666651e86bd9f6f13533c9" integrity sha512-Wm6ukoaOGJi/73p/cl2GvLjTI5JM1k/O14isD73YML8StrH/7/lRFgmg8nICZgD3bZZvjwCGxtMOD3wWNAu8cg== +avsc@^5.7.3: + version "5.7.3" + resolved "https://registry.yarnpkg.com/avsc/-/avsc-5.7.3.tgz#c5a57147c0c7f6d9cbbdf6f02576eda94d293cd9" + integrity sha512-uUbetCWczQHbsKyX1C99XpQHBM8SWfovvaZhPIj23/1uV7SQf0WeRZbiLpw0JZm+LHTChfNgrLfDJOVoU2kU+A== + aws-sign2@~0.7.0: version "0.7.0" resolved "https://registry.yarnpkg.com/aws-sign2/-/aws-sign2-0.7.0.tgz#b46e890934a9591f2d2f6f86d7e6a9f1b3fe76a8" @@ -3798,10 +3805,10 @@ end-of-stream@^1.1.0: dependencies: once "^1.4.0" -entities@~1.1.1: - version "1.1.2" - resolved "https://registry.yarnpkg.com/entities/-/entities-1.1.2.tgz#bdfa735299664dfafd34529ed4f8522a275fea56" - integrity sha512-f2LZMYl1Fzu7YSBKg+RoROelpOaNrcGmE9AZubeDfrCEia483oW4MI4VyFd5VNHIgQ/7qm1I0wUHK1eJnn2y2w== +entities@~2.1.0: + version "2.1.0" + resolved "https://registry.yarnpkg.com/entities/-/entities-2.1.0.tgz#992d3129cf7df6870b96c57858c249a120f8b8b5" + integrity sha512-hCx1oky9PFrJ611mf0ifBLBRW8lUUVRlFolb5gWRfIELabBlbp9xZvrqZLZAs+NxFnbfQoeGd8wDkygjg7U85w== env-paths@^2.2.0: version "2.2.1" @@ -5570,10 +5577,10 @@ levn@~0.3.0: prelude-ls "~1.1.2" type-check "~0.3.2" -linkify-it@^2.0.0: - version "2.2.0" - resolved "https://registry.yarnpkg.com/linkify-it/-/linkify-it-2.2.0.tgz#e3b54697e78bf915c70a38acd78fd09e0058b1cf" - integrity sha512-GnAl/knGn+i1U/wjBz3akz2stz+HrHLsxMwHQGofCDfPvlf+gDKN58UtfmUquTY4/MXeE2x7k19KQmeoZi94Iw== +linkify-it@^3.0.1: + version "3.0.3" + resolved "https://registry.yarnpkg.com/linkify-it/-/linkify-it-3.0.3.tgz#a98baf44ce45a550efb4d49c769d07524cc2fa2e" + integrity sha512-ynTsyrFSdE5oZ/O9GEf00kPngmOfVwazR5GKDq6EYfhlpFug3J2zybX56a2PRRpc9P+FuSoGNAwjlbDs9jJBPQ== dependencies: uc.micro "^1.0.1" @@ -5732,14 +5739,14 @@ mark.js@^8.11.1: resolved "https://registry.yarnpkg.com/mark.js/-/mark.js-8.11.1.tgz#180f1f9ebef8b0e638e4166ad52db879beb2ffc5" integrity sha1-GA8fnr74sOY45BZq1S24eb6y/8U= -markdown-it@^8.4.1: - version "8.4.2" - resolved "https://registry.yarnpkg.com/markdown-it/-/markdown-it-8.4.2.tgz#386f98998dc15a37722aa7722084f4020bdd9b54" - integrity sha512-GcRz3AWTqSUphY3vsUqQSFMbgR38a4Lh3GWlHRh/7MRwz8mcu9n2IO7HOh+bXHrR9kOPDl5RNCaEsrneb+xhHQ== +markdown-it@^12.3.2: + version "12.3.2" + resolved "https://registry.yarnpkg.com/markdown-it/-/markdown-it-12.3.2.tgz#bf92ac92283fe983fe4de8ff8abfb5ad72cd0c90" + integrity sha512-TchMembfxfNVpHkbtriWltGWc+m3xszaRD0CZup7GFFhzIgQqxIfn3eGj1yZpfuflzPvfkt611B2Q/Bsk1YnGg== dependencies: - argparse "^1.0.7" - entities "~1.1.1" - linkify-it "^2.0.0" + argparse "^2.0.1" + entities "~2.1.0" + linkify-it "^3.0.1" mdurl "^1.0.1" uc.micro "^1.0.5"