From 7123d6ff92f23aa64c9eecbf3074c930b0cc85a5 Mon Sep 17 00:00:00 2001 From: Tom Date: Mon, 9 Nov 2020 09:02:19 -0500 Subject: [PATCH] Security/Update bl Dependency (#3) * Update bl library >=1.2.3 * Bump Revision --- README.md | 4 ++++ package-lock.json | 34 +++++++++++++++++++++++++++------- package.json | 5 +++-- plugin.json | 4 ++-- 4 files changed, 36 insertions(+), 11 deletions(-) diff --git a/README.md b/README.md index 361bdaa..fdf79ab 100755 --- a/README.md +++ b/README.md @@ -248,6 +248,10 @@ For any issue, there are fundamentally three ways an individual can contribute: ## Change log +- 1.0.3 Security Update + - Update bl library >=1.2.3 + - Bump Revision + - 1.0.2 Add tar build output - Remove unused libraries - Fix npm audit diff --git a/package-lock.json b/package-lock.json index ff1ab96..1e9ca43 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,6 +1,6 @@ { "name": "libre-scheduler-order-mgt-table-panel", - "version": "1.0.2", + "version": "1.0.3", "lockfileVersion": 1, "requires": true, "dependencies": { @@ -894,12 +894,33 @@ "integrity": "sha512-mLQ4i2QO1ytvGWFWmcngKO//JXAQueZvwEKtjgQFM4jIK0kU+ytMfplL8j+n5mspOfjHwoAg+9yhb7BwAHm36g==" }, "bl": { - "version": "1.2.2", - "resolved": "https://registry.npmjs.org/bl/-/bl-1.2.2.tgz", - "integrity": "sha512-e8tQYnZodmebYDWGH7KMRvtzKXaJHx3BbilrgZCfvyLUYdKpK1t5PSPmpkny/SgiTSCnjfLW7v5rlONXVFkQEA==", + "version": "4.0.3", + "resolved": "https://registry.npmjs.org/bl/-/bl-4.0.3.tgz", + "integrity": "sha512-fs4G6/Hu4/EE+F75J8DuN/0IpQqNjAdC7aEQv7Qt8MHGUH7Ckv2MwTEEeN9QehD0pfIDkMI1bkHYkKy7xHyKIg==", + "dev": true, "requires": { - "readable-stream": "^2.3.5", - "safe-buffer": "^5.1.1" + "buffer": "^5.5.0", + "inherits": "^2.0.4", + "readable-stream": "^3.4.0" + }, + "dependencies": { + "inherits": { + "version": "2.0.4", + "resolved": "https://registry.npmjs.org/inherits/-/inherits-2.0.4.tgz", + "integrity": "sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==", + "dev": true + }, + "readable-stream": { + "version": "3.6.0", + "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-3.6.0.tgz", + "integrity": "sha512-BViHy7LKeTz4oNnkcLJ+lVSL6vpiFeX6/d3oSH8zCW7UxP2onchk+vTGB143xuFjHS3deTgkKoXXymXqymiIdA==", + "dev": true, + "requires": { + "inherits": "^2.0.3", + "string_decoder": "^1.1.1", + "util-deprecate": "^1.0.1" + } + } } }, "body": { @@ -5194,7 +5215,6 @@ "resolved": "https://registry.npmjs.org/tar-stream/-/tar-stream-1.6.2.tgz", "integrity": "sha512-rzS0heiNf8Xn7/mpdSVVSMAWAoy9bfb1WOTYC78Z0UQKeKa/CWS8FOq0lKGNa8DWKAn9gxjCvMLYc5PGXYlK2A==", "requires": { - "bl": "^1.0.0", "buffer-alloc": "^1.2.0", "end-of-stream": "^1.0.0", "fs-constants": "^1.0.0", diff --git a/package.json b/package.json index d2cd0f3..213e70f 100755 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "libre-scheduler-order-mgt-table-panel", - "version": "1.0.2", + "version": "1.0.3", "description": "A Libre panel to create, schedule and release orders for manufacture", "repository": { "type": "git", @@ -24,12 +24,13 @@ ], "devDependencies": { "babel-preset-es2015": "^6.5.0", - "grunt": "^1.2.1", + "bl": ">=1.2.3", "grunt-babel": "~6.0.0", "grunt-contrib-clean": "~0.6.0", "grunt-contrib-copy": "~0.8.2", "grunt-contrib-jshint": "^1.0.0", "grunt-contrib-watch": "^1.1.0", + "grunt": "^1.2.1", "load-grunt-tasks": "^5.1.0", "standard": "^14.3.4" }, diff --git a/plugin.json b/plugin.json index 46f9df7..0d9f280 100755 --- a/plugin.json +++ b/plugin.json @@ -24,8 +24,8 @@ "small": "img/icn-table-panel.svg", "large": "img/icn-table-panel.svg" }, - "version": "1.0.2", - "updated": "2020-08-06" + "version": "1.0.3", + "updated": "2020-11-09" }, "dependencies": { "grafanaVersion": "6.x.x",