From c054d487003f5f557a82e1a39264c32167e4ea77 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 12 Feb 2024 00:42:28 +0000 Subject: [PATCH] fix: workspaces/libnpmexec/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 --- workspaces/libnpmexec/package.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/workspaces/libnpmexec/package.json b/workspaces/libnpmexec/package.json index 9ce05bf96885b..57e77d5ad92bd 100644 --- a/workspaces/libnpmexec/package.json +++ b/workspaces/libnpmexec/package.json @@ -50,14 +50,14 @@ "tap": "^15.0.6" }, "dependencies": { - "@npmcli/arborist": "^5.0.0", + "@npmcli/arborist": "^7.0.0", "@npmcli/ci-detect": "^2.0.0", - "@npmcli/run-script": "^3.0.0", + "@npmcli/run-script": "^7.0.2", "chalk": "^4.1.0", "mkdirp-infer-owner": "^2.0.0", "npm-package-arg": "^9.0.0", "npmlog": "^6.0.1", - "pacote": "^13.0.2", + "pacote": "^17.0.4", "proc-log": "^2.0.0", "read": "^1.0.7", "read-package-json-fast": "^2.0.2",