From 5c7ec677c922ea04f60b38b79bb611acaaccc8cc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 14 Nov 2025 10:17:49 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- package-lock.json | 29 ++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 23 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 4b5570adf16a..c60f3484b770 100644 --- a/package-lock.json +++ b/package-lock.json @@ -46,7 +46,7 @@ "html-entities": "^2.3.2", "imurmurhash": "^0.1.4", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "kleur": "4.1.4", "liquidjs": "^9.22.1", "lodash": "^4.17.21", @@ -13183,9 +13183,10 @@ "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==" }, "node_modules/js-yaml": { - "version": "4.1.0", - "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.0.tgz", - "integrity": "sha512-wpxZs9NoxZaJESJGIZTyDEaYpl0FKSA+FB9aJiyemKhMwkxQg63h4T1KJgUGHpTqPDNRcmmYLugrRjJlBtWvRA==", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", + "license": "MIT", "dependencies": { "argparse": "^2.0.1" }, @@ -19018,6 +19019,15 @@ "url": "https://github.com/sponsors/wooorm" } }, + "node_modules/rehype-highlight/node_modules/highlight.js": { + "version": "11.3.1", + "resolved": "https://registry.npmjs.org/highlight.js/-/highlight.js-11.3.1.tgz", + "integrity": "sha512-PUhCRnPjLtiLHZAQ5A/Dt5F8cWZeMyj9KRsACsWT+OD6OP0x6dp5OmT5jdx0JgEyPxPZZIPQpRN2TciUT7occw==", + "license": "BSD-3-Clause", + "engines": { + "node": ">=12.0.0" + } + }, "node_modules/rehype-highlight/node_modules/lowlight": { "version": "2.4.0", "resolved": "https://registry.npmjs.org/lowlight/-/lowlight-2.4.0.tgz", @@ -33366,9 +33376,9 @@ "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==" }, "js-yaml": { - "version": "4.1.0", - "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.0.tgz", - "integrity": "sha512-wpxZs9NoxZaJESJGIZTyDEaYpl0FKSA+FB9aJiyemKhMwkxQg63h4T1KJgUGHpTqPDNRcmmYLugrRjJlBtWvRA==", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", "requires": { "argparse": "^2.0.1" } @@ -37786,6 +37796,11 @@ "format": "^0.2.0" } }, + "highlight.js": { + "version": "11.3.1", + "resolved": "https://registry.npmjs.org/highlight.js/-/highlight.js-11.3.1.tgz", + "integrity": "sha512-PUhCRnPjLtiLHZAQ5A/Dt5F8cWZeMyj9KRsACsWT+OD6OP0x6dp5OmT5jdx0JgEyPxPZZIPQpRN2TciUT7occw==" + }, "lowlight": { "version": "2.4.0", "resolved": "https://registry.npmjs.org/lowlight/-/lowlight-2.4.0.tgz", diff --git a/package.json b/package.json index 0a8d6ea13480..96b7ee41f0e6 100644 --- a/package.json +++ b/package.json @@ -48,7 +48,7 @@ "html-entities": "^2.3.2", "imurmurhash": "^0.1.4", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "kleur": "4.1.4", "liquidjs": "^9.22.1", "lodash": "^4.17.21",