From af6e0235d480bf3a5e4d1b0f350b06880ba9edd8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 11 Feb 2024 20:19:57 +0000 Subject: [PATCH] fix: workspaces/arborist/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 --- workspaces/arborist/package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/workspaces/arborist/package.json b/workspaces/arborist/package.json index 01e3db329ad50..cb0d70b6d4897 100644 --- a/workspaces/arborist/package.json +++ b/workspaces/arborist/package.json @@ -6,12 +6,12 @@ "@isaacs/string-locale-compare": "^1.1.0", "@npmcli/installed-package-contents": "^1.0.7", "@npmcli/map-workspaces": "^2.0.0", - "@npmcli/metavuln-calculator": "^3.0.1", + "@npmcli/metavuln-calculator": "^7.0.0", "@npmcli/move-file": "^2.0.0", "@npmcli/name-from-folder": "^1.0.1", "@npmcli/node-gyp": "^2.0.0", "@npmcli/package-json": "^2.0.0", - "@npmcli/run-script": "^3.0.0", + "@npmcli/run-script": "^7.0.2", "bin-links": "^3.0.0", "cacache": "^16.0.0", "common-ancestor-path": "^1.0.1", @@ -23,9 +23,9 @@ "npm-install-checks": "^5.0.0", "npm-package-arg": "^9.0.0", "npm-pick-manifest": "^7.0.0", - "npm-registry-fetch": "^13.0.0", + "npm-registry-fetch": "^15.0.0", "npmlog": "^6.0.1", - "pacote": "^13.0.5", + "pacote": "^17.0.4", "parse-conflict-json": "^2.0.1", "proc-log": "^2.0.0", "promise-all-reject-late": "^1.0.0",