From d8c855311fed7ef3e70ace351ad04d7475e48e55 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 18 Jul 2022 20:44:55 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JQUERYUI-2946728 --- package-lock.json | 30 +++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 24 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 178d4a25c..32ebb8015 100644 --- a/package-lock.json +++ b/package-lock.json @@ -14,7 +14,7 @@ "codemirror": "^5.59.4", "handsontable": "7.2.2", "jexcel": "^3.9.1", - "jquery-ui": "1.10.4", + "jquery-ui": "^1.13.2", "select2": "^4.1.0-rc.0", "sql.js": "1.5.0", "vega-embed": "3.14.0", @@ -2447,10 +2447,18 @@ "jsuites": "^2.7.1" } }, + "node_modules/jquery": { + "version": "3.6.0", + "resolved": "https://registry.npmjs.org/jquery/-/jquery-3.6.0.tgz", + "integrity": "sha512-JVzAR/AjBvVt2BmYhxRCSYysDsPcssdmTFnzyLEts9qNwmjmu4JTAMYubEfwVOSwpQ1I1sKKFcxhZCI2buerfw==" + }, "node_modules/jquery-ui": { - "version": "1.10.4", - "resolved": "https://registry.npmjs.org/jquery-ui/-/jquery-ui-1.10.4.tgz", - "integrity": "sha1-oJb+X04PKraaBYXPEEVYd/V1Br0=" + "version": "1.13.2", + "resolved": "https://registry.npmjs.org/jquery-ui/-/jquery-ui-1.13.2.tgz", + "integrity": "sha512-wBZPnqWs5GaYJmo1Jj0k/mrSkzdQzKDwhXNtHKcBdAcKVxMM3KNYFq+iJ2i1rwiG53Z8M4mTn3Qxrm17uH1D4Q==", + "dependencies": { + "jquery": ">=1.8.0 <4.0.0" + } }, "node_modules/json-parse-better-errors": { "version": "1.0.2", @@ -7713,10 +7721,18 @@ "jsuites": "^2.7.1" } }, + "jquery": { + "version": "3.6.0", + "resolved": "https://registry.npmjs.org/jquery/-/jquery-3.6.0.tgz", + "integrity": "sha512-JVzAR/AjBvVt2BmYhxRCSYysDsPcssdmTFnzyLEts9qNwmjmu4JTAMYubEfwVOSwpQ1I1sKKFcxhZCI2buerfw==" + }, "jquery-ui": { - "version": "1.10.4", - "resolved": "https://registry.npmjs.org/jquery-ui/-/jquery-ui-1.10.4.tgz", - "integrity": "sha1-oJb+X04PKraaBYXPEEVYd/V1Br0=" + "version": "1.13.2", + "resolved": "https://registry.npmjs.org/jquery-ui/-/jquery-ui-1.13.2.tgz", + "integrity": "sha512-wBZPnqWs5GaYJmo1Jj0k/mrSkzdQzKDwhXNtHKcBdAcKVxMM3KNYFq+iJ2i1rwiG53Z8M4mTn3Qxrm17uH1D4Q==", + "requires": { + "jquery": ">=1.8.0 <4.0.0" + } }, "json-parse-better-errors": { "version": "1.0.2", diff --git a/package.json b/package.json index fc51c3d34..b1e98fb0a 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "codemirror": "^5.59.4", "handsontable": "7.2.2", "jexcel": "^3.9.1", - "jquery-ui": "1.10.4", + "jquery-ui": "1.13.2", "select2": "^4.1.0-rc.0", "sql.js": "1.5.0", "vega-embed": "3.14.0",