From 048baf02b4c380e057a84ec5f768f34bef5e362f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 27 Oct 2025 10:33:32 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-TURNDOWN-12304081 --- package-lock.json | 13 +++++++------ package.json | 2 +- 2 files changed, 8 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 4afa738..df1704c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "doc2vec", - "version": "1.1.1", + "version": "1.3.0", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "doc2vec", - "version": "1.1.1", + "version": "1.3.0", "license": "ISC", "dependencies": { "@mozilla/readability": "^0.4.4", @@ -24,7 +24,7 @@ "puppeteer": "^24.1.1", "sanitize-html": "^2.11.0", "sqlite-vec": "0.1.7-alpha.2", - "turndown": "^7.1.2" + "turndown": "^7.2.2" }, "bin": { "doc2vec": "dist/doc2vec.js" @@ -2976,9 +2976,10 @@ } }, "node_modules/turndown": { - "version": "7.2.0", - "resolved": "https://registry.npmjs.org/turndown/-/turndown-7.2.0.tgz", - "integrity": "sha512-eCZGBN4nNNqM9Owkv9HAtWRYfLA4h909E/WGAWWBpmB275ehNhZyk87/Tpvjbp0jjNl9XwCsbe6bm6CqFsgD+A==", + "version": "7.2.2", + "resolved": "https://registry.npmjs.org/turndown/-/turndown-7.2.2.tgz", + "integrity": "sha512-1F7db8BiExOKxjSMU2b7if62D/XOyQyZbPKq/nUwopfgnHlqXHqQ0lvfUTeUIr1lZJzOPFn43dODyMSIfvWRKQ==", + "license": "MIT", "dependencies": { "@mixmark-io/domino": "^2.2.0" } diff --git a/package.json b/package.json index 58cffbb..fb3565a 100644 --- a/package.json +++ b/package.json @@ -41,7 +41,7 @@ "puppeteer": "^24.1.1", "sanitize-html": "^2.11.0", "sqlite-vec": "0.1.7-alpha.2", - "turndown": "^7.1.2" + "turndown": "^7.2.2" }, "devDependencies": { "@types/better-sqlite3": "^7.6.12",