Fixing pollution vulnerability in minimist (#197)

* Fixing pollution vulnerability in minimist fixing prototype Pollution vulnerability in minimist updating minimist version to 1.2.6 ref: https://www.npmjs.com/advisories/1067259 * updating yarn lock file Co-authored-by: g.jaganathan <gopi.jaganathan@deliveryhero.com>
dividab · Mar 22, 2022 · b5d9eac · b5d9eac
1 parent 8062f65
commit b5d9eac
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 1 deletion.
diff --git a/package.json b/package.json
@@ -35,7 +35,7 @@
   "dependencies": {
     "@types/json5": "^0.0.29",
     "json5": "^1.0.1",
-    "minimist": "^1.2.0",
+    "minimist": "^1.2.6",
     "strip-bom": "^3.0.0"
   },
   "scripts": {

diff --git a/yarn.lock b/yarn.lock
@@ -2333,6 +2333,11 @@ minimist@^1.2.5:
   resolved "https://registry.yarnpkg.com/minimist/-/minimist-1.2.5.tgz#67d66014b66a6a8aaa0c083c5fd58df4e4e97602"
   integrity sha512-FM9nNUYrRBAELZQT3xeZQ7fmMOBg6nWNmJKTcgsJeaLstP/UODVpGsr5OhXhhXg6f+qtJ8uiZ+PUxkDWcgIXLw==
 
+minimist@^1.2.6:
+  version "1.2.6"
+  resolved "https://registry.yarnpkg.com/minimist/-/minimist-1.2.6.tgz#8637a5b759ea0d6e98702cfb3a9283323c93af44"
+  integrity sha512-Jsjnk4bw3YJqYzbdyBiNsPWHPfO++UGG749Cxs6peCu5Xg4nrena6OVxOYxrQTqww0Jmwt+Ref8rggumkTLz9Q==
+
 mkdirp@^0.5.1:
   version "0.5.1"
   resolved "https://registry.yarnpkg.com/mkdirp/-/mkdirp-0.5.1.tgz#30057438eac6cf7f8c4767f38648d6697d75c903"