Build(deps): Bump minimist from 1.2.5 to 1.2.6 (#12513)

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: fisker Cheung <lionkay@gmail.com>
prettier · Mar 24, 2022 · 67edeea · 67edeea
1 parent 6664253
commit 67edeea
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 5 deletions.
diff --git a/changelog_unreleased/cli/12513.md b/changelog_unreleased/cli/12513.md
@@ -0,0 +1,3 @@
+#### Fix minimist security issue (#12513 by @dependabot)
+
+Details: [Prototype Pollution](https://security.snyk.io/vuln/SNYK-JS-MINIMIST-559764)
diff --git a/package.json b/package.json
@@ -65,7 +65,7 @@
     "mem": "9.0.2",
     "meriyah": "4.2.0",
     "micromatch": "4.0.4",
-    "minimist": "1.2.5",
+    "minimist": "1.2.6",
     "n-readlines": "1.0.1",
     "outdent": "0.8.0",
     "parse-srcset": "ikatyang/parse-srcset#54eb9c1cb21db5c62b4d0e275d7249516df6f0ee",

diff --git a/yarn.lock b/yarn.lock
@@ -4877,10 +4877,10 @@ minimatch@^3.0.4, minimatch@^3.1.2:
   dependencies:
     brace-expansion "^1.1.7"
 
-minimist@1.2.5, minimist@^1.2.0:
-  version "1.2.5"
-  resolved "https://registry.yarnpkg.com/minimist/-/minimist-1.2.5.tgz#67d66014b66a6a8aaa0c083c5fd58df4e4e97602"
-  integrity sha512-FM9nNUYrRBAELZQT3xeZQ7fmMOBg6nWNmJKTcgsJeaLstP/UODVpGsr5OhXhhXg6f+qtJ8uiZ+PUxkDWcgIXLw==
+minimist@1.2.6, minimist@^1.2.0:
+  version "1.2.6"
+  resolved "https://registry.yarnpkg.com/minimist/-/minimist-1.2.6.tgz#8637a5b759ea0d6e98702cfb3a9283323c93af44"
+  integrity sha512-Jsjnk4bw3YJqYzbdyBiNsPWHPfO++UGG749Cxs6peCu5Xg4nrena6OVxOYxrQTqww0Jmwt+Ref8rggumkTLz9Q==
 
 mkdirp@1.0.4:
   version "1.0.4"