From b393e9fc88bcbf58ebb1e0ad10706dbb406d5c2a Mon Sep 17 00:00:00 2001 From: Matan Borenkraout Date: Sun, 23 Jan 2022 10:23:06 +0200 Subject: [PATCH 1/2] chore(security): upgrade node-fetch to latest version --- lib/core-server/package.json | 2 +- lib/manager-webpack4/package.json | 2 +- lib/manager-webpack5/package.json | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/lib/core-server/package.json b/lib/core-server/package.json index 8c33f31690bc..6bc05da26f32 100644 --- a/lib/core-server/package.json +++ b/lib/core-server/package.json @@ -70,7 +70,7 @@ "globby": "^11.0.2", "ip": "^1.1.5", "lodash": "^4.17.21", - "node-fetch": "^2.6.1", + "node-fetch": "^2.6.7", "open": "^8.4.0", "pretty-hrtime": "^1.0.3", "prompts": "^2.4.0", diff --git a/lib/manager-webpack4/package.json b/lib/manager-webpack4/package.json index 5bc6e14aad3c..ca5a320c550d 100644 --- a/lib/manager-webpack4/package.json +++ b/lib/manager-webpack4/package.json @@ -64,7 +64,7 @@ "find-up": "^5.0.0", "fs-extra": "^9.0.1", "html-webpack-plugin": "^4.0.0", - "node-fetch": "^2.6.1", + "node-fetch": "^2.6.7", "pnp-webpack-plugin": "1.6.4", "read-pkg-up": "^7.0.1", "regenerator-runtime": "^0.13.7", diff --git a/lib/manager-webpack5/package.json b/lib/manager-webpack5/package.json index d4419069b9b1..e809bdf1db6d 100644 --- a/lib/manager-webpack5/package.json +++ b/lib/manager-webpack5/package.json @@ -62,7 +62,7 @@ "find-up": "^5.0.0", "fs-extra": "^9.0.1", "html-webpack-plugin": "^5.0.0", - "node-fetch": "^2.6.1", + "node-fetch": "^2.6.7", "process": "^0.11.10", "read-pkg-up": "^7.0.1", "regenerator-runtime": "^0.13.7", From d43e854214921a194cd4dd3291018eac261a3cd7 Mon Sep 17 00:00:00 2001 From: Matan Borenkraout Date: Mon, 24 Jan 2022 09:37:30 +0200 Subject: [PATCH 2/2] chore(security): update yarn.lock file --- yarn.lock | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/yarn.lock b/yarn.lock index e4a8437cf5c5..6e778089b25f 100644 --- a/yarn.lock +++ b/yarn.lock @@ -7570,7 +7570,7 @@ __metadata: ip: ^1.1.5 jest-specific-snapshot: ^4.0.0 lodash: ^4.17.21 - node-fetch: ^2.6.1 + node-fetch: ^2.6.7 open: ^8.4.0 pretty-hrtime: ^1.0.3 prompts: ^2.4.0 @@ -7910,7 +7910,7 @@ __metadata: find-up: ^5.0.0 fs-extra: ^9.0.1 html-webpack-plugin: ^4.0.0 - node-fetch: ^2.6.1 + node-fetch: ^2.6.7 pnp-webpack-plugin: 1.6.4 read-pkg-up: ^7.0.1 regenerator-runtime: ^0.13.7 @@ -7961,7 +7961,7 @@ __metadata: find-up: ^5.0.0 fs-extra: ^9.0.1 html-webpack-plugin: ^5.0.0 - node-fetch: ^2.6.1 + node-fetch: ^2.6.7 process: ^0.11.10 read-pkg-up: ^7.0.1 regenerator-runtime: ^0.13.7 @@ -32344,7 +32344,7 @@ __metadata: languageName: node linkType: hard -"node-fetch@npm:^2.5.0, node-fetch@npm:^2.6.0, node-fetch@npm:^2.6.1": +"node-fetch@npm:^2.5.0, node-fetch@npm:^2.6.0, node-fetch@npm:^2.6.1, node-fetch@npm:^2.6.7": version: 2.6.7 resolution: "node-fetch@npm:2.6.7" dependencies: