From 12a9f548a867145550cb491d25695f9e3664eb35 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 19 Nov 2025 10:33:10 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- package-lock.json | 10 +++++++--- package.json | 2 +- 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index ed05bc9df95c..ae62dae105a6 100644 --- a/package-lock.json +++ b/package-lock.json @@ -46,7 +46,7 @@ "imurmurhash": "^0.1.4", "javascript-stringify": "^2.1.0", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "liquidjs": "9.22.1", "lodash": "^4.17.21", "lodash-es": "^4.17.21", @@ -13623,7 +13623,9 @@ "license": "MIT" }, "node_modules/js-yaml": { - "version": "4.1.0", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", "license": "MIT", "dependencies": { "argparse": "^2.0.1" @@ -30069,7 +30071,9 @@ "version": "4.0.0" }, "js-yaml": { - "version": "4.1.0", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", "requires": { "argparse": "^2.0.1" } diff --git a/package.json b/package.json index d2453d83f71f..ccf3719c2b7d 100644 --- a/package.json +++ b/package.json @@ -48,7 +48,7 @@ "imurmurhash": "^0.1.4", "javascript-stringify": "^2.1.0", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "liquidjs": "9.22.1", "lodash": "^4.17.21", "lodash-es": "^4.17.21",