From 551920c4a757521b08a910d6fb47ec81c9df53c5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 6 Dec 2022 16:26:51 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-3153490 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 83466d9..c6a5425 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2704,9 +2704,9 @@ "dev": true }, "qs": { - "version": "6.9.1", - "resolved": "https://registry.npmjs.org/qs/-/qs-6.9.1.tgz", - "integrity": "sha512-Cxm7/SS/y/Z3MHWSxXb8lIFqgqBowP5JMlTUFyJN88y0SGQhVmZnqFK/PeuMX9LzUyWsqqhNxIyg0jlzq946yA==" + "version": "6.9.7", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.9.7.tgz", + "integrity": "sha512-IhMFgUmuNpyRfxA90umL7ByLlgRXu6tIfKPpF5TmcfRLlLCckfP/g3IQmju6jjpu+Hh8rA+2p6A27ZSPOOHdKw==" }, "querystring": { "version": "0.2.0", diff --git a/package.json b/package.json index cb3ad97..a469d89 100644 --- a/package.json +++ b/package.json @@ -57,7 +57,7 @@ "joi-json": "^4.0.0", "jwk-to-pem": "^2.0.3", "jwt-simple": "^0.5.6", - "qs": "^6.5.2", + "qs": "^6.9.7", "vandium-utils": "^2.0.0" }, "devDependencies": {