From 436fb26166e272d6433804f2fdd52471efd9d7a3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 21 Nov 2025 05:32:00 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- package-lock.json | 10 +++++++--- package.json | 2 +- 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index f5798e3c2b6c..d36ec5950b27 100644 --- a/package-lock.json +++ b/package-lock.json @@ -46,7 +46,7 @@ "imurmurhash": "^0.1.4", "javascript-stringify": "^2.1.0", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "liquidjs": "9.22.1", "lodash": "^4.17.21", "lodash-es": "^4.17.21", @@ -13640,7 +13640,9 @@ "license": "MIT" }, "node_modules/js-yaml": { - "version": "4.1.0", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", "license": "MIT", "dependencies": { "argparse": "^2.0.1" @@ -30501,7 +30503,9 @@ "version": "4.0.0" }, "js-yaml": { - "version": "4.1.0", + "version": "4.1.1", + "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz", + "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==", "requires": { "argparse": "^2.0.1" } diff --git a/package.json b/package.json index 9034682438d4..7241ef816fdf 100644 --- a/package.json +++ b/package.json @@ -48,7 +48,7 @@ "imurmurhash": "^0.1.4", "javascript-stringify": "^2.1.0", "js-cookie": "^3.0.1", - "js-yaml": "^4.1.0", + "js-yaml": "^4.1.1", "liquidjs": "9.22.1", "lodash": "^4.17.21", "lodash-es": "^4.17.21",