Mirror of https://github.com/roostorg/coop
github.com/roostorg/coop
[Security] Bump axios to mitigate supply chain issue (#170)
authored by
Paweł Wieczorek
and committed by
GitHub
71ffb3d8
94295e4b
+143
-42
+136
-41
content-proxy/package-lock.json
+136
-41
content-proxy/package-lock.json
···
10
10
"license": "ISC",
11
11
"dependencies": {
12
12
"@babel/preset-env": "^7.24.5",
13
-
"axios": "^1.7.7",
13
+
"axios": "1.14.0",
14
14
"babel-jest": "^29.7.0",
15
15
"cheerio": "^1.0.0",
16
16
"express": "^4.20.0",
···
2913
2913
"integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q=="
2914
2914
},
2915
2915
"node_modules/axios": {
2916
-
"version": "1.7.7",
2917
-
"resolved": "https://registry.npmjs.org/axios/-/axios-1.7.7.tgz",
2918
-
"integrity": "sha512-S4kL7XrjgBmvdGut0sN3yJxqYzrDOnivkBiN0OFs6hLiUam3UPvswUo0kqGyhqUZGEOytHyumEdXsAkgCOUf3Q==",
2916
+
"version": "1.14.0",
2917
+
"resolved": "https://registry.npmjs.org/axios/-/axios-1.14.0.tgz",
2918
+
"integrity": "sha512-3Y8yrqLSwjuzpXuZ0oIYZ/XGgLwUIBU3uLvbcpb0pidD9ctpShJd43KSlEEkVQg6DS0G9NKyzOvBfUtDKEyHvQ==",
2919
+
"license": "MIT",
2919
2920
"dependencies": {
2920
-
"follow-redirects": "^1.15.6",
2921
-
"form-data": "^4.0.0",
2922
-
"proxy-from-env": "^1.1.0"
2921
+
"follow-redirects": "^1.15.11",
2922
+
"form-data": "^4.0.5",
2923
+
"proxy-from-env": "^2.1.0"
2923
2924
}
2924
2925
},
2925
2926
"node_modules/babel-jest": {
···
3207
3208
},
3208
3209
"funding": {
3209
3210
"url": "https://github.com/sponsors/ljharb"
3211
+
}
3212
+
},
3213
+
"node_modules/call-bind-apply-helpers": {
3214
+
"version": "1.0.2",
3215
+
"resolved": "https://registry.npmjs.org/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz",
3216
+
"integrity": "sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==",
3217
+
"license": "MIT",
3218
+
"dependencies": {
3219
+
"es-errors": "^1.3.0",
3220
+
"function-bind": "^1.1.2"
3221
+
},
3222
+
"engines": {
3223
+
"node": ">= 0.4"
3210
3224
}
3211
3225
},
3212
3226
"node_modules/callsites": {
···
3700
3714
"node": ">=10"
3701
3715
}
3702
3716
},
3717
+
"node_modules/dunder-proto": {
3718
+
"version": "1.0.1",
3719
+
"resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz",
3720
+
"integrity": "sha512-KIN/nDJBQRcXw0MLVhZE9iQHmG68qAVIBg9CqmUYjmQIhgij9U5MFvrqkUL5FbtyyzZuOeOt0zdeRe4UY7ct+A==",
3721
+
"license": "MIT",
3722
+
"dependencies": {
3723
+
"call-bind-apply-helpers": "^1.0.1",
3724
+
"es-errors": "^1.3.0",
3725
+
"gopd": "^1.2.0"
3726
+
},
3727
+
"engines": {
3728
+
"node": ">= 0.4"
3729
+
}
3730
+
},
3703
3731
"node_modules/duplexer": {
3704
3732
"version": "0.1.2",
3705
3733
"resolved": "https://registry.npmjs.org/duplexer/-/duplexer-0.1.2.tgz",
···
3786
3814
}
3787
3815
},
3788
3816
"node_modules/es-define-property": {
3789
-
"version": "1.0.0",
3790
-
"resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.0.tgz",
3791
-
"integrity": "sha512-jxayLKShrEqqzJ0eumQbVhTYQM27CfT1T35+gCgDFoL82JLsXqTJ76zv6A0YLOgEnLUMvLzsDsGIrl8NFpT2gQ==",
3792
-
"dependencies": {
3793
-
"get-intrinsic": "^1.2.4"
3794
-
},
3817
+
"version": "1.0.1",
3818
+
"resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.1.tgz",
3819
+
"integrity": "sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==",
3820
+
"license": "MIT",
3795
3821
"engines": {
3796
3822
"node": ">= 0.4"
3797
3823
}
···
3800
3826
"version": "1.3.0",
3801
3827
"resolved": "https://registry.npmjs.org/es-errors/-/es-errors-1.3.0.tgz",
3802
3828
"integrity": "sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==",
3829
+
"engines": {
3830
+
"node": ">= 0.4"
3831
+
}
3832
+
},
3833
+
"node_modules/es-object-atoms": {
3834
+
"version": "1.1.1",
3835
+
"resolved": "https://registry.npmjs.org/es-object-atoms/-/es-object-atoms-1.1.1.tgz",
3836
+
"integrity": "sha512-FGgH2h8zKNim9ljj7dankFPcICIK9Cp5bm+c2gQSYePhpaG5+esrLODihIorn+Pe6FGJzWhXQotPv73jTaldXA==",
3837
+
"license": "MIT",
3838
+
"dependencies": {
3839
+
"es-errors": "^1.3.0"
3840
+
},
3841
+
"engines": {
3842
+
"node": ">= 0.4"
3843
+
}
3844
+
},
3845
+
"node_modules/es-set-tostringtag": {
3846
+
"version": "2.1.0",
3847
+
"resolved": "https://registry.npmjs.org/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz",
3848
+
"integrity": "sha512-j6vWzfrGVfyXxge+O0x5sh6cvxAog0a/4Rdd2K36zCMV5eJ+/+tOAngRO8cODMNWbVRdVlmGZQL2YS3yR8bIUA==",
3849
+
"license": "MIT",
3850
+
"dependencies": {
3851
+
"es-errors": "^1.3.0",
3852
+
"get-intrinsic": "^1.2.6",
3853
+
"has-tostringtag": "^1.0.2",
3854
+
"hasown": "^2.0.2"
3855
+
},
3803
3856
"engines": {
3804
3857
"node": ">= 0.4"
3805
3858
}
···
4236
4289
"dev": true
4237
4290
},
4238
4291
"node_modules/follow-redirects": {
4239
-
"version": "1.15.6",
4240
-
"resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.6.tgz",
4241
-
"integrity": "sha512-wWN62YITEaOpSK584EZXJafH1AGpO8RVgElfkuXbTOrPX4fIfOyEpW/CsiNd8JdYrAoOvafRTOEnvsO++qCqFA==",
4292
+
"version": "1.15.11",
4293
+
"resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.11.tgz",
4294
+
"integrity": "sha512-deG2P0JfjrTxl50XGCDyfI97ZGVCxIpfKYmfyrQ54n5FO/0gfIES8C/Psl6kWVDolizcaaxZJnTS0QSMxvnsBQ==",
4242
4295
"funding": [
4243
4296
{
4244
4297
"type": "individual",
4245
4298
"url": "https://github.com/sponsors/RubenVerborgh"
4246
4299
}
4247
4300
],
4301
+
"license": "MIT",
4248
4302
"engines": {
4249
4303
"node": ">=4.0"
4250
4304
},
···
4255
4309
}
4256
4310
},
4257
4311
"node_modules/form-data": {
4258
-
"version": "4.0.0",
4259
-
"resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.0.tgz",
4260
-
"integrity": "sha512-ETEklSGi5t0QMZuiXoA/Q6vcnxcLQP5vdugSpuAyi6SVGi2clPPp+xgEhuMaHC+zGgn31Kd235W35f7Hykkaww==",
4312
+
"version": "4.0.5",
4313
+
"resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.5.tgz",
4314
+
"integrity": "sha512-8RipRLol37bNs2bhoV67fiTEvdTrbMUYcFTiy3+wuuOnUog2QBHCZWXDRijWQfAkhBj2Uf5UnVaiWwA5vdd82w==",
4315
+
"license": "MIT",
4261
4316
"dependencies": {
4262
4317
"asynckit": "^0.4.0",
4263
4318
"combined-stream": "^1.0.8",
4319
+
"es-set-tostringtag": "^2.1.0",
4320
+
"hasown": "^2.0.2",
4264
4321
"mime-types": "^2.1.12"
4265
4322
},
4266
4323
"engines": {
···
4333
4390
}
4334
4391
},
4335
4392
"node_modules/get-intrinsic": {
4336
-
"version": "1.2.4",
4337
-
"resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.2.4.tgz",
4338
-
"integrity": "sha512-5uYhsJH8VJBTv7oslg4BznJYhDoRI6waYCxMmCdnTrcCrHA/fCFKoTFz2JKKE0HdDFUF7/oQuhzumXJK7paBRQ==",
4393
+
"version": "1.3.0",
4394
+
"resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.3.0.tgz",
4395
+
"integrity": "sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==",
4396
+
"license": "MIT",
4339
4397
"dependencies": {
4398
+
"call-bind-apply-helpers": "^1.0.2",
4399
+
"es-define-property": "^1.0.1",
4340
4400
"es-errors": "^1.3.0",
4401
+
"es-object-atoms": "^1.1.1",
4341
4402
"function-bind": "^1.1.2",
4342
-
"has-proto": "^1.0.1",
4343
-
"has-symbols": "^1.0.3",
4344
-
"hasown": "^2.0.0"
4403
+
"get-proto": "^1.0.1",
4404
+
"gopd": "^1.2.0",
4405
+
"has-symbols": "^1.1.0",
4406
+
"hasown": "^2.0.2",
4407
+
"math-intrinsics": "^1.1.0"
4345
4408
},
4346
4409
"engines": {
4347
4410
"node": ">= 0.4"
···
4358
4421
"node": ">=8.0.0"
4359
4422
}
4360
4423
},
4424
+
"node_modules/get-proto": {
4425
+
"version": "1.0.1",
4426
+
"resolved": "https://registry.npmjs.org/get-proto/-/get-proto-1.0.1.tgz",
4427
+
"integrity": "sha512-sTSfBjoXBp89JvIKIefqw7U2CCebsc74kiY6awiGogKtoSGbgjYE/G/+l9sF3MWFPNc9IcoOC4ODfKHfxFmp0g==",
4428
+
"license": "MIT",
4429
+
"dependencies": {
4430
+
"dunder-proto": "^1.0.1",
4431
+
"es-object-atoms": "^1.0.0"
4432
+
},
4433
+
"engines": {
4434
+
"node": ">= 0.4"
4435
+
}
4436
+
},
4361
4437
"node_modules/get-stream": {
4362
4438
"version": "6.0.1",
4363
4439
"resolved": "https://registry.npmjs.org/get-stream/-/get-stream-6.0.1.tgz",
···
4414
4490
}
4415
4491
},
4416
4492
"node_modules/gopd": {
4417
-
"version": "1.0.1",
4418
-
"resolved": "https://registry.npmjs.org/gopd/-/gopd-1.0.1.tgz",
4419
-
"integrity": "sha512-d65bNlIadxvpb/A2abVdlqKqV563juRnZ1Wtk6s1sIR8uNsXR70xqIzVqxVf1eTqDunwT2MkczEeaezCKTZhwA==",
4420
-
"dependencies": {
4421
-
"get-intrinsic": "^1.1.3"
4493
+
"version": "1.2.0",
4494
+
"resolved": "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz",
4495
+
"integrity": "sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==",
4496
+
"license": "MIT",
4497
+
"engines": {
4498
+
"node": ">= 0.4"
4422
4499
},
4423
4500
"funding": {
4424
4501
"url": "https://github.com/sponsors/ljharb"
···
4448
4525
"url": "https://github.com/sponsors/ljharb"
4449
4526
}
4450
4527
},
4451
-
"node_modules/has-proto": {
4452
-
"version": "1.0.3",
4453
-
"resolved": "https://registry.npmjs.org/has-proto/-/has-proto-1.0.3.tgz",
4454
-
"integrity": "sha512-SJ1amZAJUiZS+PhsVLf5tGydlaVB8EdFpaSO4gmiUKUOxk8qzn5AIy4ZeJUmh22znIdk/uMAUT2pl3FxzVUH+Q==",
4528
+
"node_modules/has-symbols": {
4529
+
"version": "1.1.0",
4530
+
"resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.1.0.tgz",
4531
+
"integrity": "sha512-1cDNdwJ2Jaohmb3sg4OmKaMBwuC48sYni5HUw2DvsC8LjGTLK9h+eb1X6RyuOHe4hT0ULCW68iomhjUoKUqlPQ==",
4532
+
"license": "MIT",
4455
4533
"engines": {
4456
4534
"node": ">= 0.4"
4457
4535
},
···
4459
4537
"url": "https://github.com/sponsors/ljharb"
4460
4538
}
4461
4539
},
4462
-
"node_modules/has-symbols": {
4463
-
"version": "1.0.3",
4464
-
"resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.0.3.tgz",
4465
-
"integrity": "sha512-l3LCuF6MgDNwTDKkdYGEihYjt5pRPbEg46rtlmnSPlUbgmB8LOIrKJbYYFBSbnPaJexMKtiPO8hmeRjRz2Td+A==",
4540
+
"node_modules/has-tostringtag": {
4541
+
"version": "1.0.2",
4542
+
"resolved": "https://registry.npmjs.org/has-tostringtag/-/has-tostringtag-1.0.2.tgz",
4543
+
"integrity": "sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw==",
4544
+
"license": "MIT",
4545
+
"dependencies": {
4546
+
"has-symbols": "^1.0.3"
4547
+
},
4466
4548
"engines": {
4467
4549
"node": ">= 0.4"
4468
4550
},
···
5748
5830
"integrity": "sha512-CkYQrPYZfWnu/DAmVCpTSX/xHpKZ80eKh2lAkyA6AJTef6bW+6JpbQZN5rofum7da+SyN1bi5ctTm+lTfcCW3g==",
5749
5831
"dev": true
5750
5832
},
5833
+
"node_modules/math-intrinsics": {
5834
+
"version": "1.1.0",
5835
+
"resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
5836
+
"integrity": "sha512-/IXtbwEk5HTPyEwyKX6hGkYXxM9nbj64B+ilVJnC/R6B0pH5G4V3b0pVbL7DBj4tkhBAppbQUlf6F6Xl9LHu1g==",
5837
+
"license": "MIT",
5838
+
"engines": {
5839
+
"node": ">= 0.4"
5840
+
}
5841
+
},
5751
5842
"node_modules/media-typer": {
5752
5843
"version": "0.3.0",
5753
5844
"resolved": "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz",
···
6316
6407
}
6317
6408
},
6318
6409
"node_modules/proxy-from-env": {
6319
-
"version": "1.1.0",
6320
-
"resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-1.1.0.tgz",
6321
-
"integrity": "sha512-D+zkORCbA9f1tdWRK0RaCR3GPv50cMxcrz4X8k5LTSUD1Dkw47mKJEZQNunItRTkWwgtaUSo1RVFRIG9ZXiFYg=="
6410
+
"version": "2.1.0",
6411
+
"resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-2.1.0.tgz",
6412
+
"integrity": "sha512-cJ+oHTW1VAEa8cJslgmUZrc+sjRKgAKl3Zyse6+PV38hZe/V6Z14TbCuXcan9F9ghlz4QrFr2c92TNF82UkYHA==",
6413
+
"license": "MIT",
6414
+
"engines": {
6415
+
"node": ">=10"
6416
+
}
6322
6417
},
6323
6418
"node_modules/ps-tree": {
6324
6419
"version": "1.2.0",
+7
-1
content-proxy/package.json
+7
-1
content-proxy/package.json
···
12
12
"license": "ISC",
13
13
"dependencies": {
14
14
"@babel/preset-env": "^7.24.5",
15
-
"axios": "^1.7.7",
15
+
"axios": "1.14.0",
16
16
"babel-jest": "^29.7.0",
17
17
"cheerio": "^1.0.0",
18
18
"express": "^4.20.0",
···
32
32
"ts-node": "^10.9.2",
33
33
"tsc-watch": "^6.2.0",
34
34
"typescript": "^5.4.5"
35
+
},
36
+
"overrides": {
37
+
"axios": "1.14.0"
38
+
},
39
+
"resolutions": {
40
+
"axios": "1.14.0"
35
41
}
36
42
}