From cc4b7d28f1ee4f7b333007a00acc57e751714e09 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 3 Jul 2024 04:36:27 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ASYNC-7414156 --- package.json | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/package.json b/package.json index b96df354b2402d..8c5d553629fbdd 100644 --- a/package.json +++ b/package.json @@ -55,7 +55,7 @@ "express-state": "^1.2.0", "express-validator": "^2.18.0", "fetchr": "~0.5.12", - "forever": "~0.15.1", + "forever": "~4.0.0", "frameguard": "~0.2.2", "gulp": "^3.9.0", "gulp-babel": "^5.3.0", @@ -72,7 +72,7 @@ "gulp-reduce-file": "0.0.1", "gulp-rev": "^6.0.1", "gulp-rev-replace": "~0.4.2", - "gulp-uglify": "^1.5.1", + "gulp-uglify": "^2.1.0", "gulp-util": "^3.0.6", "gulp-webpack": "^1.5.0", "helmet": "~0.15.0", @@ -82,10 +82,10 @@ "json-loader": "~0.5.2", "less": "^2.5.1", "lodash": "^3.9.3", - "loopback": "^2.22.0", + "loopback": "^3.20.0", "loopback-boot": "^2.13.0", "loopback-component-passport": "^1.6.0", - "loopback-connector-mongodb": "1.13.0", + "loopback-connector-mongodb": "3.1.0", "merge-stream": "^1.0.0", "method-override": "^2.3.0", "moment": "^2.10.2", @@ -112,7 +112,7 @@ "react-router-bootstrap": "https://github.com/FreeCodeCamp/react-router-bootstrap.git#freecodecamp", "react-vimeo": "~0.0.3", "request": "^2.65.0", - "rev-del": "^1.0.5", + "rev-del": "^2.0.0", "rx": "^4.0.0", "sanitize-html": "^2.0.0", "sort-keys": "^1.1.1", @@ -123,8 +123,8 @@ "uglify-js": "^2.5.0", "url-regex": "^3.0.0", "validator": "^4.2.1", - "webpack": "^1.9.12", - "webpack-stream": "^2.1.1", + "webpack": "^4.0.0", + "webpack-stream": "^5.0.0", "xss-filters": "^1.2.6", "yargs": "^3.30.0" },