From d3cbc91966d406da37ebdbd2690d39e8224c8216 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 12 Feb 2024 00:45:37 +0000 Subject: [PATCH] fix: deps/npm/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 --- deps/npm/package.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/deps/npm/package.json b/deps/npm/package.json index 24827e59cfd9a1..47055b2561b722 100644 --- a/deps/npm/package.json +++ b/deps/npm/package.json @@ -74,7 +74,7 @@ "lazy-property": "~1.0.0", "libcipm": "^3.0.3", "libnpm": "^2.0.1", - "libnpmhook": "^5.0.2", + "libnpmhook": "^10.0.0", "libnpx": "^10.2.0", "lock-verify": "^2.1.0", "lockfile": "^1.0.4", @@ -98,13 +98,13 @@ "npm-package-arg": "^6.1.0", "npm-packlist": "^1.4.1", "npm-pick-manifest": "^2.2.3", - "npm-registry-fetch": "^3.9.0", + "npm-registry-fetch": "^15.0.0", "npm-user-validate": "~1.0.0", "npmlog": "~4.1.2", "once": "~1.4.0", "opener": "^1.5.1", "osenv": "^0.1.5", - "pacote": "^9.5.0", + "pacote": "^16.0.0", "path-is-inside": "~1.0.2", "promise-inflight": "~1.0.1", "qrcode-terminal": "^0.12.0",