Fixup CVE-2023-4863

The electron app was impacted with this 8.8/10 CVE from v26.0.0 to v26.2.0 Updating the following dependencies to fix that issue: - electron : 26.2.1 - electron-builder : 24.6.4 - electron-updater : 6.1.4 For more details, see CVE-2023-4863
Farigh · Sep 18, 2023 · 9b0061b · 9b0061b
2 parents 8b8cd78 + fecce1a
commit 9b0061b
Show file tree

Hide file tree

Showing 3 changed files with 156 additions and 137 deletions.
diff --git a/.github/workflows/update-deps.yml b/.github/workflows/update-deps.yml
@@ -20,6 +20,9 @@ jobs:
             - name: Update lock file
               run: npm install
 
+            - name: Run audit fix
+              run: npm audit fix
+
             - name: Upload artifacts
               uses: actions/upload-artifact@v3.1.2
               with: