Skip to content

Commit

Permalink
Issue 69: Security fixes for: minimatch and qs.
Browse files Browse the repository at this point in the history 
Fix child dependencies that are coming in with insecure versions.
This is based on the `npm list --depth=100` and considers what is reported by dependabot for Sage.

see: https://github.com/TAMULib/SAGE/security/dependabot/37
see: https://github.com/TAMULib/SAGE/security/dependabot/34
  • Loading branch information
@kaladay
kaladay committed Dec 9, 2022
1 parent 960bc01 commit 0646670
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,8 @@
"devDependencies": {
},
"overrides": {
"glob-stream": "^7.0.0"
"glob-stream": "^7.0.0",
"minimatch": "^3.1.2",
"qs": "^6.11.0"
}
}

0 comments on commit 0646670

Please sign in to comment.