From bf3eeaf9a9e7e8a6f56e148c438beee696b1c504 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 18 Jun 2022 06:46:01 +0000 Subject: [PATCH] fix: upgrade express-jwt from 6.0.0 to 6.1.2 Snyk has created this PR to upgrade express-jwt from 6.0.0 to 6.1.2. See this package in npm: https://www.npmjs.com/package/express-jwt See this project in Snyk: https://app.snyk.io/org/ambravo/project/c053fd78-420a-4123-a55d-4cef8f3d56ec?utm_source=github&utm_medium=referral&page=upgrade-pr --- 02-Calling-an-API/package-lock.json | 34 ++++++++++++++--------------- 02-Calling-an-API/package.json | 2 +- 2 files changed, 18 insertions(+), 18 deletions(-) diff --git a/02-Calling-an-API/package-lock.json b/02-Calling-an-API/package-lock.json index 01dd949..857093b 100644 --- a/02-Calling-an-API/package-lock.json +++ b/02-Calling-an-API/package-lock.json @@ -221,9 +221,9 @@ "dev": true }, "async": { - "version": "1.5.2", - "resolved": "https://registry.npmjs.org/async/-/async-1.5.2.tgz", - "integrity": "sha1-7GphrlZIDAw8skHJVhjiCJL5Zyo=" + "version": "3.2.4", + "resolved": "https://registry.npmjs.org/async/-/async-3.2.4.tgz", + "integrity": "sha512-iAB+JbDEGXhyIUavoDl9WP/Jj106Kz9DEn1DPgYw5ruDn0e3Wgi3sKFm55sASdGBNOQB8F59d9qQ7deqrHA8wQ==" }, "async-each": { "version": "1.0.1", @@ -942,20 +942,20 @@ } }, "express-jwt": { - "version": "6.0.0", - "resolved": "https://registry.npmjs.org/express-jwt/-/express-jwt-6.0.0.tgz", - "integrity": "sha512-C26y9myRjx7CyhZ+BAT3p+gQyRCoDZ7qo8plCvLDaRT6je6ALIAQknT6XLVQGFKwIy/Ux7lvM2MNap5dt0T7gA==", + "version": "6.1.2", + "resolved": "https://registry.npmjs.org/express-jwt/-/express-jwt-6.1.2.tgz", + "integrity": "sha512-l5dlf5lNM/1EODMsJGfHn1VnrhhsUYEetzrKFStJZLjFQXtR+HGdBiW+jUNZ+ISsFe+h7Wl/hQKjLrY2TX0Qkg==", "requires": { - "async": "^1.5.0", - "express-unless": "^0.3.0", + "async": "^3.2.2", + "express-unless": "^1.0.0", "jsonwebtoken": "^8.1.0", - "lodash.set": "^4.0.0" + "lodash": "^4.17.21" } }, "express-unless": { - "version": "0.3.1", - "resolved": "https://registry.npmjs.org/express-unless/-/express-unless-0.3.1.tgz", - "integrity": "sha1-JVfBRudb65A+LSR/m1ugFFJpbiA=" + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/express-unless/-/express-unless-1.0.0.tgz", + "integrity": "sha512-zXSSClWBPfcSYjg0hcQNompkFN/MxQQ53eyrzm9BYgik2ut2I7PxAf2foVqBRMYCwWaZx/aWodi+uk76npdSAw==" }, "extend-shallow": { "version": "3.0.2", @@ -2338,6 +2338,11 @@ "strip-bom": "^3.0.0" } }, + "lodash": { + "version": "4.17.21", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", + "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" + }, "lodash.clonedeep": { "version": "4.5.0", "resolved": "https://registry.npmjs.org/lodash.clonedeep/-/lodash.clonedeep-4.5.0.tgz", @@ -2378,11 +2383,6 @@ "resolved": "https://registry.npmjs.org/lodash.once/-/lodash.once-4.1.1.tgz", "integrity": "sha1-DdOXEhPHxW34gJd9UEyI+0cal6w=" }, - "lodash.set": { - "version": "4.3.2", - "resolved": "https://registry.npmjs.org/lodash.set/-/lodash.set-4.3.2.tgz", - "integrity": "sha1-2HV7HagH3eJIFrDWqEvqGnYjCyM=" - }, "lowercase-keys": { "version": "1.0.1", "resolved": "https://registry.npmjs.org/lowercase-keys/-/lowercase-keys-1.0.1.tgz", diff --git a/02-Calling-an-API/package.json b/02-Calling-an-API/package.json index 8fa986c..3b07a15 100644 --- a/02-Calling-an-API/package.json +++ b/02-Calling-an-API/package.json @@ -5,7 +5,7 @@ "main": "server.js", "dependencies": { "express": "^4.17.1", - "express-jwt": "^6.0.0", + "express-jwt": "^6.1.2", "helmet": "^3.23.3", "jwks-rsa": "^1.12.2", "morgan": "^1.10.0"