From a76804fac86a6130d2f75ffd2c991361c3dc8ea0 Mon Sep 17 00:00:00 2001 From: "greenkeeper[bot]" Date: Thu, 1 Nov 2018 17:51:17 +0000 Subject: [PATCH 1/3] chore(package): update @types/node to version 10.12.2 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 9ee898b..712c10f 100644 --- a/package.json +++ b/package.json @@ -37,7 +37,7 @@ "@types/chai": "^4.1.4", "@types/chance": "^1.0.1", "@types/mocha": "^5.2.5", - "@types/node": "^10.9.4", + "@types/node": "^10.12.2", "@types/request": "^2.47.1", "@types/request-promise-native": "^1.0.15", "aws-sdk": "^2.334.0", From 560037b1b717386b5bb986042f249274551e6fb9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Gy=C3=B6rgy=20Bal=C3=A1ssy?= Date: Sun, 4 Nov 2018 05:02:17 +0100 Subject: [PATCH 2/3] FIXED: Updated the package-lock.json file to make it sync with package.json. Greenkeeper forgot to do that :( --- package-lock.json | 17 ++++++----------- 1 file changed, 6 insertions(+), 11 deletions(-) diff --git a/package-lock.json b/package-lock.json index e5ef092..d3f014b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -373,9 +373,9 @@ "dev": true }, "@types/node": { - "version": "10.9.4", - "resolved": "https://registry.npmjs.org/@types/node/-/node-10.9.4.tgz", - "integrity": "sha512-fCHV45gS+m3hH17zgkgADUSi2RR1Vht6wOZ0jyHP8rjiQra9f+mIcgwPQHllmDocYOstIEbKlxbFDYlgrTPYqw==", + "version": "10.12.2", + "resolved": "https://registry.npmjs.org/@types/node/-/node-10.12.2.tgz", + "integrity": "sha512-53ElVDSnZeFUUFIYzI8WLQ25IhWzb6vbddNp8UHlXQyU0ET2RhV5zg0NfubzU7iNMh5bBXb0htCzfvrSVNgzaQ==", "dev": true }, "@types/request": { @@ -1841,7 +1841,6 @@ "version": "0.1.4", "bundled": true, "dev": true, - "optional": true, "requires": { "kind-of": "^3.0.2", "longest": "^1.0.1", @@ -2166,8 +2165,7 @@ "is-buffer": { "version": "1.1.6", "bundled": true, - "dev": true, - "optional": true + "dev": true }, "is-builtin-module": { "version": "1.0.0", @@ -2251,7 +2249,6 @@ "version": "3.2.2", "bundled": true, "dev": true, - "optional": true, "requires": { "is-buffer": "^1.1.5" } @@ -2298,8 +2295,7 @@ "longest": { "version": "1.0.1", "bundled": true, - "dev": true, - "optional": true + "dev": true }, "lru-cache": { "version": "4.1.3", @@ -2565,8 +2561,7 @@ "repeat-string": { "version": "1.6.1", "bundled": true, - "dev": true, - "optional": true + "dev": true }, "require-directory": { "version": "2.1.1", From 2e56f829b68de2749eae823b316758ebb1ccab6f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Gy=C3=B6rgy=20Bal=C3=A1ssy?= Date: Sun, 4 Nov 2018 05:04:15 +0100 Subject: [PATCH 3/3] FIXED: High security vulnerability in cryptiles@3.1.2 (referenced by serverless-offline > hapi) fixed by using 3.1.3 using package-lock.json. --- package-lock.json | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index d3f014b..74647a0 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1193,9 +1193,9 @@ } }, "cryptiles": { - "version": "3.1.2", - "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.2.tgz", - "integrity": "sha1-qJ+7Ig9c4l7FboxKqKT9e1sNKf4=", + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.3.tgz", + "integrity": "sha512-8dAQYBGMc/c0oOfLED0/t7XJ3DOiGqxwBT9qsj4KrW7e3ICflVCUpXZj8GbjEW38eYueJfGWlMq6dEX6cnWoyg==", "dev": true, "requires": { "boom": "5.x.x" @@ -1363,9 +1363,9 @@ } }, "cryptiles": { - "version": "3.1.2", - "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.2.tgz", - "integrity": "sha1-qJ+7Ig9c4l7FboxKqKT9e1sNKf4=", + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.3.tgz", + "integrity": "sha512-8dAQYBGMc/c0oOfLED0/t7XJ3DOiGqxwBT9qsj4KrW7e3ICflVCUpXZj8GbjEW38eYueJfGWlMq6dEX6cnWoyg==", "dev": true, "requires": { "boom": "5.x.x" @@ -3360,9 +3360,9 @@ } }, "cryptiles": { - "version": "3.1.2", - "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.2.tgz", - "integrity": "sha1-qJ+7Ig9c4l7FboxKqKT9e1sNKf4=", + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/cryptiles/-/cryptiles-3.1.3.tgz", + "integrity": "sha512-8dAQYBGMc/c0oOfLED0/t7XJ3DOiGqxwBT9qsj4KrW7e3ICflVCUpXZj8GbjEW38eYueJfGWlMq6dEX6cnWoyg==", "dev": true, "requires": { "boom": "5.x.x"