From 9925ea5e72d017af827f1a323b431b19b0222a70 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Chris=20Suszy=C5=84ski?= <ksuszyns@redhat.com>
Date: Tue, 21 Sep 2021 16:58:31 +0200
Subject: [PATCH] Fix CVE-2021-3807

refs.:
 * https://github.com/chalk/ansi-regex/releases/tag/v5.0.1
 * https://github.com/chalk/ansi-regex/issues/38
---
 test/ui/package-lock.json | 80 ++++++++++++++++++++++++---------------
 test/ui/package.json      |  6 ++-
 2 files changed, 54 insertions(+), 32 deletions(-)

diff --git a/test/ui/package-lock.json b/test/ui/package-lock.json
index 048fdfc2b4..447b4e7287 100644
--- a/test/ui/package-lock.json
+++ b/test/ui/package-lock.json
@@ -396,10 +396,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "5.0.1",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
-          "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
-          "dev": true
+          "version": "^5.0.1"
         },
         "strip-ansi": {
           "version": "6.0.0",
@@ -407,7 +404,13 @@
           "integrity": "sha512-AuvKTrTfQNYNIctbR1K/YGTR1756GycPsg7b9bdV9Duqur4gv6aKqHXah67Z8ImS7WEz5QVcOtlfW2rZEugt6w==",
           "dev": true,
           "requires": {
-            "ansi-regex": "^5.0.0"
+            "ansi-regex": "^5.0.1"
+          },
+          "dependencies": {
+            "ansi-regex": {
+              "version": "^5.0.1",
+              "dev": true
+            }
           }
         }
       }
@@ -1205,10 +1208,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "5.0.1",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
-          "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
-          "dev": true
+          "version": "^5.0.1"
         },
         "slice-ansi": {
           "version": "4.0.0",
@@ -1238,7 +1238,13 @@
               "integrity": "sha512-AuvKTrTfQNYNIctbR1K/YGTR1756GycPsg7b9bdV9Duqur4gv6aKqHXah67Z8ImS7WEz5QVcOtlfW2rZEugt6w==",
               "dev": true,
               "requires": {
-                "ansi-regex": "^5.0.0"
+                "ansi-regex": "^5.0.1"
+              },
+              "dependencies": {
+                "ansi-regex": {
+                  "version": "^5.0.1",
+                  "dev": true
+                }
               }
             }
           }
@@ -1394,10 +1400,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "3.0.0",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-3.0.0.tgz",
-          "integrity": "sha1-7QMXwyIGT3lGbAKWa922Bas32Zg=",
-          "dev": true
+          "version": "^5.0.1"
         },
         "debug": {
           "version": "2.6.9",
@@ -1420,7 +1423,13 @@
           "integrity": "sha1-qEeQIusaw2iocTibY1JixQXuNo8=",
           "dev": true,
           "requires": {
-            "ansi-regex": "^3.0.0"
+            "ansi-regex": "^5.0.1"
+          },
+          "dependencies": {
+            "ansi-regex": {
+              "version": "^5.0.1",
+              "dev": true
+            }
           }
         }
       }
@@ -1749,10 +1758,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "5.0.1",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
-          "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
-          "dev": true
+          "version": "^5.0.1"
         },
         "strip-ansi": {
           "version": "6.0.0",
@@ -1760,7 +1766,13 @@
           "integrity": "sha512-AuvKTrTfQNYNIctbR1K/YGTR1756GycPsg7b9bdV9Duqur4gv6aKqHXah67Z8ImS7WEz5QVcOtlfW2rZEugt6w==",
           "dev": true,
           "requires": {
-            "ansi-regex": "^5.0.0"
+            "ansi-regex": "^5.0.1"
+          },
+          "dependencies": {
+            "ansi-regex": {
+              "version": "^5.0.1",
+              "dev": true
+            }
           }
         }
       }
@@ -1934,10 +1946,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "3.0.0",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-3.0.0.tgz",
-          "integrity": "sha1-7QMXwyIGT3lGbAKWa922Bas32Zg=",
-          "dev": true
+          "version": "^5.0.1"
         },
         "is-fullwidth-code-point": {
           "version": "2.0.0",
@@ -1961,7 +1970,13 @@
           "integrity": "sha1-qEeQIusaw2iocTibY1JixQXuNo8=",
           "dev": true,
           "requires": {
-            "ansi-regex": "^3.0.0"
+            "ansi-regex": "^5.0.1"
+          },
+          "dependencies": {
+            "ansi-regex": {
+              "version": "^5.0.1",
+              "dev": true
+            }
           }
         }
       }
@@ -1984,10 +1999,7 @@
       },
       "dependencies": {
         "ansi-regex": {
-          "version": "5.0.1",
-          "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
-          "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
-          "dev": true
+          "version": "^5.0.1"
         },
         "strip-ansi": {
           "version": "6.0.0",
@@ -1995,7 +2007,13 @@
           "integrity": "sha512-AuvKTrTfQNYNIctbR1K/YGTR1756GycPsg7b9bdV9Duqur4gv6aKqHXah67Z8ImS7WEz5QVcOtlfW2rZEugt6w==",
           "dev": true,
           "requires": {
-            "ansi-regex": "^5.0.0"
+            "ansi-regex": "^5.0.1"
+          },
+          "dependencies": {
+            "ansi-regex": {
+              "version": "^5.0.1",
+              "dev": true
+            }
           }
         }
       }
@@ -2074,4 +2092,4 @@
       "dev": true
     }
   }
-}
+}
\ No newline at end of file
diff --git a/test/ui/package.json b/test/ui/package.json
index 9b09f2ed69..634c1b555a 100644
--- a/test/ui/package.json
+++ b/test/ui/package.json
@@ -5,7 +5,8 @@
   "scripts": {
     "test": "cypress run",
     "dev": "cypress open",
-    "install": "cypress install && node cypress/apply-patches.js"
+    "install": "cypress install && node cypress/apply-patches.js",
+    "preinstall": "npx npm-force-resolutions"
   },
   "license": "Apache-2.0",
   "devDependencies": {
@@ -18,5 +19,8 @@
     "mocha": "^9.1.1",
     "mocha-junit-reporter": "^2.0.0",
     "semver": "^7.3.5"
+  },
+  "resolutions": {
+    "ansi-regex": "^5.0.1"
   }
 }