Skip to content

Commit 9863b2c

Browse files
samruddhikhandalesamruddhikhandale
committed
Universal & Javascript-node: Update 'ansi-regex' due to CVE-2021-3807 
1 parent 04e2500 commit 9863b2c

File tree

4 files changed

+17
-1
lines changed

4 files changed

+17
-1
lines changed

src/javascript-node/.devcontainer/library-scripts/add-patch.sh

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10,4 +10,7 @@ IMAGE_VARIANT=$1
1010
if [[ "${IMAGE_VARIANT}" =~ "14" ]] ; then
1111
cd /usr/local/lib/node_modules/npm
1212
npm update --save
13+
14+
cd /usr/local/lib/node_modules/npm/node_modules/string-width
15+
npm install ansi-regex --save
1316
fi

src/javascript-node/test-project/test.sh

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,10 @@ sudo rm -rf node_modules
2222
git_version=$(git --version)
2323
check-version-ge "git-requirement" "${git_version}" "git version 2.38.1"
2424

25+
cd /usr/local/lib/node_modules/npm/node_modules/string-width/
26+
27+
ansiVersion=$(npm ls --depth 1 --json | jq -r '.dependencies."ansi-regex".version')
28+
check-version-ge "ansi-regex" "${ansiVersion}" "6.0.1"
2529

2630
# Report result
2731
reportResults

src/universal/.devcontainer/local-features/setup-user/install.sh

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -58,6 +58,10 @@ NPM_PACKAGES_LIST="decode-uri-component
5858
cd /usr/local/share/nvm/versions/node/v14*/lib/node_modules/npm
5959
npm install ${NPM_PACKAGES_LIST}
6060

61+
# ansi-regex: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3807
62+
cd /usr/local/share/nvm/versions/node/v14*/lib/node_modules/npm/node_modules/string-width
63+
npm install ansi-regex --save
64+
6165
# Temporary: Due to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0536 & https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0155
6266
rm -rf /usr/local/nvs/deps/node_modules/follow-redirects/*
6367
curl -sSL https://github.com/follow-redirects/follow-redirects/archive/refs/tags/v1.15.2.tar.gz | tar -xzC /tmp 2>&1

src/universal/test-project/test.sh

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -184,14 +184,19 @@ decodeVersion=$(npm ls --depth 1 --json | jq -r '.dependencies."decode-uri-compo
184184
check-version-ge "decode-uri-component" "${decodeVersion}" "0.2.1"
185185

186186
ansiVersion=$(npm ls --depth 1 --json | jq -r '.dependencies."ansi-regex".version')
187-
check-version-ge "ansi-regex" "${ansiVersion}" "6.0.0"
187+
check-version-ge "ansi-regex" "${ansiVersion}" "6.0.1"
188188

189189
minimatchVersion=$(npm ls --depth 1 --json | jq -r '.dependencies.minimatch.version')
190190
check-version-ge "minimatch" "${minimatchVersion}" "3.0.5"
191191

192192
gotVersion=$(npm ls --depth 1 --json | jq -r '.dependencies.got.version')
193193
check-version-ge "got" "${gotVersion}" "12.1.0"
194194

195+
cd /usr/local/share/nvm/versions/node/v14*/lib/node_modules/npm/node_modules/string-width
196+
197+
ansiVersion=$(npm ls --depth 1 --json | jq -r '.dependencies."ansi-regex".version')
198+
check-version-ge "ansi-regex-2" "${ansiVersion}" "6.0.1"
199+
195200
ls -la /home/codespace
196201

197202
# Report result

0 commit comments

Comments
 (0)