Skip to content

Commit b7d6bdd

Browse files
Javascript-node & universal: Update 'got' due to CVE-2022-33987 (#272)
1 parent 755a459 commit b7d6bdd

File tree

3 files changed

+7
-1
lines changed

3 files changed

+7
-1
lines changed

src/javascript-node/.devcontainer/library-scripts/add-patch.sh

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,7 @@ IMAGE_VARIANT=$1
66
# Upgrade 'decode-uri-component' due to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38900
77
# Upgrade 'ansi-regex ' due to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3807
88
# Upgrade 'minimatch' due to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3517
9+
# Upgrade 'got' due to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33987
910
if [[ "${IMAGE_VARIANT}" =~ "14" ]] ; then
1011
cd /usr/local/lib/node_modules/npm
1112
npm update --save

src/universal/.devcontainer/local-features/setup-user/install.sh

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -42,9 +42,11 @@ rm -rf /tmp/jsoup-jsoup-1.15.3
4242
# decode-uri-component: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38900
4343
# ansi-regex: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3807
4444
# minimatch: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3517
45+
# got: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33987
4546
NPM_PACKAGES_LIST="decode-uri-component
4647
ansi-regex
47-
minimatch"
48+
minimatch
49+
got"
4850

4951
cd /usr/local/share/nvm/versions/node/v14*/lib/node_modules/npm
5052
npm install ${NPM_PACKAGES_LIST}

src/universal/test-project/test.sh

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -186,6 +186,9 @@ check-version-ge "ansi-regex" "${ansiVersion}" "6.0.0"
186186
minimatchVersion=$(npm ls --depth 1 --json | jq -r '.dependencies.minimatch.version')
187187
check-version-ge "minimatch" "${minimatchVersion}" "3.0.5"
188188

189+
gotVersion=$(npm ls --depth 1 --json | jq -r '.dependencies.got.version')
190+
check-version-ge "got" "${gotVersion}" "12.1.0"
191+
189192
ls -la /home/codespace
190193

191194
# Report result

0 commit comments

Comments
 (0)