From ce07ff02b90d8c5764ef464ad7aee9bbc89d06cd Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 15 Feb 2021 23:46:04 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ADMZIP-1065796 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 0982a1725d..145b4c7b4b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -316,9 +316,9 @@ } }, "adm-zip": { - "version": "0.4.11", - "resolved": "https://registry.npmjs.org/adm-zip/-/adm-zip-0.4.11.tgz", - "integrity": "sha512-L8vcjDTCOIJk7wFvmlEUN7AsSb8T+2JrdP7KINBjzr24TJ5Mwj590sLu3BC7zNZowvJWa/JtPmD8eJCzdtDWjA==" + "version": "0.5.2", + "resolved": "https://registry.npmjs.org/adm-zip/-/adm-zip-0.5.2.tgz", + "integrity": "sha512-lUI3ZSNsfQXNYNzGjt68MdxzCs0eW29lgL74y/Y2h4nARgHmH3poFWuK3LonvFbNHFt4dTb2X/QQ4c1ZUWWsJw==" }, "after": { "version": "0.8.2", diff --git a/package.json b/package.json index 16c0e32328..4d16d896a6 100644 --- a/package.json +++ b/package.json @@ -74,7 +74,7 @@ "dependencies": { "@salesforce/refocus-collector": "^1.2.1", "@salesforce/refocus-logging-client": "^1.0.11", - "adm-zip": "0.4.11", + "adm-zip": "0.5.2", "autoprefixer": "^6.0.3", "babel-core": "^6.26.3", "babel-eslint": "^6.0.4",