From f18f497bf4d1595745834902a7c3d9855f755002 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Thu, 10 Sep 2020 23:17:36 +0000 Subject: [PATCH] [Security] Bump node-fetch from 2.6.0 to 2.6.1 Bumps [node-fetch](https://github.com/bitinn/node-fetch) from 2.6.0 to 2.6.1. **This update includes a security fix.** - [Release notes](https://github.com/bitinn/node-fetch/releases) - [Changelog](https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md) - [Commits](https://github.com/bitinn/node-fetch/compare/v2.6.0...v2.6.1) Signed-off-by: dependabot-preview[bot] --- package.json | 2 +- yarn.lock | 7 ++++--- 2 files changed, 5 insertions(+), 4 deletions(-) diff --git a/package.json b/package.json index 0aaeae3e..bc4e3e65 100644 --- a/package.json +++ b/package.json @@ -40,7 +40,7 @@ "microtime": "3.0.0", "module-alias": "2.2.2", "nanobounce": "1.0.1", - "node-fetch": "2.6.0", + "node-fetch": "2.6.1", "oleoo": "^1.0.8", "plex-api": "5.2.5", "plex-api-pinauth": "0.1.0", diff --git a/yarn.lock b/yarn.lock index 72c3277d..e2ee00f9 100644 --- a/yarn.lock +++ b/yarn.lock @@ -8913,9 +8913,10 @@ node-fetch@2.4.1: version "2.4.1" resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.4.1.tgz#b2e38f1117b8acbedbe0524f041fb3177188255d" -node-fetch@2.6.0, node-fetch@^2.0.0, node-fetch@^2.1.2: - version "2.6.0" - resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.6.0.tgz#e633456386d4aa55863f676a7ab0daa8fdecb0fd" +node-fetch@2.6.1, node-fetch@^2.0.0, node-fetch@^2.1.2: + version "2.6.1" + resolved "https://registry.yarnpkg.com/node-fetch/-/node-fetch-2.6.1.tgz#045bd323631f76ed2e2b55573394416b639a0052" + integrity sha512-V4aYg89jEoVRxRb2fJdAg8FHvI7cEyYdVAh94HH0UIK8oJxUfkjlDQN9RbMx+bEjP7+ggMiFRprSti032Oipxw== node-fetch@^1.0.1: version "1.7.3"