From 1b5bc855a78f636815b3df18cf6f0c70bbbc3b68 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 5 Apr 2022 17:39:37 +0000 Subject: [PATCH] fix: exchange/package.json & exchange/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOMENT-2440688 --- exchange/package-lock.json | 8 ++++---- exchange/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/exchange/package-lock.json b/exchange/package-lock.json index 24ba4f240..a99a7e610 100644 --- a/exchange/package-lock.json +++ b/exchange/package-lock.json @@ -689,7 +689,7 @@ "integrity": "sha512-o4ZxU9O+e2RxwBnkgz0yjrSw6R4yFwnTRVJ6dYb2xlilSI226DjjI2b0frPqNOYo3s6seW/gQlenSBBYPyqdAg==", "requires": { "bfx-api-node-models": "git+http://github.com/bitfinexcom/bfx-api-node-models.git#semver:^1.0.12", - "bfx-api-node-util": "git+http://github.com/bitfinexcom/bfx-api-node-util.git#semver:^1.0.2", + "bfx-api-node-util": "bfx-api-node-util@git+http://github.com/bitfinexcom/bfx-api-node-util.git#13534ac35863e90f005281ee12fb8ad41fe2a634", "bluebird": "^3.5.5", "copy": "^0.3.2", "debug": "^4.1.1", @@ -1687,9 +1687,9 @@ } }, "moment": { - "version": "2.22.2", - "resolved": "https://registry.npmjs.org/moment/-/moment-2.22.2.tgz", - "integrity": "sha1-PCV/mDn8DpP/UxSWMiOeuQeD/2Y=" + "version": "2.29.2", + "resolved": "https://registry.npmjs.org/moment/-/moment-2.29.2.tgz", + "integrity": "sha512-UgzG4rvxYpN15jgCmVJwac49h9ly9NurikMWGPdVxm8GZD6XjkKPxDTjQQ43gtGgnV3X0cAyWDdP2Wexoquifg==" }, "ms": { "version": "2.0.0", diff --git a/exchange/package.json b/exchange/package.json index 596c02137..9940992c2 100644 --- a/exchange/package.json +++ b/exchange/package.json @@ -32,7 +32,7 @@ "gekko-broker-poloniex": "^0.0.12", "kraken-api": "askmike/npm-kraken-api#a69dfb3eb296b9c795cfa48dd31edcdc1b3d5398", "lodash": "^4.17.15", - "moment": "^2.22.1", + "moment": "^2.29.2", "request-promise": "^4.2.5", "retry": "^0.12.0", "therocktrading": "^0.9.0"