From 9ddf6af0c50ac55031e415305f8e7895a2b901e5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 27 Jun 2023 16:28:50 +0000 Subject: [PATCH 01/16] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 --- package-lock.json | 131 +++++++++++++++++++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 113 insertions(+), 20 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..e103d3a 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1687883326104-0.8520153028055946uwdeKh", "lockfileVersion": 3, "requires": true, "packages": { @@ -43,7 +43,7 @@ "@vue/babel-helper-vue-jsx-merge-props": "^1.4.0", "@vue/compiler-sfc": "^3.2.40", "autoprefixer": "^10.4.7", - "babel-loader": "^8.2.5", + "babel-loader": "^9.0.0", "css-loader": "^6.7.3", "file-loader": "^6.2.0", "patch-package": "^6.5.1", @@ -1354,6 +1354,51 @@ "url": "https://github.com/sponsors/epoberezkin" } }, + "node_modules/ajv-formats": { + "version": "2.1.1", + "resolved": "https://registry.npmjs.org/ajv-formats/-/ajv-formats-2.1.1.tgz", + "integrity": "sha512-Wx0Kx52hxE7C18hkMEggYlEifqWZtYaRgouJor+WMdPnQyEK13vgEWyVNup7SoeeoLMsr4kf5h6dOW11I15MUA==", + "dev": true, + "dependencies": { + "ajv": "^8.0.0" + }, + "peerDependencies": { + "ajv": "^8.0.0" + }, + "peerDependenciesMeta": { + "ajv": { + "optional": true + } + } + }, + "node_modules/ajv-formats/node_modules/ajv": { + "version": "8.12.0", + "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.12.0.tgz", + "integrity": "sha512-sRu1kpcO9yLtYxBKvqfTeh9KzZEwO3STyX1HT+4CaDzC6HpTGYhIhPIzj9XuKU7KYDwnaeh5hcOwjy1QuJzBPA==", + "dev": true, + "dependencies": { + "fast-deep-equal": "^3.1.1", + "json-schema-traverse": "^1.0.0", + "require-from-string": "^2.0.2", + "uri-js": "^4.2.2" + }, + "funding": { + "type": "github", + "url": "https://github.com/sponsors/epoberezkin" + } + }, + "node_modules/ajv-formats/node_modules/fast-deep-equal": { + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz", + "integrity": "sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==", + "dev": true + }, + "node_modules/ajv-formats/node_modules/json-schema-traverse": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/json-schema-traverse/-/json-schema-traverse-1.0.0.tgz", + "integrity": "sha512-NM8/P9n3XjXhIZn1lLhkFaACTOURQXjWhV4BA/RnOv8xvgqtqpAX9IO4mRQxSx1Rlo4tqzeqb0sOlruaOy3dug==", + "dev": true + }, "node_modules/ajv-keywords": { "version": "3.5.2", "resolved": "https://registry.npmjs.org/ajv-keywords/-/ajv-keywords-3.5.2.tgz", @@ -1472,22 +1517,20 @@ } }, "node_modules/babel-loader": { - "version": "8.3.0", - "resolved": "https://registry.npmjs.org/babel-loader/-/babel-loader-8.3.0.tgz", - "integrity": "sha512-H8SvsMF+m9t15HNLMipppzkC+Y2Yq+v3SonZyU70RBL/h1gxPkH08Ot8pEE9Z4Kd+czyWJClmFS8qzIP9OZ04Q==", + "version": "9.0.0", + "resolved": "https://registry.npmjs.org/babel-loader/-/babel-loader-9.0.0.tgz", + "integrity": "sha512-qVGQb0PNw/B1sGhPf0/KKsHZAPfa2Bk+JbjkW7yGjAHZyvjAULXYq0et0+/+7DL/rGYU+y8UoGPzA32NP29pVQ==", "dev": true, "dependencies": { - "find-cache-dir": "^3.3.1", - "loader-utils": "^2.0.0", - "make-dir": "^3.1.0", - "schema-utils": "^2.6.5" + "find-cache-dir": "^3.3.2", + "schema-utils": "^4.0.0" }, "engines": { - "node": ">= 8.9" + "node": ">= 14.15.0" }, "peerDependencies": { - "@babel/core": "^7.0.0", - "webpack": ">=2" + "@babel/core": "^7.12.0", + "webpack": ">=5" } }, "node_modules/balanced-match": { @@ -4083,6 +4126,15 @@ "resolved": "https://registry.npmjs.org/regex-parser/-/regex-parser-2.2.11.tgz", "integrity": "sha512-jbD/FT0+9MBU2XAZluI7w2OBs1RBi6p9M83nkoZayQXXU9e8Robt69FcZc7wU4eJD/YFTjn1JdCk3rbMJajz8Q==" }, + "node_modules/require-from-string": { + "version": "2.0.2", + "resolved": "https://registry.npmjs.org/require-from-string/-/require-from-string-2.0.2.tgz", + "integrity": "sha512-Xf0nWe6RseziFMu+Ap9biiUbmplq6S9/p+7w7YXP/JBHhrUDDUhwa+vANyubuqfZWTveU//DYVGsDG7RKL/vEw==", + "dev": true, + "engines": { + "node": ">=0.10.0" + } + }, "node_modules/resolve": { "version": "1.22.2", "resolved": "https://registry.npmjs.org/resolve/-/resolve-1.22.2.tgz", @@ -4338,23 +4390,64 @@ "integrity": "sha512-8I2a3LovHTOpm7NV5yOyO8IHqgVsfK4+UuySrXU8YXkSRX7k6hCV9b3HrkKCr3nMpgj+0bmocaJJWpvp1oc7ZA==" }, "node_modules/schema-utils": { - "version": "2.7.1", - "resolved": "https://registry.npmjs.org/schema-utils/-/schema-utils-2.7.1.tgz", - "integrity": "sha512-SHiNtMOUGWBQJwzISiVYKu82GiV4QYGePp3odlY1tuKO7gPtphAT5R/py0fA6xtbgLL/RvtJZnU9b8s0F1q0Xg==", + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/schema-utils/-/schema-utils-4.2.0.tgz", + "integrity": "sha512-L0jRsrPpjdckP3oPug3/VxNKt2trR8TcabrM6FOAAlvC/9Phcmm+cuAgTlxBqdBR1WJx7Naj9WHw+aOmheSVbw==", "dev": true, "dependencies": { - "@types/json-schema": "^7.0.5", - "ajv": "^6.12.4", - "ajv-keywords": "^3.5.2" + "@types/json-schema": "^7.0.9", + "ajv": "^8.9.0", + "ajv-formats": "^2.1.1", + "ajv-keywords": "^5.1.0" }, "engines": { - "node": ">= 8.9.0" + "node": ">= 12.13.0" }, "funding": { "type": "opencollective", "url": "https://opencollective.com/webpack" } }, + "node_modules/schema-utils/node_modules/ajv": { + "version": "8.12.0", + "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.12.0.tgz", + "integrity": "sha512-sRu1kpcO9yLtYxBKvqfTeh9KzZEwO3STyX1HT+4CaDzC6HpTGYhIhPIzj9XuKU7KYDwnaeh5hcOwjy1QuJzBPA==", + "dev": true, + "dependencies": { + "fast-deep-equal": "^3.1.1", + "json-schema-traverse": "^1.0.0", + "require-from-string": "^2.0.2", + "uri-js": "^4.2.2" + }, + "funding": { + "type": "github", + "url": "https://github.com/sponsors/epoberezkin" + } + }, + "node_modules/schema-utils/node_modules/ajv-keywords": { + "version": "5.1.0", + "resolved": "https://registry.npmjs.org/ajv-keywords/-/ajv-keywords-5.1.0.tgz", + "integrity": "sha512-YCS/JNFAUyr5vAuhk1DWm1CBxRHW9LbJ2ozWeemrIqpbsqKjHVxYPyi5GC0rjZIT5JxJ3virVTS8wk4i/Z+krw==", + "dev": true, + "dependencies": { + "fast-deep-equal": "^3.1.3" + }, + "peerDependencies": { + "ajv": "^8.8.2" + } + }, + "node_modules/schema-utils/node_modules/fast-deep-equal": { + "version": "3.1.3", + "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz", + "integrity": "sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==", + "dev": true + }, + "node_modules/schema-utils/node_modules/json-schema-traverse": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/json-schema-traverse/-/json-schema-traverse-1.0.0.tgz", + "integrity": "sha512-NM8/P9n3XjXhIZn1lLhkFaACTOURQXjWhV4BA/RnOv8xvgqtqpAX9IO4mRQxSx1Rlo4tqzeqb0sOlruaOy3dug==", + "dev": true + }, "node_modules/semver": { "version": "6.3.0", "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.0.tgz", diff --git a/package.json b/package.json index be4ad13..1aef0c4 100644 --- a/package.json +++ b/package.json @@ -44,7 +44,7 @@ "@vue/babel-helper-vue-jsx-merge-props": "^1.4.0", "@vue/compiler-sfc": "^3.2.40", "autoprefixer": "^10.4.7", - "babel-loader": "^8.2.5", + "babel-loader": "^9.0.0", "css-loader": "^6.7.3", "file-loader": "^6.2.0", "patch-package": "^6.5.1", From 7b0e496381031ee26a195204d93c3b47feb0766b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:52:50 +0000 Subject: [PATCH 02/16] fix: upgrade vue-tsc from 1.6.5 to 1.7.8 Snyk has created this PR to upgrade vue-tsc from 1.6.5 to 1.7.8. See this package in npm: https://www.npmjs.com/package/vue-tsc See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 159 +++++++++++++++++++++++----------------------- package.json | 2 +- 2 files changed, 81 insertions(+), 80 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..75b82e0 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1687981952152-0.859911486794715399bJVg", "lockfileVersion": 3, "requires": true, "packages": { @@ -54,7 +54,7 @@ "typescript": "^4.9.4", "vite": "^3.2.5", "vite-svg-loader": "^3.6.0", - "vue-tsc": "^1.0.16", + "vue-tsc": "^1.7.8", "webpack-cli": "^4.10.0" } }, @@ -752,87 +752,30 @@ } }, "node_modules/@volar/language-core": { - "version": "1.4.1", - "resolved": "https://registry.npmjs.org/@volar/language-core/-/language-core-1.4.1.tgz", - "integrity": "sha512-EIY+Swv+TjsWpxOxujjMf1ZXqOjg9MT2VMXZ+1dKva0wD8W0L6EtptFFcCJdBbcKmGMFkr57Qzz9VNMWhs3jXQ==", + "version": "1.6.9", + "resolved": "https://registry.npmjs.org/@volar/language-core/-/language-core-1.6.9.tgz", + "integrity": "sha512-7v8zsq3VMUBF5fI6FfjZ9pEkOuTiWD+AjxHVI3UXXXPoDeV9RcK3oPUfyQCV4Aj9Dqx4DPPI9Pcphyo6gZ8SAw==", "dev": true, "dependencies": { - "@volar/source-map": "1.4.1" + "@volar/source-map": "1.6.9" } }, "node_modules/@volar/source-map": { - "version": "1.4.1", - "resolved": "https://registry.npmjs.org/@volar/source-map/-/source-map-1.4.1.tgz", - "integrity": "sha512-bZ46ad72dsbzuOWPUtJjBXkzSQzzSejuR3CT81+GvTEI2E994D8JPXzM3tl98zyCNnjgs4OkRyliImL1dvJ5BA==", + "version": "1.6.9", + "resolved": "https://registry.npmjs.org/@volar/source-map/-/source-map-1.6.9.tgz", + "integrity": "sha512-D+IgnJGxO2Q1tL5qh3vU7iaLHtfGXptpdUDLMwmx292Fz0aVIXlC85mHHawGjBWeg/JhRGtEl4BvfTdn+4Ng/w==", "dev": true, "dependencies": { - "muggle-string": "^0.2.2" + "muggle-string": "^0.3.1" } }, "node_modules/@volar/typescript": { - "version": "1.4.1-patch.2", - "resolved": "https://registry.npmjs.org/@volar/typescript/-/typescript-1.4.1-patch.2.tgz", - "integrity": "sha512-lPFYaGt8OdMEzNGJJChF40uYqMO4Z/7Q9fHPQC/NRVtht43KotSXLrkPandVVMf9aPbiJ059eAT+fwHGX16k4w==", - "dev": true, - "dependencies": { - "@volar/language-core": "1.4.1" - }, - "peerDependencies": { - "typescript": "*" - } - }, - "node_modules/@volar/vue-language-core": { - "version": "1.6.5", - "resolved": "https://registry.npmjs.org/@volar/vue-language-core/-/vue-language-core-1.6.5.tgz", - "integrity": "sha512-IF2b6hW4QAxfsLd5mePmLgtkXzNi+YnH6ltCd80gb7+cbdpFMjM1I+w+nSg2kfBTyfu+W8useCZvW89kPTBpzg==", - "dev": true, - "dependencies": { - "@volar/language-core": "1.4.1", - "@volar/source-map": "1.4.1", - "@vue/compiler-dom": "^3.3.0", - "@vue/compiler-sfc": "^3.3.0", - "@vue/reactivity": "^3.3.0", - "@vue/shared": "^3.3.0", - "minimatch": "^9.0.0", - "muggle-string": "^0.2.2", - "vue-template-compiler": "^2.7.14" - } - }, - "node_modules/@volar/vue-language-core/node_modules/brace-expansion": { - "version": "2.0.1", - "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz", - "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==", - "dev": true, - "dependencies": { - "balanced-match": "^1.0.0" - } - }, - "node_modules/@volar/vue-language-core/node_modules/minimatch": { - "version": "9.0.1", - "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.1.tgz", - "integrity": "sha512-0jWhJpD/MdhPXwPuiRkCbfYfSKp2qnn2eOc279qI7f+osl/l+prKSrvhg157zSYvx/1nmgn2NqdT6k2Z7zSH9w==", - "dev": true, - "dependencies": { - "brace-expansion": "^2.0.1" - }, - "engines": { - "node": ">=16 || 14 >=14.17" - }, - "funding": { - "url": "https://github.com/sponsors/isaacs" - } - }, - "node_modules/@volar/vue-typescript": { - "version": "1.6.5", - "resolved": "https://registry.npmjs.org/@volar/vue-typescript/-/vue-typescript-1.6.5.tgz", - "integrity": "sha512-er9rVClS4PHztMUmtPMDTl+7c7JyrxweKSAEe/o/Noeq2bQx6v3/jZHVHBe8ZNUti5ubJL/+Tg8L3bzmlalV8A==", + "version": "1.6.9", + "resolved": "https://registry.npmjs.org/@volar/typescript/-/typescript-1.6.9.tgz", + "integrity": "sha512-L3WivzKVK5h/esfYdvnMXiE0wcH+wNalgFrpknuYgGraXNw+wGDaizEdVzKxyQYjez4bz/Z+X19YT2vTUGNV7Q==", "dev": true, "dependencies": { - "@volar/typescript": "1.4.1-patch.2", - "@volar/vue-language-core": "1.6.5" - }, - "peerDependencies": { - "typescript": "*" + "@volar/language-core": "1.6.9" } }, "node_modules/@vue/apollo-components": { @@ -972,6 +915,54 @@ "resolved": "https://registry.npmjs.org/@vue/devtools-api/-/devtools-api-6.5.0.tgz", "integrity": "sha512-o9KfBeaBmCKl10usN4crU53fYtC1r7jJwdGKjPT24t348rHxgfpZ0xL3Xm/gLUYnc0oTp8LAmrxOeLyu6tbk2Q==" }, + "node_modules/@vue/language-core": { + "version": "1.7.8", + "resolved": "https://registry.npmjs.org/@vue/language-core/-/language-core-1.7.8.tgz", + "integrity": "sha512-LcT6bEJDkcEMWpKtYm84HPTvUW9RonXw9lGTeaYOxx1g8MXyoRUf5pjGTsZR6Jm68uTWYw9yhYuSN+STXHRFAw==", + "dev": true, + "dependencies": { + "@volar/language-core": "1.6.9", + "@volar/source-map": "1.6.9", + "@vue/compiler-dom": "^3.3.0", + "@vue/reactivity": "^3.3.0", + "@vue/shared": "^3.3.0", + "minimatch": "^9.0.0", + "muggle-string": "^0.3.1", + "vue-template-compiler": "^2.7.14" + }, + "peerDependencies": { + "typescript": "*" + }, + "peerDependenciesMeta": { + "typescript": { + "optional": true + } + } + }, + "node_modules/@vue/language-core/node_modules/brace-expansion": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz", + "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==", + "dev": true, + "dependencies": { + "balanced-match": "^1.0.0" + } + }, + "node_modules/@vue/language-core/node_modules/minimatch": { + "version": "9.0.2", + "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.2.tgz", + "integrity": "sha512-PZOT9g5v2ojiTL7r1xF6plNHLtOeTpSlDI007As2NlA2aYBMfVom17yqa6QzhmDP8QOhn7LjHTg7DFCVSSa6yg==", + "dev": true, + "dependencies": { + "brace-expansion": "^2.0.1" + }, + "engines": { + "node": ">=16 || 14 >=14.17" + }, + "funding": { + "url": "https://github.com/sponsors/isaacs" + } + }, "node_modules/@vue/reactivity": { "version": "3.3.4", "resolved": "https://registry.npmjs.org/@vue/reactivity/-/reactivity-3.3.4.tgz", @@ -1039,6 +1030,16 @@ "resolved": "https://registry.npmjs.org/@vue/shared/-/shared-3.3.4.tgz", "integrity": "sha512-7OjdcV8vQ74eiz1TZLzZP4JwqM5fA94K6yntPS5Z25r9HDuGNzaGdgvwKYq6S+MxwF0TFRwe50fIR/MYnakdkQ==" }, + "node_modules/@vue/typescript": { + "version": "1.7.8", + "resolved": "https://registry.npmjs.org/@vue/typescript/-/typescript-1.7.8.tgz", + "integrity": "sha512-VfcRdJB4bh95JXIj7hkhGyvXRC+0+IsQt+85gR9N59piq3jFR2LibfNhezAVIa4B8Wq8Cpr+sflZPTXV4tFjsg==", + "dev": true, + "dependencies": { + "@volar/typescript": "1.6.9", + "@vue/language-core": "1.7.8" + } + }, "node_modules/@wasm-audio-decoders/common": { "version": "9.0.0", "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/common/-/common-9.0.0.tgz", @@ -3485,9 +3486,9 @@ } }, "node_modules/muggle-string": { - "version": "0.2.2", - "resolved": "https://registry.npmjs.org/muggle-string/-/muggle-string-0.2.2.tgz", - "integrity": "sha512-YVE1mIJ4VpUMqZObFndk9CJu6DBJR/GB13p3tXuNbwD4XExaI5EOuRl6BHeIDxIqXZVxSfAC+y6U1Z/IxCfKUg==", + "version": "0.3.1", + "resolved": "https://registry.npmjs.org/muggle-string/-/muggle-string-0.3.1.tgz", + "integrity": "sha512-ckmWDJjphvd/FvZawgygcUeQCxzvohjFO5RxTjj4eq8kw359gFF3E1brjfI+viLMxss5JrHTDRHZvu2/tuy0Qg==", "dev": true }, "node_modules/nanoid": { @@ -5020,13 +5021,13 @@ } }, "node_modules/vue-tsc": { - "version": "1.6.5", - "resolved": "https://registry.npmjs.org/vue-tsc/-/vue-tsc-1.6.5.tgz", - "integrity": "sha512-Wtw3J7CC+JM2OR56huRd5iKlvFWpvDiU+fO1+rqyu4V2nMTotShz4zbOZpW5g9fUOcjnyZYfBo5q5q+D/q27JA==", + "version": "1.7.8", + "resolved": "https://registry.npmjs.org/vue-tsc/-/vue-tsc-1.7.8.tgz", + "integrity": "sha512-NBc1m06Af+wmIZ9/imKAuGV7eKx52UTYZ7K6+XUfGNqUE1ayXSKspPgeA5AM1KDERJb8HtKzZ1QX6xu6rcd96w==", "dev": true, "dependencies": { - "@volar/vue-language-core": "1.6.5", - "@volar/vue-typescript": "1.6.5", + "@vue/language-core": "1.7.8", + "@vue/typescript": "1.7.8", "semver": "^7.3.8" }, "bin": { diff --git a/package.json b/package.json index be4ad13..b1d62d8 100644 --- a/package.json +++ b/package.json @@ -55,7 +55,7 @@ "typescript": "^4.9.4", "vite": "^3.2.5", "vite-svg-loader": "^3.6.0", - "vue-tsc": "^1.0.16", + "vue-tsc": "^1.7.8", "webpack-cli": "^4.10.0" } } From bbfd0bd4bcf0a088c6257682a185121341ae22ed Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:52:55 +0000 Subject: [PATCH 03/16] fix: upgrade bootstrap from 5.2.3 to 5.3.0 Snyk has created this PR to upgrade bootstrap from 5.2.3 to 5.3.0. See this package in npm: https://www.npmjs.com/package/bootstrap See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 12 ++++++------ package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..8318713 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1687981956125-0.586276098097849ei4Tbg", "lockfileVersion": 3, "requires": true, "packages": { @@ -14,7 +14,7 @@ "@vue/apollo-composable": "^4.0.0-beta.1", "apollo-upload-client": "^17.0.0", "axios": "^0.27.2", - "bootstrap": "^5.2.3", + "bootstrap": "^5.3.0", "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3", "dashjs": "^4.5.2", @@ -1556,9 +1556,9 @@ "dev": true }, "node_modules/bootstrap": { - "version": "5.2.3", - "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-5.2.3.tgz", - "integrity": "sha512-cEKPM+fwb3cT8NzQZYEu4HilJ3anCrWqh3CHAok1p9jXqMPsPTBhU25fBckEJHJ/p+tTxTFTsFQGM+gaHpi3QQ==", + "version": "5.3.0", + "resolved": "https://registry.npmjs.org/bootstrap/-/bootstrap-5.3.0.tgz", + "integrity": "sha512-UnBV3E3v4STVNQdms6jSGO2CvOkjUMdDAVR2V5N4uCMdaIkaQjbcEAMqRimDHIs4uqBYzDAKCQwCB+97tJgHQw==", "funding": [ { "type": "github", @@ -1570,7 +1570,7 @@ } ], "peerDependencies": { - "@popperjs/core": "^2.11.6" + "@popperjs/core": "^2.11.7" } }, "node_modules/bootstrap-icons-vue": { diff --git a/package.json b/package.json index be4ad13..7e865ce 100644 --- a/package.json +++ b/package.json @@ -15,7 +15,7 @@ "@vue/apollo-composable": "^4.0.0-beta.1", "apollo-upload-client": "^17.0.0", "axios": "^0.27.2", - "bootstrap": "^5.2.3", + "bootstrap": "^5.3.0", "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3", "dashjs": "^4.5.2", From c70e4bff190b6c8ba26586ec19288eacddb2f5e5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:52:59 +0000 Subject: [PATCH 04/16] fix: upgrade vue-loader from 17.1.2 to 17.2.2 Snyk has created this PR to upgrade vue-loader from 17.1.2 to 17.2.2. See this package in npm: https://www.npmjs.com/package/vue-loader See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 10 +++++----- package.json | 2 +- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..0a48ffc 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1687981959626-0.7978767922588881kJaJri", "lockfileVersion": 3, "requires": true, "packages": { @@ -32,7 +32,7 @@ "stream-browserify": "^3.0.0", "timingsrc": "^1.2.13", "vue": "^3.2.40", - "vue-loader": "^17.0.0", + "vue-loader": "^17.2.2", "vue-router": "^4.0.15", "vue-slider-component": "^4.1.0-beta.7" }, @@ -4906,9 +4906,9 @@ } }, "node_modules/vue-loader": { - "version": "17.1.2", - "resolved": "https://registry.npmjs.org/vue-loader/-/vue-loader-17.1.2.tgz", - "integrity": "sha512-AxCiJ2aPPwJC5CWtsQH3d5WSw67v55oLFHBmzrc5kjSr6i1dn5uoj5QsuokApirvWBCegRmfnE/MYFyhKMUwxw==", + "version": "17.2.2", + "resolved": "https://registry.npmjs.org/vue-loader/-/vue-loader-17.2.2.tgz", + "integrity": "sha512-aqNvKJvnz2A/6VWeJZodAo8XLoAlVwBv+2Z6dama+LHsAF+P/xijQ+OfWrxIs0wcGSJduvdzvTuATzXbNKkpiw==", "dependencies": { "chalk": "^4.1.0", "hash-sum": "^2.0.0", diff --git a/package.json b/package.json index be4ad13..350b8b5 100644 --- a/package.json +++ b/package.json @@ -33,7 +33,7 @@ "stream-browserify": "^3.0.0", "timingsrc": "^1.2.13", "vue": "^3.2.40", - "vue-loader": "^17.0.0", + "vue-loader": "^17.2.2", "vue-router": "^4.0.15", "vue-slider-component": "^4.1.0-beta.7" }, From eb6822b65ada7dd9a1bfe157314d4790454814bf Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:53:04 +0000 Subject: [PATCH 05/16] fix: upgrade @apollo/client from 3.7.14 to 3.7.15 Snyk has created this PR to upgrade @apollo/client from 3.7.14 to 3.7.15. See this package in npm: https://www.npmjs.com/package/@apollo/client See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 23 +++++++++++++++++------ package.json | 2 +- 2 files changed, 18 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..238ff19 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { - "name": "frontend", + "name": "npm-proj-1687981962177-0.3157945684308927Fgv1Oh", "lockfileVersion": 3, "requires": true, "packages": { "": { "hasInstallScript": true, "dependencies": { - "@apollo/client": "^3.7.11", + "@apollo/client": "^3.7.15", "@babel/plugin-proposal-class-properties": "^7.17.12", "@popperjs/core": "^2.11.6", "@thekonz/apollo-lighthouse-subscription-link": "2.0.0-rc.1", @@ -71,14 +71,14 @@ } }, "node_modules/@apollo/client": { - "version": "3.7.14", - "resolved": "https://registry.npmjs.org/@apollo/client/-/client-3.7.14.tgz", - "integrity": "sha512-BRvdkwq5PAXBkjXjboO12uksDm3nrZEqDi4xF97Fk3Mnaa0zDOEfJa7hoKTY9b9KA1EkeWv9BL3i7hSd4SfGBg==", + "version": "3.7.15", + "resolved": "https://registry.npmjs.org/@apollo/client/-/client-3.7.15.tgz", + "integrity": "sha512-pLScjo4GAQRWKWyEg2J3FlQr9fbUAuADT0EI2+JlLf2BjaU9I7WUaZVD9w+0qNPE8BZqs53MRQq0OCm1QCW+eg==", "dependencies": { "@graphql-typed-document-node/core": "^3.1.1", "@wry/context": "^0.7.0", "@wry/equality": "^0.5.0", - "@wry/trie": "^0.3.0", + "@wry/trie": "^0.4.0", "graphql-tag": "^2.12.6", "hoist-non-react-statics": "^3.3.2", "optimism": "^0.16.2", @@ -111,6 +111,17 @@ } } }, + "node_modules/@apollo/client/node_modules/@wry/trie": { + "version": "0.4.3", + "resolved": "https://registry.npmjs.org/@wry/trie/-/trie-0.4.3.tgz", + "integrity": "sha512-I6bHwH0fSf6RqQcnnXLJKhkSXG45MFral3GxPaY4uAl0LYDZM+YDVDAiU9bYwjTuysy1S0IeecWtmq1SZA3M1w==", + "dependencies": { + "tslib": "^2.3.0" + }, + "engines": { + "node": ">=8" + } + }, "node_modules/@babel/code-frame": { "version": "7.21.4", "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.21.4.tgz", diff --git a/package.json b/package.json index be4ad13..df5f7f4 100644 --- a/package.json +++ b/package.json @@ -7,7 +7,7 @@ "preview": "vite preview" }, "dependencies": { - "@apollo/client": "^3.7.11", + "@apollo/client": "^3.7.15", "@babel/plugin-proposal-class-properties": "^7.17.12", "@popperjs/core": "^2.11.6", "@thekonz/apollo-lighthouse-subscription-link": "2.0.0-rc.1", From f96e6e3594afa8329b81e8c5ca74348c058fd892 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jun 2023 19:53:08 +0000 Subject: [PATCH 06/16] fix: upgrade socket.io-client from 4.6.1 to 4.6.2 Snyk has created this PR to upgrade socket.io-client from 4.6.1 to 4.6.2. See this package in npm: https://www.npmjs.com/package/socket.io-client See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 18 +++++++++--------- package.json | 2 +- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..e89b89d 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1687981965142-0.43823313809564546z9HXAg", "lockfileVersion": 3, "requires": true, "packages": { @@ -28,7 +28,7 @@ "perfect-scrollbar": "^1.5.5", "pusher-js": "^7.6.0", "resolve-url-loader": "^5.0.0", - "socket.io-client": "^4.5.4", + "socket.io-client": "^4.6.2", "stream-browserify": "^3.0.0", "timingsrc": "^1.2.13", "vue": "^3.2.40", @@ -4422,23 +4422,23 @@ } }, "node_modules/socket.io-client": { - "version": "4.6.1", - "resolved": "https://registry.npmjs.org/socket.io-client/-/socket.io-client-4.6.1.tgz", - "integrity": "sha512-5UswCV6hpaRsNg5kkEHVcbBIXEYoVbMQaHJBXJCyEQ+CiFPV1NIOY0XOFWG4XR4GZcB8Kn6AsRs/9cy9TbqVMQ==", + "version": "4.6.2", + "resolved": "https://registry.npmjs.org/socket.io-client/-/socket.io-client-4.6.2.tgz", + "integrity": "sha512-OwWrMbbA8wSqhBAR0yoPK6EdQLERQAYjXb3A0zLpgxfM1ZGLKoxHx8gVmCHA6pcclRX5oA/zvQf7bghAS11jRA==", "dependencies": { "@socket.io/component-emitter": "~3.1.0", "debug": "~4.3.2", "engine.io-client": "~6.4.0", - "socket.io-parser": "~4.2.1" + "socket.io-parser": "~4.2.4" }, "engines": { "node": ">=10.0.0" } }, "node_modules/socket.io-parser": { - "version": "4.2.3", - "resolved": "https://registry.npmjs.org/socket.io-parser/-/socket.io-parser-4.2.3.tgz", - "integrity": "sha512-JMafRntWVO2DCJimKsRTh/wnqVvO4hrfwOqtO7f+uzwsQMuxO6VwImtYxaQ+ieoyshWOTJyV0fA21lccEXRPpQ==", + "version": "4.2.4", + "resolved": "https://registry.npmjs.org/socket.io-parser/-/socket.io-parser-4.2.4.tgz", + "integrity": "sha512-/GbIKmo8ioc+NIWIhwdecY0ge+qVBSMdgxGygevmdHj24bsfgtCmcUUcQ5ZzcylGFHsN3k4HB4Cgkl96KVnuew==", "dependencies": { "@socket.io/component-emitter": "~3.1.0", "debug": "~4.3.1" diff --git a/package.json b/package.json index be4ad13..68adeab 100644 --- a/package.json +++ b/package.json @@ -29,7 +29,7 @@ "perfect-scrollbar": "^1.5.5", "pusher-js": "^7.6.0", "resolve-url-loader": "^5.0.0", - "socket.io-client": "^4.5.4", + "socket.io-client": "^4.6.2", "stream-browserify": "^3.0.0", "timingsrc": "^1.2.13", "vue": "^3.2.40", From 3dcd7ace7ac4fd0e6f4fa4236b3682fcb3ae54cb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 2 Jul 2023 03:30:23 +0000 Subject: [PATCH 07/16] fix: upgrade sass from 1.62.1 to 1.63.3 Snyk has created this PR to upgrade sass from 1.62.1 to 1.63.3. See this package in npm: https://www.npmjs.com/package/sass See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 10 +++++----- package.json | 2 +- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..25e1aa8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1688268608986-0.8745882380854464svN7Ig", "lockfileVersion": 3, "requires": true, "packages": { @@ -48,7 +48,7 @@ "file-loader": "^6.2.0", "patch-package": "^6.5.1", "postcss": "^8.4.21", - "sass": "^1.57.1", + "sass": "^1.63.3", "sass-loader": "^13.0.0", "sass-resources-loader": "^2.2.5", "typescript": "^4.9.4", @@ -4196,9 +4196,9 @@ ] }, "node_modules/sass": { - "version": "1.62.1", - "resolved": "https://registry.npmjs.org/sass/-/sass-1.62.1.tgz", - "integrity": "sha512-NHpxIzN29MXvWiuswfc1W3I0N8SXBd8UR26WntmDlRYf0bSADnwnOjsyMZ3lMezSlArD33Vs3YFhp7dWvL770A==", + "version": "1.63.3", + "resolved": "https://registry.npmjs.org/sass/-/sass-1.63.3.tgz", + "integrity": "sha512-ySdXN+DVpfwq49jG1+hmtDslYqpS7SkOR5GpF6o2bmb1RL/xS+wvPmegMvMywyfsmAV6p7TgwXYGrCZIFFbAHg==", "dev": true, "dependencies": { "chokidar": ">=3.0.0 <4.0.0", diff --git a/package.json b/package.json index be4ad13..162c322 100644 --- a/package.json +++ b/package.json @@ -48,7 +48,7 @@ "css-loader": "^6.7.3", "file-loader": "^6.2.0", "patch-package": "^6.5.1", - "sass": "^1.57.1", + "sass": "^1.63.3", "postcss": "^8.4.21", "sass-loader": "^13.0.0", "sass-resources-loader": "^2.2.5", From 00a017f58050f0bb40ad56007d14fb3089792afc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 2 Jul 2023 03:30:28 +0000 Subject: [PATCH 08/16] fix: upgrade icecast-metadata-player from 1.16.1 to 1.16.3 Snyk has created this PR to upgrade icecast-metadata-player from 1.16.1 to 1.16.3. See this package in npm: https://www.npmjs.com/package/icecast-metadata-player See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 97 +++++++++++++++++++++++++---------------------- package.json | 2 +- 2 files changed, 52 insertions(+), 47 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..0523f78 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1688268611508-0.9588031903894219bvfAvh", "lockfileVersion": 3, "requires": true, "packages": { @@ -20,7 +20,7 @@ "dashjs": "^4.5.2", "graphql": "^16.6.0", "graphql-tag": "^2.12.6", - "icecast-metadata-player": "^1.14.0", + "icecast-metadata-player": "^1.16.3", "jquery": "^3.6.3", "laravel-echo": "^1.15.0", "mitt": "^3.0.0", @@ -1040,20 +1040,25 @@ "integrity": "sha512-7OjdcV8vQ74eiz1TZLzZP4JwqM5fA94K6yntPS5Z25r9HDuGNzaGdgvwKYq6S+MxwF0TFRwe50fIR/MYnakdkQ==" }, "node_modules/@wasm-audio-decoders/common": { - "version": "9.0.0", - "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/common/-/common-9.0.0.tgz", - "integrity": "sha512-vXcPPJWataDlyZoKNtGfJi2i/Ecqdt4LWIyJcnI9GUpPtcPSQW3XNlnNaWCVJVlMgPUKQA9nb6Sr34+NDYzRMA==", + "version": "9.0.1", + "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/common/-/common-9.0.1.tgz", + "integrity": "sha512-s4KxPsxhD6e+EtjmHPzTmKJSJTEXHGYlBzUGGLN/plV01x3RecybW73nIMtdLLXL8k/zQ8HYFcA6d9lqCJcDjQ==", "dependencies": { - "@eshaz/web-worker": "1.2.0" + "@eshaz/web-worker": "1.2.1" } }, + "node_modules/@wasm-audio-decoders/common/node_modules/@eshaz/web-worker": { + "version": "1.2.1", + "resolved": "https://registry.npmjs.org/@eshaz/web-worker/-/web-worker-1.2.1.tgz", + "integrity": "sha512-v5AKAVtM0toVD2rDCGjzhySWlXG/sG5HVialdzrxFKTAnFZNCjQelX0n2tPK0tE86jf4s3hpWlpRtOh8OObktg==" + }, "node_modules/@wasm-audio-decoders/flac": { - "version": "0.1.9", - "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/flac/-/flac-0.1.9.tgz", - "integrity": "sha512-2RuPteNLHrxXHBbto+a1mEos86kJesjJXcETAiNM5GrnIRpWytH5ADyJI1KpbPxgG+aJw00PnDfrpEb8bRhNPg==", + "version": "0.1.12", + "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/flac/-/flac-0.1.12.tgz", + "integrity": "sha512-k4PELVzBu4p4j0YmA2K8VF0GxoWWYqkqa3C29nOikOss1SZLnX2CczfiJCklL9AA/9tlZrvBJz3/nDxXDqR35A==", "dependencies": { - "@wasm-audio-decoders/common": "9.0.0", - "codec-parser": "2.4.0" + "@wasm-audio-decoders/common": "9.0.1", + "codec-parser": "2.4.2" }, "funding": { "type": "individual", @@ -1061,12 +1066,12 @@ } }, "node_modules/@wasm-audio-decoders/ogg-vorbis": { - "version": "0.1.4", - "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/ogg-vorbis/-/ogg-vorbis-0.1.4.tgz", - "integrity": "sha512-xHZBX/O1uXd7qmpaNIX+YngCFNzaMi7tnUYI5CfJ053XxX+jUSUb4jyIV+WhEAp2fy+N5Et2tmMg84CQjOBHkA==", + "version": "0.1.7", + "resolved": "https://registry.npmjs.org/@wasm-audio-decoders/ogg-vorbis/-/ogg-vorbis-0.1.7.tgz", + "integrity": "sha512-MftO1fJeBRUuDAZfa9Yp/gf+786PWt/JyiFXj+Ntn0mxlKDyPr3pTXx8PvhmO2/s/nabHDhAhiZi4aXzaBEUpg==", "dependencies": { - "@wasm-audio-decoders/common": "9.0.0", - "codec-parser": "2.4.0" + "@wasm-audio-decoders/common": "9.0.1", + "codec-parser": "2.4.2" }, "funding": { "type": "individual", @@ -1726,9 +1731,9 @@ } }, "node_modules/codec-parser": { - "version": "2.4.0", - "resolved": "https://registry.npmjs.org/codec-parser/-/codec-parser-2.4.0.tgz", - "integrity": "sha512-WSIMZYuW/+i1o92XAa7nVqdKtTihfcj7JSDUcpm2ZT3pBhTahSaGQaGfRKY4/nctrM+ePc3KwExSAVly/ckiCQ==" + "version": "2.4.2", + "resolved": "https://registry.npmjs.org/codec-parser/-/codec-parser-2.4.2.tgz", + "integrity": "sha512-RN6gT8aGdDq4vx//Ln+MRDIKPXA3SpJKsCcQSZ4poF2bZCO4/G0C2Ko/MVNpbJ7Y9ewpzeuLlBx2zH8BpcM4ew==" }, "node_modules/codem-isoboxer": { "version": "0.3.9", @@ -2893,11 +2898,11 @@ "integrity": "sha512-8nxjcBcd8wovbeKx7h3wTji4e6+rhaVuPNpMqwWgnHh+N9ToqsCs6XztWRBPQ+UtzsoMAdKZtUENoVzU/EMtZA==" }, "node_modules/icecast-metadata-js": { - "version": "1.2.4", - "resolved": "https://registry.npmjs.org/icecast-metadata-js/-/icecast-metadata-js-1.2.4.tgz", - "integrity": "sha512-wvzpPcrJWqv8avmeazbqDK2PtM34HxrbE1O9+7fAsO5/l+ccKe/cAwP/IxX6D3lGFwf5XtRl16zYVKAqQWzyJQ==", + "version": "1.2.6", + "resolved": "https://registry.npmjs.org/icecast-metadata-js/-/icecast-metadata-js-1.2.6.tgz", + "integrity": "sha512-SPh3ND72gWIqvAp0mnWE2uVuZ8DLs/A5ohIyhPoluWYHvc7OKDk9NsEd+FiDw951y8/bMfzwkyVVosph/nWWag==", "dependencies": { - "codec-parser": "2.4.0" + "codec-parser": "2.4.2" }, "funding": { "type": "individual", @@ -2905,17 +2910,17 @@ } }, "node_modules/icecast-metadata-player": { - "version": "1.16.1", - "resolved": "https://registry.npmjs.org/icecast-metadata-player/-/icecast-metadata-player-1.16.1.tgz", - "integrity": "sha512-ZQlirEwQ+GRK6lIo3FWzpKY4uqpsHpCvI4rjTSXRgUyfqk2NGyvgh6adaCFS+pHgzFD1mslXn/g34R6J5+DjpQ==", - "dependencies": { - "@wasm-audio-decoders/flac": "0.1.9", - "@wasm-audio-decoders/ogg-vorbis": "0.1.4", - "codec-parser": "2.4.0", - "icecast-metadata-js": "1.2.4", - "mpg123-decoder": "0.4.7", - "mse-audio-wrapper": "1.4.10", - "opus-decoder": "0.7.0", + "version": "1.16.3", + "resolved": "https://registry.npmjs.org/icecast-metadata-player/-/icecast-metadata-player-1.16.3.tgz", + "integrity": "sha512-Hfr7J6RleNcmWYrdBSRBfj39CLq6n9eCREpZM8nUkMZ99ysbC8BoLOTDHri/Dwpjd7SJeSgg5ND0H9X8i1pFug==", + "dependencies": { + "@wasm-audio-decoders/flac": "0.1.12", + "@wasm-audio-decoders/ogg-vorbis": "0.1.7", + "codec-parser": "2.4.2", + "icecast-metadata-js": "1.2.6", + "mpg123-decoder": "0.4.8", + "mse-audio-wrapper": "1.4.12", + "opus-decoder": "0.7.1", "synaudio": "0.3.4" }, "funding": { @@ -3456,11 +3461,11 @@ } }, "node_modules/mpg123-decoder": { - "version": "0.4.7", - "resolved": "https://registry.npmjs.org/mpg123-decoder/-/mpg123-decoder-0.4.7.tgz", - "integrity": "sha512-Ls0PG/OFPFUdUm3aKUuWXQdaNdOn6jmzOmrJGrxlL3SvXS3v4Cmy7pxbfpKMcvASz/qS8tjptNcwBrNiQV+8MQ==", + "version": "0.4.8", + "resolved": "https://registry.npmjs.org/mpg123-decoder/-/mpg123-decoder-0.4.8.tgz", + "integrity": "sha512-HXs8vbPjiFM0NOZ45T3C5i7mpYGEYhjH37SnFA907lOb9c93DQL40cDjerxj65IMwAYyPFq1aUjtDOjyR7O0gQ==", "dependencies": { - "@wasm-audio-decoders/common": "9.0.0" + "@wasm-audio-decoders/common": "9.0.1" }, "funding": { "type": "individual", @@ -3473,11 +3478,11 @@ "integrity": "sha512-sGkPx+VjMtmA6MX27oA4FBFELFCZZ4S4XqeGOXCv68tT+jb3vk/RyaKWP0PTKyWtmLSM0b+adUTEvbs1PEaH2w==" }, "node_modules/mse-audio-wrapper": { - "version": "1.4.10", - "resolved": "https://registry.npmjs.org/mse-audio-wrapper/-/mse-audio-wrapper-1.4.10.tgz", - "integrity": "sha512-LXv5szl98ezYwE30UeV8UTOfceEqGgUrGYQF+z/crqymN84Ax97uSucgT7su3HJ/nlJxPgpRq2dSUyajxDkDUA==", + "version": "1.4.12", + "resolved": "https://registry.npmjs.org/mse-audio-wrapper/-/mse-audio-wrapper-1.4.12.tgz", + "integrity": "sha512-5QhCROjhJxyWE7cEt2nvuyUxnJGib5sMUObfatCw6aQRfYGS1vLYvtWaKgqAjz0ib4kTJVx4cY/TQdAVLxk1Zw==", "dependencies": { - "codec-parser": "2.4.0" + "codec-parser": "2.4.2" }, "funding": { "type": "individual", @@ -3596,11 +3601,11 @@ } }, "node_modules/opus-decoder": { - "version": "0.7.0", - "resolved": "https://registry.npmjs.org/opus-decoder/-/opus-decoder-0.7.0.tgz", - "integrity": "sha512-nmjjjTYOfleclIHCAv4lvXrwArLI7wAnetAgj4uxGD14xKBynqXEtoOv79DU7brKSmZinaChIn5tC3aIaaD+lw==", + "version": "0.7.1", + "resolved": "https://registry.npmjs.org/opus-decoder/-/opus-decoder-0.7.1.tgz", + "integrity": "sha512-AOFCMKLn7LJm8pOkksY5TsW/6+XmNyh1OQS9gxmdOGHLNYoOBrjSfc0nPNcmUMGEzOrTqZtPi8VJ/ABs2Hndvg==", "dependencies": { - "@wasm-audio-decoders/common": "9.0.0" + "@wasm-audio-decoders/common": "9.0.1" }, "funding": { "type": "individual", diff --git a/package.json b/package.json index be4ad13..87a2c6f 100644 --- a/package.json +++ b/package.json @@ -21,7 +21,7 @@ "dashjs": "^4.5.2", "graphql": "^16.6.0", "graphql-tag": "^2.12.6", - "icecast-metadata-player": "^1.14.0", + "icecast-metadata-player": "^1.16.3", "jquery": "^3.6.3", "laravel-echo": "^1.15.0", "mitt": "^3.0.0", From 2fd17cc1fd7cce1ae47c45782f30fab29c6ecdef Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 2 Jul 2023 03:30:35 +0000 Subject: [PATCH 09/16] fix: upgrade sass-loader from 13.3.1 to 13.3.2 Snyk has created this PR to upgrade sass-loader from 13.3.1 to 13.3.2. See this package in npm: https://www.npmjs.com/package/sass-loader See this project in Snyk: https://app.snyk.io/org/xorinzor/project/15e591d2-b334-482e-8026-f1f2a9cb1a9b?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 20 +++++--------------- package.json | 2 +- 2 files changed, 6 insertions(+), 16 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2c85a1b..242ed33 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "frontend", + "name": "npm-proj-1688268619850-0.4570106237274365BCeBif", "lockfileVersion": 3, "requires": true, "packages": { @@ -49,7 +49,7 @@ "patch-package": "^6.5.1", "postcss": "^8.4.21", "sass": "^1.57.1", - "sass-loader": "^13.0.0", + "sass-loader": "^13.3.2", "sass-resources-loader": "^2.2.5", "typescript": "^4.9.4", "vite": "^3.2.5", @@ -3267,15 +3267,6 @@ "graceful-fs": "^4.1.11" } }, - "node_modules/klona": { - "version": "2.0.6", - "resolved": "https://registry.npmjs.org/klona/-/klona-2.0.6.tgz", - "integrity": "sha512-dhG34DXATL5hSxJbIexCft8FChFXtmskoZYnoPWjXQuebWYCNkVeV3KkGegCK9CP1oswI/vQibS2GY7Em/sJJA==", - "dev": true, - "engines": { - "node": ">= 8" - } - }, "node_modules/laravel-echo": { "version": "1.15.1", "resolved": "https://registry.npmjs.org/laravel-echo/-/laravel-echo-1.15.1.tgz", @@ -4213,12 +4204,11 @@ } }, "node_modules/sass-loader": { - "version": "13.3.1", - "resolved": "https://registry.npmjs.org/sass-loader/-/sass-loader-13.3.1.tgz", - "integrity": "sha512-cBTxmgyVA1nXPvIK4brjJMXOMJ2v2YrQEuHqLw3LylGb3gsR6jAvdjHMcy/+JGTmmIF9SauTrLLR7bsWDMWqgg==", + "version": "13.3.2", + "resolved": "https://registry.npmjs.org/sass-loader/-/sass-loader-13.3.2.tgz", + "integrity": "sha512-CQbKl57kdEv+KDLquhC+gE3pXt74LEAzm+tzywcA0/aHZuub8wTErbjAoNI57rPUWRYRNC5WUnNl8eGJNbDdwg==", "dev": true, "dependencies": { - "klona": "^2.0.6", "neo-async": "^2.6.2" }, "engines": { diff --git a/package.json b/package.json index be4ad13..e40a2a8 100644 --- a/package.json +++ b/package.json @@ -50,7 +50,7 @@ "patch-package": "^6.5.1", "sass": "^1.57.1", "postcss": "^8.4.21", - "sass-loader": "^13.0.0", + "sass-loader": "^13.3.2", "sass-resources-loader": "^2.2.5", "typescript": "^4.9.4", "vite": "^3.2.5", From ddfe1cb6b15ab91b1a502e8cdd5532f1628fa1c0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jul 2023 10:24:42 +0000 Subject: [PATCH 10/16] build(deps): bump semver from 5.7.1 to 5.7.2 Bumps [semver](https://github.com/npm/node-semver) from 5.7.1 to 5.7.2. - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2) --- updated-dependencies: - dependency-name: semver dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/package-lock.json b/package-lock.json index 8c91495..8d99883 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1860,9 +1860,9 @@ } }, "node_modules/css-loader/node_modules/semver": { - "version": "7.5.1", - "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.1.tgz", - "integrity": "sha512-Wvss5ivl8TMRZXXESstBA4uR5iXgEN/VC5/sOcuXdVLzcdkz4HWetIoRfG5gb5X+ij/G9rw9YoGn3QoQ8OCSpw==", + "version": "7.5.4", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.4.tgz", + "integrity": "sha512-1bCSESV6Pv+i21Hvpxp3Dx+pSD8lIPt8uVjRrxAUt/nbswYc+tK6Y2btiULjd4+fnq15PX+nqQDC7Oft7WkwcA==", "dev": true, "dependencies": { "lru-cache": "^6.0.0" @@ -3765,9 +3765,9 @@ } }, "node_modules/patch-package/node_modules/semver": { - "version": "5.7.1", - "resolved": "https://registry.npmjs.org/semver/-/semver-5.7.1.tgz", - "integrity": "sha512-sauaDf/PZdVgrLTNYHRtpXa1iRiKcaebiKQ1BJdpQlWH2lCvexQdX55snPFyK7QzpudqbCI0qXFfOasHdyNDGQ==", + "version": "5.7.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-5.7.2.tgz", + "integrity": "sha512-cBznnQ9KjJqU67B52RMC65CMarK2600WFnbkcaiwWq3xy/5haFJlshgnpjovMVJ+Hff49d8GEn0b87C5pDQ10g==", "dev": true, "bin": { "semver": "bin/semver" @@ -4356,9 +4356,9 @@ } }, "node_modules/semver": { - "version": "6.3.0", - "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.0.tgz", - "integrity": "sha512-b39TBaTSfV6yBrapU89p5fKekE2m/NwnDocOVruQFS1/veMgdzuPcnOM34M6CwxW8jH/lxEa5rBoDeUwu5HHTw==", + "version": "6.3.1", + "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz", + "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==", "bin": { "semver": "bin/semver.js" } @@ -5049,9 +5049,9 @@ } }, "node_modules/vue-tsc/node_modules/semver": { - "version": "7.5.1", - "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.1.tgz", - "integrity": "sha512-Wvss5ivl8TMRZXXESstBA4uR5iXgEN/VC5/sOcuXdVLzcdkz4HWetIoRfG5gb5X+ij/G9rw9YoGn3QoQ8OCSpw==", + "version": "7.5.4", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.4.tgz", + "integrity": "sha512-1bCSESV6Pv+i21Hvpxp3Dx+pSD8lIPt8uVjRrxAUt/nbswYc+tK6Y2btiULjd4+fnq15PX+nqQDC7Oft7WkwcA==", "dev": true, "dependencies": { "lru-cache": "^6.0.0" From 491a5ccd40c8eaf4ee65db6da81a89612fa9385f Mon Sep 17 00:00:00 2001 From: Jorin Vermeulen <4212335+xorinzor@users.noreply.github.com> Date: Wed, 30 Aug 2023 12:56:28 +0200 Subject: [PATCH 11/16] Update FUNDING.yml --- .github/FUNDING.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml index a7c98cc..c6061e1 100644 --- a/.github/FUNDING.yml +++ b/.github/FUNDING.yml @@ -1,6 +1,6 @@ # These are supported funding model platforms -github: [ xorinzor ] +github: [ ] patreon: # Replace with a single Patreon username open_collective: # Replace with a single Open Collective username ko_fi: # Replace with a single Ko-fi username From 7c06efbb464fc541b107d6eb68fe753eb2be89d6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Sep 2023 17:48:16 +0000 Subject: [PATCH 12/16] build(deps): bump graphql from 16.6.0 to 16.8.1 Bumps [graphql](https://github.com/graphql/graphql-js) from 16.6.0 to 16.8.1. - [Release notes](https://github.com/graphql/graphql-js/releases) - [Commits](https://github.com/graphql/graphql-js/compare/v16.6.0...v16.8.1) --- updated-dependencies: - dependency-name: graphql dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 8c91495..41daf8c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -18,7 +18,7 @@ "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3", "dashjs": "^4.5.2", - "graphql": "^16.6.0", + "graphql": "^16.8.1", "graphql-tag": "^2.12.6", "icecast-metadata-player": "^1.14.0", "jquery": "^3.6.3", @@ -2824,9 +2824,9 @@ "integrity": "sha512-RbJ5/jmFcNNCcDV5o9eTnBLJ/HszWV0P73bc+Ff4nS/rJj+YaS6IGyiOL0VoBYX+l1Wrl3k63h/KrH+nhJ0XvQ==" }, "node_modules/graphql": { - "version": "16.6.0", - "resolved": "https://registry.npmjs.org/graphql/-/graphql-16.6.0.tgz", - "integrity": "sha512-KPIBPDlW7NxrbT/eh4qPXz5FiFdL5UbaA0XUNz2Rp3Z3hqBSkbj0GVjwFDztsWVauZUWsbKHgMg++sk8UX0bkw==", + "version": "16.8.1", + "resolved": "https://registry.npmjs.org/graphql/-/graphql-16.8.1.tgz", + "integrity": "sha512-59LZHPdGZVh695Ud9lRzPBVTtlX9ZCV150Er2W43ro37wVof0ctenSaskPPjN7lVTIN8mSZt8PHUNKZuNQUuxw==", "engines": { "node": "^12.22.0 || ^14.16.0 || ^16.0.0 || >=17.0.0" } diff --git a/package.json b/package.json index 0940561..4313cc6 100644 --- a/package.json +++ b/package.json @@ -19,7 +19,7 @@ "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3", "dashjs": "^4.5.2", - "graphql": "^16.6.0", + "graphql": "^16.8.1", "graphql-tag": "^2.12.6", "icecast-metadata-player": "^1.14.0", "jquery": "^3.6.3", From d2a104d1d89a4b460ce846851ab8fb65a052a540 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 7 Oct 2023 20:17:26 +0000 Subject: [PATCH 13/16] build(deps-dev): bump postcss from 8.4.24 to 8.4.31 Bumps [postcss](https://github.com/postcss/postcss) from 8.4.24 to 8.4.31. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.24...8.4.31) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:development ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 8c91495..024aef5 100644 --- a/package-lock.json +++ b/package-lock.json @@ -47,7 +47,7 @@ "css-loader": "^6.7.3", "file-loader": "^6.2.0", "patch-package": "^6.5.1", - "postcss": "^8.4.21", + "postcss": "^8.4.31", "sass": "^1.57.1", "sass-loader": "^13.0.0", "sass-resources-loader": "^2.2.5", @@ -3890,9 +3890,9 @@ } }, "node_modules/postcss": { - "version": "8.4.24", - "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.24.tgz", - "integrity": "sha512-M0RzbcI0sO/XJNucsGjvWU9ERWxb/ytp1w6dKtxTKgixdtQDq4rmx/g8W1hnaheq9jgwL/oyEdH5Bc4WwJKMqg==", + "version": "8.4.31", + "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.31.tgz", + "integrity": "sha512-PS08Iboia9mts/2ygV3eLpY5ghnUcfLV/EXTOW1E2qYxJKGGBUtNjN76FYHnMs36RmARn41bC0AZmn+rR0OVpQ==", "funding": [ { "type": "opencollective", diff --git a/package.json b/package.json index 0940561..2d90d89 100644 --- a/package.json +++ b/package.json @@ -49,7 +49,7 @@ "file-loader": "^6.2.0", "patch-package": "^6.5.1", "sass": "^1.57.1", - "postcss": "^8.4.21", + "postcss": "^8.4.31", "sass-loader": "^13.0.0", "sass-resources-loader": "^2.2.5", "typescript": "^4.9.4", From 59801fd056739a4cb65b31367681e16a539a8c46 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 19 Oct 2023 09:41:26 +0000 Subject: [PATCH 14/16] build(deps): bump @babel/traverse from 7.22.5 to 7.23.2 Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.22.5 to 7.23.2. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse) --- updated-dependencies: - dependency-name: "@babel/traverse" dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 103 +++++++++++++++++++++++----------------------- 1 file changed, 52 insertions(+), 51 deletions(-) diff --git a/package-lock.json b/package-lock.json index 024aef5..a435047 100644 --- a/package-lock.json +++ b/package-lock.json @@ -112,11 +112,12 @@ } }, "node_modules/@babel/code-frame": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.22.5.tgz", - "integrity": "sha512-Xmwn266vad+6DAqEB2A6V/CcZVp62BbwVmcOJc2RPuwih1kw02TjQvWVWlcKGbBPd+8/0V5DEkOcizRGYsspYQ==", + "version": "7.22.13", + "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.22.13.tgz", + "integrity": "sha512-XktuhWlJ5g+3TJXc5upd9Ks1HutSArik6jf2eAjYFyIOf4ej3RN+184cZbzDvbPnuTJIUhPKKJE3cIsYTiAT3w==", "dependencies": { - "@babel/highlight": "^7.22.5" + "@babel/highlight": "^7.22.13", + "chalk": "^2.4.2" }, "engines": { "node": ">=6.9.0" @@ -160,11 +161,11 @@ } }, "node_modules/@babel/generator": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.22.5.tgz", - "integrity": "sha512-+lcUbnTRhd0jOewtFSedLyiPsD5tswKkbgcezOqqWFUVNEwoUTlpPOBmvhG7OXWLR4jMdv0czPGH5XbflnD1EA==", + "version": "7.23.0", + "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.23.0.tgz", + "integrity": "sha512-lN85QRR+5IbYrMWM6Y4pE/noaQtg4pNiqeNGX60eqOfo6gtEj6uw/JagelB8vVztSd7R6M5n1+PQkDbHbBRU4g==", "dependencies": { - "@babel/types": "^7.22.5", + "@babel/types": "^7.23.0", "@jridgewell/gen-mapping": "^0.3.2", "@jridgewell/trace-mapping": "^0.3.17", "jsesc": "^2.5.1" @@ -225,20 +226,20 @@ } }, "node_modules/@babel/helper-environment-visitor": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/helper-environment-visitor/-/helper-environment-visitor-7.22.5.tgz", - "integrity": "sha512-XGmhECfVA/5sAt+H+xpSg0mfrHq6FzNr9Oxh7PSEBBRUb/mL7Kz3NICXb194rCqAEdxkhPT1a88teizAFyvk8Q==", + "version": "7.22.20", + "resolved": "https://registry.npmjs.org/@babel/helper-environment-visitor/-/helper-environment-visitor-7.22.20.tgz", + "integrity": "sha512-zfedSIzFhat/gFhWfHtgWvlec0nqB9YEIVrpuwjruLlXfUSnA8cJB0miHKwqDnQ7d32aKo2xt88/xZptwxbfhA==", "engines": { "node": ">=6.9.0" } }, "node_modules/@babel/helper-function-name": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.22.5.tgz", - "integrity": "sha512-wtHSq6jMRE3uF2otvfuD3DIvVhOsSNshQl0Qrd7qC9oQJzHvOL4qQXlQn2916+CXGywIjpGuIkoyZRRxHPiNQQ==", + "version": "7.23.0", + "resolved": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.23.0.tgz", + "integrity": "sha512-OErEqsrxjZTJciZ4Oo+eoZqeW9UIiOcuYKRJA4ZAgV9myA+pOXhhmpfNCKjEH/auVfEYVFJ6y1Tc4r0eIApqiw==", "dependencies": { - "@babel/template": "^7.22.5", - "@babel/types": "^7.22.5" + "@babel/template": "^7.22.15", + "@babel/types": "^7.23.0" }, "engines": { "node": ">=6.9.0" @@ -353,9 +354,9 @@ } }, "node_modules/@babel/helper-split-export-declaration": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.22.5.tgz", - "integrity": "sha512-thqK5QFghPKWLhAV321lxF95yCg2K3Ob5yw+M3VHWfdia0IkPXUtoLH8x/6Fh486QUvzhb8YOWHChTVen2/PoQ==", + "version": "7.22.6", + "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.22.6.tgz", + "integrity": "sha512-AsUnxuLhRYsisFiaJwvp1QF+I3KjD5FOxut14q/GzovUe6orHLesW2C7d754kRm53h5gqrz6sFl6sxc4BVtE/g==", "dependencies": { "@babel/types": "^7.22.5" }, @@ -372,9 +373,9 @@ } }, "node_modules/@babel/helper-validator-identifier": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.22.5.tgz", - "integrity": "sha512-aJXu+6lErq8ltp+JhkJUfk1MTGyuA4v7f3pA+BJ5HLfNC6nAQ0Cpi9uOquUj8Hehg0aUiHzWQbOVJGao6ztBAQ==", + "version": "7.22.20", + "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.22.20.tgz", + "integrity": "sha512-Y4OZ+ytlatR8AI+8KZfKuL5urKp7qey08ha31L8b3BwewJAoJamTzyvxPR/5D+KkdJCGPq/+8TukHBlY10FX9A==", "engines": { "node": ">=6.9.0" } @@ -401,12 +402,12 @@ } }, "node_modules/@babel/highlight": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/highlight/-/highlight-7.22.5.tgz", - "integrity": "sha512-BSKlD1hgnedS5XRnGOljZawtag7H1yPfQp0tdNJCHoH6AZ+Pcm9VvkrK59/Yy593Ypg0zMxH2BxD1VPYUQ7UIw==", + "version": "7.22.20", + "resolved": "https://registry.npmjs.org/@babel/highlight/-/highlight-7.22.20.tgz", + "integrity": "sha512-dkdMCN3py0+ksCgYmGG8jKeGA/8Tk+gJwSYYlFGxG5lmhfKNoAy004YpLxpS1W2J8m/EK2Ew+yOs9pVRwO89mg==", "dependencies": { - "@babel/helper-validator-identifier": "^7.22.5", - "chalk": "^2.0.0", + "@babel/helper-validator-identifier": "^7.22.20", + "chalk": "^2.4.2", "js-tokens": "^4.0.0" }, "engines": { @@ -414,9 +415,9 @@ } }, "node_modules/@babel/parser": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.22.5.tgz", - "integrity": "sha512-DFZMC9LJUG9PLOclRC32G63UXwzqS2koQC8dkx+PLdmt1xSePYpbT/NbsrJy8Q/muXz7o/h/d4A7Fuyixm559Q==", + "version": "7.23.0", + "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.23.0.tgz", + "integrity": "sha512-vvPKKdMemU85V9WE/l5wZEmImpCtLqbnTvqDS2U1fJ96KrxoW7KrXhNsNCblQlg8Ck4b85yxdTyelsMUgFUXiw==", "bin": { "parser": "bin/babel-parser.js" }, @@ -451,31 +452,31 @@ } }, "node_modules/@babel/template": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.22.5.tgz", - "integrity": "sha512-X7yV7eiwAxdj9k94NEylvbVHLiVG1nvzCV2EAowhxLTwODV1jl9UzZ48leOC0sH7OnuHrIkllaBgneUykIcZaw==", + "version": "7.22.15", + "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.22.15.tgz", + "integrity": "sha512-QPErUVm4uyJa60rkI73qneDacvdvzxshT3kksGqlGWYdOTIUOwJ7RDUL8sGqslY1uXWSL6xMFKEXDS3ox2uF0w==", "dependencies": { - "@babel/code-frame": "^7.22.5", - "@babel/parser": "^7.22.5", - "@babel/types": "^7.22.5" + "@babel/code-frame": "^7.22.13", + "@babel/parser": "^7.22.15", + "@babel/types": "^7.22.15" }, "engines": { "node": ">=6.9.0" } }, "node_modules/@babel/traverse": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.22.5.tgz", - "integrity": "sha512-7DuIjPgERaNo6r+PZwItpjCZEa5vyw4eJGufeLxrPdBXBoLcCJCIasvK6pK/9DVNrLZTLFhUGqaC6X/PA007TQ==", - "dependencies": { - "@babel/code-frame": "^7.22.5", - "@babel/generator": "^7.22.5", - "@babel/helper-environment-visitor": "^7.22.5", - "@babel/helper-function-name": "^7.22.5", + "version": "7.23.2", + "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.23.2.tgz", + "integrity": "sha512-azpe59SQ48qG6nu2CzcMLbxUudtN+dOM9kDbUqGq3HXUJRlo7i8fvPoxQUzYgLZ4cMVmuZgm8vvBpNeRhd6XSw==", + "dependencies": { + "@babel/code-frame": "^7.22.13", + "@babel/generator": "^7.23.0", + "@babel/helper-environment-visitor": "^7.22.20", + "@babel/helper-function-name": "^7.23.0", "@babel/helper-hoist-variables": "^7.22.5", - "@babel/helper-split-export-declaration": "^7.22.5", - "@babel/parser": "^7.22.5", - "@babel/types": "^7.22.5", + "@babel/helper-split-export-declaration": "^7.22.6", + "@babel/parser": "^7.23.0", + "@babel/types": "^7.23.0", "debug": "^4.1.0", "globals": "^11.1.0" }, @@ -484,12 +485,12 @@ } }, "node_modules/@babel/types": { - "version": "7.22.5", - "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.22.5.tgz", - "integrity": "sha512-zo3MIHGOkPOfoRXitsgHLjEXmlDaD/5KU1Uzuc9GNiZPhSqVxVRtxuPaSBZDsYZ9qV88AjtMtWW7ww98loJ9KA==", + "version": "7.23.0", + "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.23.0.tgz", + "integrity": "sha512-0oIyUfKoI3mSqMvsxBdclDwxXKXAUA8v/apZbc+iSyARYou1o8ZGDxbUYyLFoW2arqS2jDGqJuZvv1d/io1axg==", "dependencies": { "@babel/helper-string-parser": "^7.22.5", - "@babel/helper-validator-identifier": "^7.22.5", + "@babel/helper-validator-identifier": "^7.22.20", "to-fast-properties": "^2.0.0" }, "engines": { From 43a7f9679853bb58c3097e79163344899aabf741 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 26 Oct 2023 03:38:41 +0000 Subject: [PATCH 15/16] fix: Dockerfile to reduce vulnerabilities --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index d18c0cd..cb3cd8c 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM nginx:1.24-alpine +FROM nginx:1.25.3-alpine WORKDIR /usr/share/nginx/html From 2da26724afc2366b1b12b2d43058b54b558148f7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 28 Oct 2023 08:07:11 +0000 Subject: [PATCH 16/16] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6032459 --- package-lock.json | 20 +++++++++++++------- package.json | 2 +- 2 files changed, 14 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index a435047..cd74b47 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,5 +1,5 @@ { - "name": "npm-proj-1688268617070-0.03789350962835081L1Rrth", + "name": "npm-proj-1698480427737-0.8671050050910056Tq3nZe", "lockfileVersion": 3, "requires": true, "packages": { @@ -13,7 +13,7 @@ "@vue/apollo-components": "^4.0.0-alpha.20", "@vue/apollo-composable": "^4.0.0-beta.1", "apollo-upload-client": "^17.0.0", - "axios": "^0.27.2", + "axios": "^1.6.0", "bootstrap": "^5.2.3", "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3", @@ -1464,12 +1464,13 @@ } }, "node_modules/axios": { - "version": "0.27.2", - "resolved": "https://registry.npmjs.org/axios/-/axios-0.27.2.tgz", - "integrity": "sha512-t+yRIyySRTp/wua5xEr+z1q60QmLq8ABsS5O9Me1AsE5dfKqgnCFzwiCZZ/cGNd1lq4/7akDWMxdhVlucjmnOQ==", + "version": "1.6.0", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.0.tgz", + "integrity": "sha512-EZ1DYihju9pwVB+jg67ogm+Tmqc6JmhamRN6I4Zt8DfZu5lbcQGw3ozH9lFejSJgs/ibaef3A9PMXPLeefFGJg==", "dependencies": { - "follow-redirects": "^1.14.9", - "form-data": "^4.0.0" + "follow-redirects": "^1.15.0", + "form-data": "^4.0.0", + "proxy-from-env": "^1.1.0" } }, "node_modules/babel-loader": { @@ -4005,6 +4006,11 @@ "react-is": "^16.13.1" } }, + "node_modules/proxy-from-env": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-1.1.0.tgz", + "integrity": "sha512-D+zkORCbA9f1tdWRK0RaCR3GPv50cMxcrz4X8k5LTSUD1Dkw47mKJEZQNunItRTkWwgtaUSo1RVFRIG9ZXiFYg==" + }, "node_modules/punycode": { "version": "2.3.0", "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.0.tgz", diff --git a/package.json b/package.json index 2d90d89..ca1f49f 100644 --- a/package.json +++ b/package.json @@ -14,7 +14,7 @@ "@vue/apollo-components": "^4.0.0-alpha.20", "@vue/apollo-composable": "^4.0.0-beta.1", "apollo-upload-client": "^17.0.0", - "axios": "^0.27.2", + "axios": "^1.6.0", "bootstrap": "^5.2.3", "bootstrap-icons-vue": "^1.8.1", "cross-env": "^7.0.3",