Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump tar from 6.1.14 to 6.2.1 #127

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump tar from 6.1.14 to 6.2.1 #127

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions yarn.lock
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# This file is generated by running "yarn install" inside your project.

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

protobufjs:6.11.3 

Detected Vulnerabilities:
  CVE-2023-36665, Severity: Critical, Source: https://github.com/advisories/GHSA-h755-8qp9-cq85
    CVSS score: 9.8, CVSS exploitability score: 3.9
    🩹 Fixed version: 6.11.4
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

vite:4.3.4 

Detected Vulnerabilities:
  CVE-2024-23331, Severity: High, Source: https://github.com/advisories/GHSA-c24v-8rfc-w8vw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 4.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit
  CVE-2024-31207, Severity: Medium, Source: https://github.com/advisories/GHSA-8jhw-289h-jh2g
    🩹 Fixed version: 4.5.3
    💥 Has public exploit
    🧨 Has CISA KEV exploit
  CVE-2023-34092, Severity: High, Source: https://github.com/advisories/GHSA-353f-5xf4-qw67
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 4.3.9
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

@babel/traverse:7.21.5 

Detected Vulnerabilities:
  CVE-2023-45133, Severity: Critical, Source: https://github.com/advisories/GHSA-67hx-6x53-jw92
    CVSS score: 8.8, CVSS exploitability score: 2.0
    🩹 Fixed version: 7.23.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

word-wrap:1.2.3 

Detected Vulnerabilities:
  CVE-2023-26115, Severity: Medium, Source: https://github.com/advisories/GHSA-j8xg-fqg3-53r7
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 1.2.4
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

postcss:8.4.23 

Detected Vulnerabilities:
  CVE-2023-44270, Severity: Medium, Source: https://github.com/advisories/GHSA-7fh5-64p2-3v2j
    CVSS score: 5.3, CVSS exploitability score: 3.9
    🩹 Fixed version: 8.4.31
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:7.5.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 7.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:7.0.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 7.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:5.7.1 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 5.7.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:6.3.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 6.3.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

ip:2.0.0 

Detected Vulnerabilities:
  CVE-2023-42282, Severity: Medium, Source: https://github.com/advisories/GHSA-78xj-cgh5-2h22
    CVSS score: 9.8, CVSS exploitability score: 3.9
    🩹 Fixed version: 2.0.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

@babel/traverse:7.21.5 

Detected Vulnerabilities:
  CVE-2023-45133, Severity: Critical, Source: https://github.com/advisories/GHSA-67hx-6x53-jw92
    CVSS score: 8.8, CVSS exploitability score: 2.0
    🩹 Fixed version: 7.23.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

vite:4.3.4 

Detected Vulnerabilities:
  CVE-2023-34092, Severity: High, Source: https://github.com/advisories/GHSA-353f-5xf4-qw67
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 4.3.9
    💥 Has public exploit
    🧨 Has CISA KEV exploit
  CVE-2024-23331, Severity: High, Source: https://github.com/advisories/GHSA-c24v-8rfc-w8vw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 4.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit
  CVE-2024-31207, Severity: Medium, Source: https://github.com/advisories/GHSA-8jhw-289h-jh2g
    🩹 Fixed version: 4.5.3
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

protobufjs:6.11.3 

Detected Vulnerabilities:
  CVE-2023-36665, Severity: Critical, Source: https://github.com/advisories/GHSA-h755-8qp9-cq85
    CVSS score: 9.8, CVSS exploitability score: 3.9
    🩹 Fixed version: 6.11.4
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:5.7.1 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 5.7.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

postcss:8.4.23 

Detected Vulnerabilities:
  CVE-2023-44270, Severity: Medium, Source: https://github.com/advisories/GHSA-7fh5-64p2-3v2j
    CVSS score: 5.3, CVSS exploitability score: 3.9
    🩹 Fixed version: 8.4.31
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:6.3.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 6.3.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:7.5.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 7.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

semver:7.0.0 

Detected Vulnerabilities:
  CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 7.5.2
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

ip:2.0.0 

Detected Vulnerabilities:
  CVE-2023-42282, Severity: Medium, Source: https://github.com/advisories/GHSA-78xj-cgh5-2h22
    CVSS score: 9.8, CVSS exploitability score: 3.9
    🩹 Fixed version: 2.0.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in yarn.lock

View check run for this annotation

Wiz Inc. (a28a8b7b4c) / Wiz Vulnerability Scanner

word-wrap:1.2.3 

Detected Vulnerabilities:
  CVE-2023-26115, Severity: Medium, Source: https://github.com/advisories/GHSA-j8xg-fqg3-53r7
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 1.2.4
    💥 Has public exploit
    🧨 Has CISA KEV exploit
# Manual changes might be lost - proceed with caution!

__metadata:
Expand Down Expand Up @@ -7531,16 +7531,16 @@
linkType: hard

"tar@npm:^6.1.11, tar@npm:^6.1.2":
version: 6.1.14
resolution: "tar@npm:6.1.14"
version: 6.2.1
resolution: "tar@npm:6.2.1"
dependencies:
chownr: ^2.0.0
fs-minipass: ^2.0.0
minipass: ^5.0.0
minizlib: ^2.1.1
mkdirp: ^1.0.3
yallist: ^4.0.0
checksum: a1be0815a9bdc97dfca7c6c2d71d1b836f8ba9314684e2c412832f0f59cc226d4c13da303d6bc30925e82f634cc793f40da79ae72f3e96fb87c23d0f4efd5207
checksum: f1322768c9741a25356c11373bce918483f40fa9a25c69c59410c8a1247632487edef5fe76c5f12ac51a6356d2f1829e96d2bc34098668a2fc34d76050ac2b6c
languageName: node
linkType: hard

Expand Down