From f9b1e8562c645c01d3f2193974d9f449a7ee7f5c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 1 Aug 2024 21:25:17 +0000 Subject: [PATCH] fix: src/paymentservice/package.json & src/paymentservice/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-GRPCGRPCJS-7242922 --- src/paymentservice/package-lock.json | 9 +++++---- src/paymentservice/package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/src/paymentservice/package-lock.json b/src/paymentservice/package-lock.json index d2719f2bb3..16beb530d3 100644 --- a/src/paymentservice/package-lock.json +++ b/src/paymentservice/package-lock.json @@ -9,7 +9,7 @@ "version": "1.4.0", "license": "ISC", "dependencies": { - "@grpc/grpc-js": "1.10.8", + "@grpc/grpc-js": "^1.10.9", "@grpc/proto-loader": "0.7.13", "@openfeature/flagd-provider": "0.13.0", "@openfeature/server-sdk": "1.14.0", @@ -32,9 +32,10 @@ } }, "node_modules/@grpc/grpc-js": { - "version": "1.10.8", - "resolved": "https://registry.npmjs.org/@grpc/grpc-js/-/grpc-js-1.10.8.tgz", - "integrity": "sha512-vYVqYzHicDqyKB+NQhAc54I1QWCBLCrYG6unqOIcBTHx+7x8C9lcoLj3KVJXs2VB4lUbpWY+Kk9NipcbXYWmvg==", + "version": "1.10.9", + "resolved": "https://registry.npmjs.org/@grpc/grpc-js/-/grpc-js-1.10.9.tgz", + "integrity": "sha512-5tcgUctCG0qoNyfChZifz2tJqbRbXVO9J7X6duFcOjY3HUNCxg5D0ZCK7EP9vIcZ0zRpLU9bWkyCqVCLZ46IbQ==", + "license": "Apache-2.0", "dependencies": { "@grpc/proto-loader": "^0.7.13", "@js-sdsl/ordered-map": "^4.4.2" diff --git a/src/paymentservice/package.json b/src/paymentservice/package.json index f51782201d..3c8a6bb046 100644 --- a/src/paymentservice/package.json +++ b/src/paymentservice/package.json @@ -12,7 +12,7 @@ "author": "Jonathan Lui", "license": "ISC", "dependencies": { - "@grpc/grpc-js": "1.10.8", + "@grpc/grpc-js": "1.10.9", "@grpc/proto-loader": "0.7.13", "@openfeature/flagd-provider": "0.13.0", "@openfeature/server-sdk": "1.14.0",