0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-12-16 21:56:25 -05:00

fix: security vulnerability at readme in dompurify dep (#1532)

Fix Cross-site Scripting (XSS) in @verdaccio/readme
This commit is contained in:
Juan Picado @jotadeveloper 2019-10-23 20:49:36 +02:00 committed by GitHub
parent 44c79ad708
commit 2ac7770459
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 7 additions and 7 deletions

View file

@ -16,10 +16,10 @@
"verdaccio": "./bin/verdaccio"
},
"dependencies": {
"@verdaccio/commons-api": "8.1.2",
"@verdaccio/local-storage": "8.1.2",
"@verdaccio/readme": "8.1.2",
"@verdaccio/streams": "8.1.2",
"@verdaccio/commons-api": "8.2.0",
"@verdaccio/local-storage": "8.2.0",
"@verdaccio/readme": "8.2.0",
"@verdaccio/streams": "8.2.0",
"@verdaccio/ui-theme": "0.3.2",
"JSONStream": "1.3.5",
"async": "3.1.0",
@ -49,7 +49,7 @@
"request": "2.87.0",
"semver": "6.3.0",
"verdaccio-audit": "8.1.4",
"verdaccio-htpasswd": "8.1.2"
"verdaccio-htpasswd": "8.2.0"
},
"devDependencies": {
"@commitlint/cli": "8.2.0",
@ -88,8 +88,8 @@
"standard-version": "7.0.0",
"supertest": "4.0.2",
"typescript": "3.6.3",
"verdaccio-auth-memory": "8.1.2",
"verdaccio-memory": "8.1.2"
"verdaccio-auth-memory": "8.2.0",
"verdaccio-memory": "8.2.0"
},
"keywords": [
"private",

BIN
yarn.lock

Binary file not shown.