Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Updating package.json to fix vulnerabilites #174

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

Sujay-shetty
Copy link

There are vulnerabilities reported in xcode and shelljs, updating them to fix it.

PR Type

What kind of change does this PR introduce?

  • Bugfix
  • Feature
  • Code style update (formatting, local variables)
  • Refactoring (no functional changes, no api changes)
  • Documentation changes
  • Other... Please describe: Vulnerability fix in dependent packages (xcode and shell.js)

PR Checklist

For bug fixes / features, please check if your PR fulfills the following requirements:

  • Testing has been carried out for the changes have been added
  • Regression testing has been carried out for existing functionality
  • Docs have been added / updated

What is the purpose of this PR?

https://nvd.nist.gov/vuln/detail/CVE-2022-0144
https://snyk.io/test/npm/xcode/1.0.0

Does this PR introduce a breaking change?

  • Yes
  • No

What testing has been done on the changes in the PR?

What testing has been done on existing functionality?

Other information

There are vulnerabilities reported in xcode and shelljs, updating them to fix it.
@Sujay-shetty
Copy link
Author

Sujay-shetty commented Feb 8, 2022

@dpa99c please look into this PR as it fixes some vulnerabilities in two packages which are high
@pke , @superserg8 could you please look into this PR and merge if everything is ok.
@dpa99c /@pke could you please merge this PR

@studioromeo
Copy link

Could this PR be merged and released please?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants